Project Manager, IT Security & GRC

Nashville, Tennessee Job Description This role supports the successful delivery of initiatives across Information Security and Governance, Risk, and Compliance (GRC). Working in close partnership with the Director of Security and Director of GRC, the Project Manager provides structure, coordination, and execution discipline to ensure projects are delivered effectively and aligned with firm priorities, regulatory obligations, and client expectations. This role does not own security or GRC programs; it enables their execution. KEY RESPONSIBILITIES Project Coordination & Delivery Support Coordinate the execution of security and GRC initiatives (e.g., risk assessments, compliance efforts, security tool implementations, policy updates). Develop and maintain project plans, timelines, and task tracking in alignment with direction from Security and GRC leadership. Track progress, manage dependencies, and ensure follow-through on deliverables. Partnership with Security & GRC Leadership Work directly with the Director of Security and Director of GRC to translate priorities into actionable plans. Support intake, prioritization, and sequencing of work across both functions. Ensure alignment between project activities and leadership direction. Stakeholder Communication Provide clear, concise status updates, including progress, risks, and issues. Coordinate communication across IT, legal, risk, and administrative teams. Prepare materials for leadership reporting and governance forums. Governance & Compliance Execution Support Assist in coordinating audit activities, evidence collection, and remediation tracking. Support the rollout and tracking of policies, standards, and control implementations. Maintain documentation related to compliance initiatives and project artifacts. Operational Discipline Apply consistent project management practices across security and GRC initiatives. Maintain centralized tracking of milestones, deliverables, and dependencies. Identify risks and escalate appropriately to Security and GRC leadership. QUALIFICATIONS, EXPERIENCE & SKILLS 5+ years of project coordination or project management experience, ideally within IT, security, risk, or compliance. Experience in a law firm or professional services environment preferred. Demonstrated ability to support complex, cross-functional initiatives. Working knowledge of information security and GRC concepts (frameworks, audits, risk management). Strong organizational and follow-through skills. Clear, concise communicator—especially with executive and partner audiences. Ability to manage multiple workstreams without direct authority. PMP, CAPM, or equivalent project management certification preferred Exposure to security/compliance frameworks (e.g., ISO, NIST, SOC 2) is a plus. Execution-focused and detail-oriented. Comfortable operating in a support/enablement role rather than a leadership role. Strong collaborator who works effectively with senior functional leaders. Discree