Senior Security Governance Program Manager - Secure Configuration & Asset Management

📋 Description

• • As a Senior Security Governance Program Manager at Centene Corporation, you will be instrumental in shaping and fortifying the enterprise's security posture by leading the development, monitoring, maintenance, and continuous improvement of a critical Security Governance pillar. This role is pivotal in ensuring our security programs are robust, compliant, and effectively mitigate risks across the organization, ultimately safeguarding the health and data of our 28 million members.
• • You will serve as a subject matter expert, dedicating your in-depth knowledge to support enterprise governance needs within specific areas such as cloud security governance, security metrics and reporting, or security oversight and remediation programs. Your expertise will be crucial in enhancing our overall security framework based on evolving compliance mandates and identified risk factors.
• • A key responsibility involves planning and meticulously tracking the completion of objectives related to security risk, compliance, and assessments. This includes managing requirements and ensuring that all defined goals for a specific governance area are met, contributing to a comprehensive understanding and management of our security landscape.
• • You will drive and execute complex initiatives that require seamless collaboration and coordination across multiple departments. This cross-functional leadership is essential for implementing effective security strategies and ensuring alignment throughout the enterprise.
• • Project management will be a core function, where you will lead projects aimed at improving and strengthening the enterprise security posture and reducing overall security risk. This encompasses the entire project lifecycle, from requirements collection and initiation through planning, execution, status reporting, and final closure, ensuring projects are delivered efficiently and effectively.
• • Maintaining a keen awareness of existing and proposed enterprise security policies and standards is vital. You will actively contribute to the development and refinement of these policies and standards, ensuring they remain relevant and effective in the face of emerging threats and regulatory changes.
• • Leveraging your expert knowledge across multiple security domains, while also maintaining a broad understanding of all security domains, will enable you to provide comprehensive guidance and strategic direction. This dual focus ensures both depth and breadth in your security governance contributions.
• • You will proactively identify regulatory changes that could impact information security policies, standards, and procedures, and then recommend appropriate adjustments to ensure ongoing compliance and maintain a strong security stance.
• • A significant part of your role will involve supporting security control owners, assisting them with the effective design and implementation of security controls. This collaborative approach ensures that controls are practical, effective, and aligned with enterprise security objectives.
• • You will lead the design, evaluation, and oversight of controls for key security and IT projects, programs, applications, and systems, including the Enterprise Control Framework. This leadership ensures that security is embedded into the fabric of our technological infrastructure.
• • You will spearhead activities related to the entire lifecycle of remediation efforts. This includes tracking delivery timelines, developing action plans, gathering and reviewing evidence artifacts, providing constructive feedback on the appropriateness of evidence, and developing documentation for submission and closure, thereby ensuring timely and effective resolution of security findings.
• • Driving the direction, development, and maturity of the enterprise Governance, Risk, and Compliance (GRC) tool(s) will be a key initiative. Your efforts will ensure these tools are optimized to support our security governance objectives and provide valuable insights.
• • Preparing comprehensive governance documentation for Senior Management, including reports for the team, the Board, and other key stakeholders, will be a regular requirement. This ensures transparency and facilitates informed decision-making at the highest levels.
• • You will continuously seek opportunities to improve existing processes and contribute to the overall excellence of the team, fostering a culture of continuous improvement and operational efficiency.
• • Leading complex projects to completion, on time and within budget, is a critical expectation. You will be responsible for escalating concerns proactively and providing regular, detailed weekly updates to keep stakeholders informed.
• • Developing and implementing best practices for gathering, reporting, and representing security Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) to various stakeholders will be essential for demonstrating the effectiveness of our security programs.
• • You will perform other duties as assigned, demonstrating flexibility and a willingness to contribute wherever needed to support the team's and organization's objectives.
• • Adherence to all company policies and standards is mandatory, ensuring a consistent and compliant approach to all security governance activities.