Program Manager - ISRM

** Company :*
* Highmark Health

** Job Description :*
* ** JOB SUMMARY*
* This job is responsible for the successful definition, implementation and delivery of complex programs that requires cross-functional collaboration and interdependencies between a group of projects and/or related activities within the constraint of scope, quality, time, and budget and under circumstances involving moderate to high-impact risk factors, in a cyber security portfolio, strategy and delivery environment.
Works collaboratively with a diverse group of team members and contractors across multiple project teams or departmental work groups, ensuring their efforts align to deliver unified, coordinated results.  They will develop and guide the implementation of project or program roadmaps for cybersecurity-related products and technology applications, ensuring that approved business outcomes are delivered effectively. Additionally, they may be asked to supervise both the rollout and ongoing management of cybersecurity programs across multiple tenants, coordinating efforts to achieve seamless integration and sustained operational success.

While there is no direct management of staffing, collaboration is emphasized to ensure the appropriate team members are fully engaged in the process to ensure approved business outcomes are delivered at lowest cost and maximized profitability. They may be asked to prepare and share comprehensive, data-driven impact analyses that address both quality and risk across cybersecurity catalogue of services. To ensure lasting results, they will apply change management strategies and actively promote positive security behaviors throughout the implementation process, supporting sustainability and ongoing improvement.

Oversee a range of activities focused on gathering, analyzing, and presenting key performance indicators by creating dashboards and scorecards, conducting forecasting and trend analysis, tracking outcomes, and preparing executive-level presentations. This comprehensive approach ensures that relevant performance data is systematically collected and interpreted, enabling informed decision-making and continuous improvement across the organization.

** ESSENTIAL RESPONSIBILITIES*
* + Cross-functional collaboration and interdependency management between a group of projects, products/technologies, functions, and/or customers.

+ Ensure clear lines of communication including but not limited to; transparency to the business on upcoming security initiatives, identifying impact to the business and to consumers, helping shape remediation, and developing external and internal communications

+ Responsible for establishing and driving Information Security programs designed for the business to improve security behaviors.

+ Measure program effectiveness and report accordingly on progress through approved business KPIs and outcomes.

+ Utilize change management methodologies to mitigate identified security risks.

+ Understand and bring to life, the role of cyber governance and how it supports the overall mission of program delivery

+ Bring a risk-management approach to programs and projects governed ensuring cyber risks are managed and mitigated through our defined processes

+ Must have a foundational understanding of portfolio management and governance methods, including portfolio financial management.

+ Demonstrate a commitment to independent learning and possess a proactive mindset, showing the initiative and motivation necessary to successfully fulfill all job responsibilities.

+ Other duties as assigned or requested.

** EDUCATION*
* ** Required*
* + Bachelor's Degree in Business Education, Marketing or Information Systems

** Substitutions*
* + Six (6) years relevant, progressive experience

** Preferred*
* + Master's Degree in Business Administration or Business Management

** EXPERIENCE*
* ** Required*
* + 5 years in IS/IT or IT Security

** Preferred*
* + Minimum of 3 years of Project Management or Program Management

** LICENSES or CERTIFICATIONS*
* ** Required*
* + None

** Preferred**   **(any combination)*
* + PMP, SAFe, or CSM (certified scrum master)

+ Cyber or IT related certifications (examples, CISSP, ITIL)

+ Risk…