Cybersecurity Software Assurance Project Manager (PM3) - CSAPM 25-24164


IT - NY - New York, NY
New York, New York
Locations: New York, Bronx, Brooklyn, Valley Stream
Posted On: June 03, 2025
Last Day to Apply: June 17, 2025
Pay: $90.00 to $95.00 per hour

Job Title: Cybersecurity Software Assurance Project Manager (PM3)
Location: Remote (Based in New York)
Duration: 2 Years
Work Schedule: Monday–Friday, 35 hours/week (overtime requires prior approval)

Position Overview:

A major public sector organization is seeking a Cybersecurity Software Assurance Project Manager (PM3) to lead secure-by-design initiatives and embed robust application security practices into software development lifecycles. This role is part of a long-term program to enhance software security across agencies and partners through proactive review, consultation, and governance support.

Responsibilities:

  • Conduct application security assessments including risk evaluations, architecture reviews, and secure code analyses

  • Work closely with development teams and third-party vendors to advise on secure integration and deployment strategies

  • Guide secure software development practices throughout the software development lifecycle (SDLC)

  • Validate security architecture, threat models, and security controls to ensure compliance with internal standards

  • Interpret and respond to vulnerability reports and testing results with remediation strategies

  • Enhance AppSec processes and maintain up-to-date documentation of policies and workflows

  • Contribute to expanding and implementing secure SDLC practices organization-wide

  • Assist in the creation and refinement of security governance documents and security-related policies

  • Monitor and report on software security metrics, including risk trends and open findings

  • Manage application security testing tools, timelines, and related project resources

Required Qualifications:

Candidates must meet all of the following requirements to be considered:

  • 8+ years of hands-on experience in application security, software development security, or consulting

  • Deep understanding of secure coding practices, OWASP Top 10, and threat modeling

  • Proven ability to conduct technical reviews across web, mobile, and cloud-native applications

  • Experience using and managing static/dynamic analysis, SAST, DAST, and related security tools

  • Strong communication skills to explain technical risks to both technical and business stakeholders

  • Experience in CI/CD environments and modern DevOps workflows

  • Familiarity with security for APIs, containers, and cloud-native systems (AWS, Azure, GCP)

  • Previous experience supporting or writing IT/security policy and governance

  • Knowledge of vendor security assessments and SaaS risk reviews

  • Background in large-scale organizations, preferably government or public sector

Additional Details:

  • Compensation: $90–$95/hour C2C, all-inclusive

  • References: Three professional references are required upon submission

  • Note: Consultant must comply with standard business hours; overtime must be pre-approved

© 2025 Powered by TalentNest | Privacy Policy
Skip to the main content