Previous Job
Security & Compliance (IT Sr. Program Manager ) - Chicago IL
Ref No.: 17-01465
Location: Chicago, Illinois

Security & Compliance (IT Sr. Program Manager )
20 months contract
Interview Required
Main responsibilities will include internal security risk assessments, partnering with stakeholders to ensure management of IT risks, and project management for regulatory testing and remediation of findings.

1 Oversees a varied and complex program covering multiple domains and disciplines.
2 Owns and maintains Project Management framework for use by aligned Project Managers.
3 Facilitates change management activities.
4 Drives quality management across the program.
5 Consults with senior leadership on overall business strategy to create and manage the overall program strategy.
6 Creates business cases to support program prioritization.
7 Creates and maintains program artifacts
8 Responsible for program level reporting including accounting for key project level rollups.
9 Integrates multiple projects across resource, priority, and timeline dimensions.
10 Manages and resolves program and project resource constraints.
11 Identifies and manages program level risks.
12 Leverages available data and analytics to drive program level strategy and actions.
13 Owns relationships with internal and external stakeholder teams; facilitates regular updates with senior leaders and stakeholders.
14 Manages program financials and resource allocation budget.
15 Owns and manages escalated program issues to resolution.
16 Coaches, mentors and/or manages aligned project managers.

1 Execute effective security risk assessments and coordinate with Foundation Technology, Workspace Technology and Global Security Services team in delivering ITGC mandates
2 Maintain regional and local stakeholder relationships, meeting schedules, minutes, RACI and partnering accountability
3 Contribute toward continuous improvement in methodologies and practices of ITGC to attain higher capability maturity levels
4 Provide support for Evidence Repository (i.e. bWise, Archer, Connect)
5 Appropriately challenge and require high quality findings and issue definition from regional and local control owner /assurance partners
6 Provide support of policy/standards exceptions, report status to regional and local management, and advise on corrective actions
7 In conjunction with the Assessment Manager, provide advisory services and activities including risk assessments, definitions of policy and standard documentation, and interpretation of compliance results
8 Maintain, manage and monitor regional and local compliance to the internal control frameworks such as the IT Risk Standards, the Consolidated IT Control Catalog, Internal Controls Framework, SOX, HIPAA, PCI, SOC1-2, HiTRUST regulatory / legal and other obligations / requirements
9 Prepare stakeholder presentations for Assessment Manager, regional stakeholders and senior leadership
10 Partner with Internal Audit on remediation of findings

• Bachelor's degree in Business, Computer Science or equivalent experience required
• Master's degree desirable not required


• PMP Certification - Prince2 or PMI (preferred)
• Agile (preferred)
• SCRUM (preferred)
• Flexibility to work on weekends and holidays
• Multi-lingual (preferred)