Security Remediation Project Manager

Houston, TX, United States

Who We Are Corebridge Financial helps people make some of the most meaningful decisions they’re ever going to make. We help them plan and take action to protect the future they envision, and respond to some of life’s most difficult moments through the solutions and services we provide. We do this through our broad portfolio of life insurance, retirement and institutional products, offered through an extensive, multichannel distribution network. We provide solutions for a brighter future through our client centered service, breadth of product expertise, deep distribution relationships, and outstanding team of hardworking and passionate employees.Senior IT Project Manager serves as a subject matter expert in delivering Security Vulnerability Remediation projects with the day-to-day responsibility for leading remediation efforts related to infrastructure and applications while ensuring desired business outcomes are delivered within cost, timeframe and scope commitments. Accountable for leading cross-functional Corebridge IT and third-party vendor teams, manage stakeholder and sponsor relationships, manage the program’s financials, and provide transparency into overall program health.This role is critical to improving Corebridge security posture, reducing exposure to cyber threats, and to ensure that unpremeditated security vulnerabilities don’t hinder separating our applications as well as ensuring that Corebridge doesn’t propagate vulnerabilities that increase cyber threat exposure as we execute on Separation. About The Role We want to hear from you today if you can: The project manager will be responsible for organizing and leading multiple complex cyber security vulnerability remediation projects related to infrastructure and applications. The work includes remediation of vulnerabilities related to infrastructure and applications, whether those vulnerabilities are the business units’ applications, corporate applications, investment applications or infrastructure.

Partner with Corebridge Vulnerability Management Factory (VMF), Cyber Security, TRC (Technology Risk & Control), application and infrastructure teams to prioritize vulnerability remediation projects based on criticality of the vulnerability as well as the Application Separation migration waves, define funding, and create an overall remediation plan.

Analyse cyber security vulnerability project demand to determine scope, timeframe and funding requirements, and ensure resource availability and allocation. Develop detailed project plans and schedule project deliverables, milestones, and required activities and tasks. Identify and manage interdependencies and track progress.

Coordinate multiple cross functional infrastructure and application teams and external providers and promote collaboration.

Provide leadership and direction to project team members throughout the project life cycle, ensuring deliverables are met per cost, schedule, and scope commitments, proactively handling escalations as necessary to ensure project goals are accomplished and are in line with business objectives. Monitor and coordinate dependencies across the projects and resolve conflicts. Manage the relationship with the client and all stakeholders.

Proactively assess risks and issues, providing leadership to determine appropriate mitigation plans, escalating as necessary and then executing and following up on these. Use appropriate verification techniques to manage changes in project scope, schedule, and costs.

Continuously benchmark project management performance to identify improvements and achieve higher capability maturity in project and portfolio management. Measure project performance using appropriate systems, tools, and techniques.

Partner with Corebridge Vulnerability Management Factory (VMF), Cyber Security, TRC (Technology Risk & Control), application and infrastructure teams to prioritize vulnerability remediation projects based on criticality of the vulnerability as well as the Application Separation migration waves, define funding, and create an overall remediation plan.

Partner with Corebridge VMF to define Vulnerability management governance model; implement BAU vulnerability management processes; define and monitor vendor SLAs and keep abreast of new Cyber Security Threats that drive prioritization

Coordinate with Cyber Security and VMF to define the security scorecard, identify coverage, ownership, and gaps

Partner with key stakeholders to analyse vulnerabilities without targeted remediation approach i.e EOL, Oracle Java to determine scope, timeframe, funding requirements and effort to improve overall security posture

Partner with key stakeholders to define quantitative metrics and collaborate with VMF to provide regular status reports in various formats and forums to a variety of stakeholders ensuring full transparency

Provide program management oversight to VMF as part of ongoing BAU operations including remediation coordination, ongoing responsibility for maintenance of the vulnerability remediation plan, management of vendor SLAs and risk/issue management

Maintain the master vulnerability data in CRBG BAU operations including coordinating with multiple stakeholders in publishing vulnerability dashboard

Coordinate with TRC to track and monitor vulnerabilities, manage Risk Acceptances, and prioritize remediations

Continued alignment with ISO to implement latest vulnerability management guidelines into VMF processes and prioritization

Please note: The job can only be performed in the State locations listed: Houston, TX, Remote-TX, Remote-NC, Remote-AZ, and Remote-FL. What We Are Looking For Undergraduate degree

Job related experience: 8 – 12 years

8-12 Years of Project Management experience in a large multi-unit organization required.

Software currency, software engineering and infrastructure knowledge (including ITIL, SDLC, etc.)

Experience managing vendors/defining SLAs and KPIs

Program Managing large scale, complex, multi-stakeholder, cyber security vulnerability remediation projects that span IT teams, finance, security, third-party vendors, IT infrastructure and business applications teams.

3-5 years supervisory experience overseeing large scale projects, global teams, project managers, application leads.

Strong verbal and written communication and presentation skills

Ability to build formal and informal relationships and networks within and across organizational boundaries

Ability to lead and motivate others, demonstrating empathy and knowledge of personality types

Distinctive blend of business, IT, financial and communication skills

Effective influencing and negotiating skills in an environment where this role may not directly control resources

Familiar with project management methodologies (e.g., PMI, PRINCE2, Agile)

Cultural adaptability. Virtual and remote team management ability.

Project Management certification (e.g., PMP) is desired but not required.

Demonstrate problem solving skills where they can examine issues and effectively determine appropriate means of addressing them. Must also be able to envision different possible scenarios that could introduce risk and proactively plan to mitigate. Must be able to be creative in finding ways to resolve conflicts and overcome obstacles.

What our employees like most about working for Corebridge Financial We care about your professional development. Our career progression program will provide you with the opportunity to develop your skills, strengthen your productivity and be eligible to progressively advance to positions with an increased responsibility and increased compensation.

Our “Giving Back” policy is at the core of our daily operations and guides our future progress. Don’t believe us? We put our money where our mouth is! Corebridge Financial, will give you up to 16 hours a year paid time off to volunteer in the community.

Our people are at the forefront of creating value for customers and stakeholders and therefore we provide a generous benefits plan and competitive pay. Benefit package includes:

Paid Time Off (Corebridge Financial recognizes the importance of work life balance). We offer 24 PTO days to start. YES, 24! 17 paid holidays per calendar year.

A 401(k) Retirement Plan which will be HARD TO BEAT. Our 401K - $1 for $1 match up to 6% with immediate vesting, plus Corebridge Financial automatically contributes an additional 3% into your 401K regardless of if you enroll or not.

We are an Equal Opportunity Employer Corebridge Financial, Inc., its subsidiaries and affiliates are committed to be an Equal Opportunity Employer and its policies and procedures reflect this commitment. We provide equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories such as sexual orientation. At Corebridge Financial, we believe that diversity and inclusion are critical to our future and our mission – creating a foundation for a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our people are not only respected as individuals, but also truly valued for their unique perspectives.To learn more please visit: www.corebridgefinancial.comCorebridge Financial is committed to working with and providing reasonable accommodations to job applicants and employees with physical or mental disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to complete any part of the application or hiring process, please send an email to [email protected]. Reasonable accommodations will be determined on a case-by-case basis. Functional Area IT - Information TechnologyEstimated Travel Percentage (%): Up to 25%Relocation Provided: NoAmerican General Life Insurance Company

#J-18808-Ljbffr