Senior Program Manager, Security Engineering

About the role

We are seeking a dynamic, well-rounded Sr. Technical Program Manager (TPM) to join our Cybersecurity team within the Office of the Chief Information Security Officer (OCISO) at Kong. The ideal candidate for this role is a TPM who can support a broad range of cybersecurity initiatives across the Kong from risk management and compliance automation to security operations and technical delivery.

The ideal candidate will bring experience working on an Information Security or Cybersecurity team, with a strong understanding of security frameworks, risk management, and technical program delivery. Certifications such as CISSP, CISM, or equivalent are desirable.

What you’ll be doing

• Lead and manage Kong Cybersecurity Programs across OCISO
• Establish, develop and track KPIs
• Collaborate with engineering, product, and business stakeholders to define, prioritize, and deliver technical solutions.
• Present complex technical challenges and resolutions to leadership and stakeholders.
• Stay current on regulatory and industry standards (for example, ISO 27001,PCI-DSS, FedRAMP, NIST 800-53) to inform risk and control strategies.
• Build strategies for issue and risk mitigation, contingency planning, and compliance adherence.
• Demonstrate ownership and autonomy in managing programs and delivering high-quality results.

Knowledge, Skills, And Abilities

• Experience working on an Information Security or Cybersecurity team.
• Strong program and project management skills with a deep understanding of security and audit frameworks (e.g., SOC 2, PCI, ISO, FedRAMP).
• Ability to bridge the gap between Product, Engineering, and Architecture to facilitate solutions.
• Excellent communication, stakeholder engagement, and organizational skills.
• Technical credibility to engage with engineers and understand infrastructure, cloud, and network security.
• Ability to influence across teams and drive alignment in a complex, matrixed environment.
• Comfortable navigating ambiguity and solving complex problems with a proactive mindset.

What you'll bring

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• 5+ years of experience in Cloud Risk Management, Cybersecurity, or related fields.
• 5+ years in a Technical Program Manager or similar role.
• Preferred certifications: CISSP, CISM, CRISC, CISA, CGEIT, PMP.

Work Environment

• Hybrid-friendly with occasional travel
• May require occasional on-call availability and work outside standard hours.

#LI-KC1