Job Description

Schedule: M-F (Onsite 4 days a week, 1 day remote)

Location: Atlanta, GA. or Birmingham, AL.

Southern Company is seeking a highly organized, execution-focused Program Manager to help drive delivery and operational effectiveness across the enterprise Exposure Management program. This role will report to cybersecurity leadership and serve as an operational lead, ensuring strategic priorities are translated into clear plans, measurable outcomes, and reliable execution. This is a primarily on-site role with 4 days per week in-office presence expected.

This position directly supports Southern Company’s mission to identify, prioritize, and reduce cyber risk across its critical electric and gas utility infrastructure, operational technology environments, enterprise IT systems, and digital assets. The role partners closely with Cybersecurity, Technology, Infrastructure, Application teams, and business stakeholders to enable cross-functional alignment and consistent delivery of exposure reduction efforts.

The Exposure Management Program Manager will coordinate and drive execution across a portfolio of initiatives focused on vulnerability management, CTEM, exposure validation, attack surface visibility, prioritization, remediation tracking, and continuous improvement. This role is expected to help operationalize Continuous Threat Exposure Management (CTEM) efforts by connecting visibility, prioritization, validation, mobilization, and remediation activities into a repeatable program. Success in this role requires strong program management fundamentals, planning, governance, stakeholder alignment, metrics, and continuous improvement combined with the ability to operate in a highly regulated, mission-critical enterprise environment. This role ensures disciplined delivery through clear roadmaps, defined milestones, and outcome-based measurement to achieve predictable results and ongoing exposure management maturity.

Job Responsibilities

• Execute the enterprise Exposure Management and CTEM program roadmap in alignment with strategic direction set by cybersecurity leadership.
• Manage integrated program plans across vulnerability management, CTEM, exposure assessment, validation, remediation, and reporting initiatives, including milestones, dependencies, risks, and delivery timelines.
• Establish and maintain program operating rhythms, including status reporting, risk and issue management, and action item tracking.
• Implement and maintain operating models, workflows, and procedures to support effective and repeatable exposure management program execution.
• Coordinate cross-functional delivery efforts across Cybersecurity, Technology, Infrastructure, Application, and business teams to ensure alignment and timely execution.
• Ensure initiatives are operationally ready prior to scale or enforcement, including documented processes, escalation paths, communications, and stakeholder alignment.
• Support enterprise efforts to define, implement, and govern risk-based prioritization models for vulnerabilities and exposures across on-prem, cloud, OT, and hybrid environments.
• Support the design and execution of CTEM operating rhythms by coordinating activities across visibility, prioritization, validation, mobilization, and remediation functions.
• Partner with validation and offensive security teams to support continuous testing efforts that confirm whether prioritized exposures are exploitable, materially impactful, and appropriately remediated.
• Coordinate continuous offensive security validation activities, including purple team style assessments, adversary emulation informed testing, or other validation efforts that improve confidence in exposure prioritization and remediation decisions.
• Drive ongoing maturity of exposure management capabilities by coordinating adoption, tuning, and remediation workflows to reduce risk while minimizing business friction.
• Coordinate remediation activities for identified exposures, including vulnerabilities, misconfigurations, unsupported assets, weak controls, and externally visible risks.
• Partner with security operations, threat intelligence, validation, and offensive security teams to support exposure triage, prioritization, escalation workflows, and continuous validation of control effectiveness.
• Develop and maintain program metrics, dashboards, and reporting related to delivery progress, operational effectiveness, and exposure reduction outcomes.
• Support governance, change management, and exception processes for exposure management policies, standards, and enforcement actions.
• Promote a culture of accountability, collaboration, and continuous improvement across exposure management program stakeholders.

Requirements and Qualifications

Minimum

• Proven experience managing cybersecurity or technology programs for large‑scale enterprise initiatives.
• 5+ years of experience in program management, cybersecurity operations, or technology delivery roles.
• Experience coordinating or supporting exposure management capabilities such as vulnerability management, CTEM, attack surface management, remediation governance, validation, or risk prioritization programs.
• Strong understanding of exposure management and CTEM concepts across on-prem, cloud, SaaS, OT, and hybrid environments.
• Familiarity with validation practices such as offensive security testing, purple teaming, exposure validation, or control effectiveness assessments.
• Demonstrated ability to manage cross‑functional workstreams, dependencies, and competing priorities.
• Communication and organizational skills, with the ability to produce executive‑ready status updates and reporting.
• Ability to operate effectively in a matrixed organization without direct authority.
• Ability to work effectively in a highly regulated environment with strong attention to governance, risk reduction, and operational discipline.

Preferred Qualifications

• Experience supporting or coordinating vulnerability management, CTEM, attack surface management, validation, or remediation governance programs.
• Familiarity with risk-based prioritization approaches and exposure scoring models.
• Experience developing program dashboards, KPIs, and operational reporting.
• Experience coordinating exposure management initiatives with security operations, threat intelligence, validation, or GRC teams.
• Exposure to continuous offensive security or validation programs that inform exposure prioritization and remediation outcomes.
• Familiarity with vulnerability prioritization, remediation tracking, and attack surface visibility practices.
• Experience supporting or securing highly regulated or critical infrastructure environments.
• Working knowledge of vulnerability lifecycle processes, remediation coordination, and exposure reporting best practices.

This position falls under the company’s Insider Threat Program and will have access to, and control over sensitive data, systems or assets. Enhanced personnel screening, which includes a background review, drug screen and psychological assessment, will be required if you are selected for this position