Senior Manager, Cybersecurity PM l Multiple Locations

Who We Are  

FTI Consulting is the world’s leading expert-driven consulting firm. Over the last 40 years, FTI Consulting experts have served as the trusted advisor to Fortune 500 companies and the world’s leading law and private equity firms when they are facing their greatest opportunities and challenges. Our strong performance and continued success are a direct reflection of the ambition, energy and commitment of our talented professionals across the globe to make a positive impact for our clients and communities. 

At FTI Consulting, you’ll work side-by side with leaders who have shaped history, helping solve the biggest challenges making headlines today. From day one, you’ll be an integral part of a focused team where you can make a real impact. You’ll be surrounded by an open, collaborative culture that embraces diversity, recognition, professional development and, most importantly, you.

Are you ready to make your impact?

About The Role

The Senior Manager, Cybersecurity Project Management in the Corporate Information Technology Group – Global Cybersecurity and Privacy Division will be responsible for the global design, deployment, and adoption of FTI’s strategic cybersecurity and information technology standards within the firm, as well as leading project and program administrative efforts.  The project management tasks include project initiation, requirements definition, project planning, proposal and design development, project execution oversight, service transition, project closure, deployment\communications\adoption\training plan development and execution, stakeholder management, risk management and upkeep of project documentation. Additionally, the as Project/Program manager of cybersecurity Projects, you will be expected to fully administer cybersecurity projects through completion of such tasks as -- review of Microsoft project plans, creation and tracking of status reports, purchase orders and contracts associated with project initiatives and upkeep of program documentation. You will be responsible as part of a project, for designing and updating policies, standards and procedures in the organization that sustain security of the organization's data and communications systems. Additional duties include assessing the risk of exposure of proprietary data through weaknesses in platforms, applying leading practices better to manage cybersecurity people, process, and technology capabilities; developing metrics to track the effectiveness of cybersecurity programs; identifying trends or exposures that could be addressed by additional training, technical measures, or use of application tools to enhance security.

In summary, the Cybersecurity Project/Program Manager works directly with FTI leadership to design, build, and support Cyber-defense of the organization by:

• Defining Cybersecurity requirements with FTI’s business leaders
• Identifying appropriate cybersecurity defensive measures from our IT service portfolio or developing new capabilities
• Documenting proposed cybersecurity solutions and obtaining stakeholder approvals
• Implementing services leveraging in-house and outsourced resources
• Preparing operations personnel for ongoing support and management
• Supporting practitioners with the adoption of new technologies via organizational change management
• Improving processes within internal corporate functions (e.g., Finance, HR, IT, Real Estate, CRM)
• Instilling world-class client service and commercial excellence capabilities

What You’ll Do

Provide Management oversight, define and maintain the Information Security Management Systems (ISMS) program, processes, standards, and guidelines related to data and systems protection. Some of the responsibilities of this individual include:

• Provide assistance in the development and maintenance of the cybersecurity strategy roadmap through continuous research and assessment of the design and operations of cybersecurity programs and strategies to assist in the creation of measurable, sustainable programs to keep up with the ever-changing cybersecurity landscape – staying updated with the latest cybersecurity trends and best practices.
• Provide technical as well as project management leadership over delivery of Cloud-based security services internally, while also leveraging third-party Cloud service providers (IaaS, PaaS, SaaS
• Work with Cybersecurity, IT, and global team members to assess cybersecurity programs and strategies using our proprietary framework, design solutions to remediate gaps or enhance the maturity of specific cybersecurity capabilities, improve cybersecurity measurements and monitoring, and develop sustainable processes.
• Project/Program Management:
  • Provide project management reporting oversight of team activities using established PMBOK project/portfolio management methodology
  • Initiates projects through the submission of Project Definition Forms, and facilitates and documents scoping and requirements definition meetings with stakeholders
  • Develops preliminary IT budgets and schedules to satisfy requirements
  • Reviews project deliverables from team members for quality and completeness
  • Responsible for the development of technical cybersecurity solutions proposals and detailed design documentation
  • Provide technical and architectural subject matter expertise to the various development teams, including communicating architectural decisions and mentoring other technical staff around the multiple development technologies and choices; further, provide technical guidance to project team members via regularly scheduled project meetings and tracks task assignments in documented meeting notes
  • Ensure adherence to published standards and prescribed exception processes
  • Coordinates and oversees the execution of project assignments by team members, corporate departments, and third-party vendors
  • Develops Request for Quote (RFQ) documentation, reviews proposals, and awards contracts to third-party vendors to assist with onsite implementation (where appropriate)
  • Develops mitigation strategies to address project risks and issues
  • Authors and executes deployment plans to ensure effective rollout of IT services
  • Creates and executes communications plans to ensure appropriate stakeholder awareness
  • Produces and executes training & adoption plans to ensure operations and/or users maximize the utilization of new cybersecurity services
  • Develops tracking metrics for transition to operations (e.g.,  KPIs and KRI’s)  to measure the effectiveness of cybersecurity programs.
  • Authors and presents training materials to facilitate operations/ end user adoption
  • Ensures implementations adhere to superior quality standards
  • Documents and transitions services to operations teams for ongoing maintenance & support
  • Compares actuals to estimates to ensure projects remain on schedule and within budget
  • Completes and leverages lessons learned to ensure continuous improvement
  • Facilitates and documents assigned program coordination meetings
  • Maintains and posts project documentation to management portals
  • Design, plan, and implement test strategies to support service implementation
  • Proactively identifies, tracks and communicates issues to leadership
  • Confirms all appropriate documentation, requirements, design and test specifications, templates and other required deliverables are created and reviewed/approved by external and internal stakeholders
  • Coordinates, reviews, and tracks procurements across projects for accuracy and completeness, and facilitates on-time delivery of organizational contract submission

How You’ll Grow 

Cybersecurity leader for the firm, you’ll be working with leaders at the highest level of the organization and providing expert advice and counsel to Senior Information Technology Leadership, IT Project teams, and Users, it is expected that the responsibilities and span of functional responsibilities will increase over time

This position is a direct report to the Head of Global Cybersecurity, with direct representation and “dotted line” relationship with IT Implementation and Architecture leadership, and is anticipated to be a key member of the Global Cybersecurity Leadership team

FTI Consulting leverages the Information Technology Group (ITG) and the Global Cybersecurity team to accomplish the following goals:  Ensure effective protection of client and sensitive personal information, while constant improving Practitioner Productivity and growing the business.   We encourage our employees to become “Super Users” of all our services, to ensure understanding of the risk profile across the organization, and to take advantage of multiple opportunities to work with colleagues on the wide array of cross functional to inter-departmental projects and self-improve through professional development.

What You Will Need To Succeed  

Basic Qualifications:

• 4-year Business, Management Information Systems or Computer Science college degree
• 7+ years overall IT experience, with previous experience in various server, network, and database administration roles and previous management/personnel leadership roles
• 5+ years’ experience in Information/Cyber Security, IT Audit/Security Assessment/Certification or Accreditation and Planning, as well as Data Privacy Risk Assessment and/or Business Continuity Planning experience
• Project Management Professional (PMP) and\or Program Management Professional (PgMP) certification
• Applicants must be currently authorized to work in the United States on a full-time basis; this position will not sponsor applicants for work visas

Preferred Qualifications:

• ITIL 4 Managing Professional
• Cybersecurity Professional designations: CISA, CISSP, CRISC, and PMP; others: CISM, CIA, CPA, CBCP, CIPP/IT
• Able to leverage cybersecurity leadership and strategic vision to guide effective implementation of cybersecurity solutions through a strong understanding of information security principles, architecture, and methodologies (including risk assessment), with proven expertise in building a defense in depth infrastructure security architecture that includes security controls across the technology stack
• Demonstrated technical knowledge of networking, IAM, enterprise logging, SIEM, API Management, containerization, and security assessment tools/methodologies; experience Developing Security and Data Protection programs
• Ability to develop, and enhance Cybersecurity Policies, Standard, Procedures and Checklists
• Experience influencing collaborating and negotiating positive outcomes across stakeholders in a highly matrixed organization through management of cybersecurity projects for a global professional services organization
• Ability to work under tight deadlines and stressful situations
• Experience managing vendors to ensure the timely and thorough completion of assigned tasks
• Deep understanding of both Public and Private Cloud technologies, particularly MS Azure and  Office 365
• Cloud Services experience; solution delivery expertise, migration of applications to the cloud, automation through various tools, both MS Azure native and third-party
• Experience with the ticketing systems – particularly ServiceNow IT Management Suite
• Experience with Enterprise Architecture frameworks such as TOGAF, DoDAF, FEAF, etc.

LI-DB1