CyberSecurity PMO

Happy New Year and welcome to the community, @Erin Dillard.

While I do not qualify as a customer in this scenario, I have met many Atlassian customers over the last seven years. Most of those conversations were about improving PMO operations using Atlassian and Atlassian Marketplace products. Many of my professional friends and acquaintances are PMO-focused in their work as well.

I reached out to a number of them before replying.

Unfortunately, none of us has met an Atlassian customer who's using Jira & Confluence as you describe. Note: That does not mean they're not out there by any stretch. Hopefully, one of them will rely to your post.

That said, everyone I talked to (and I) all agree anyone can apply PMO principles and best practices — using Jira and Confluence — to any program management scenario, including cybersecurity.

I'm looking forward to seeing your presentation at Atlassian Team'26 on how you and your team did just that within your company.  😉

-dave

Hi Erin,

I hope this message finds you well. I previously worked as a Senior Project Manager in the Global Cyber Security PMO at a major bank in Canada, and I believe I can assist with some of your questions.

Confluence: A hierarchical organization is an effective way to structure Confluence. Consider organizing it as follows: Line of Business >> Applications >> Initiatives (Transformational or Operational). Be mindful that some initiatives may span multiple areas, so a special setup might be necessary to ensure relevant information is accessible in the appropriate spaces.

Project Plan: A robust project plan is typically built from the bottom up. Initially, it's beneficial to collaborate with engineers to develop the plan. Over time, you'll notice patterns in the initiatives, which is an excellent opportunity to create templates for your project plans. For new initiatives, especially those involving the implementation of a specific COTS tool, your vendor may already provide a template. Utilize and customize it as needed.

JIRA: Although you didn't ask about this directly, I would also encourage you to start thinking about JIRA for your initiatives now itself. It has capabilities to set-up project plans within it and if your JIRA set-up is done well, it really helps achieve goals more efficiently.

I understand this is just a brief overview, but I am confident you will excel. Should you need further assistance or a deeper dive into any of these topics, please don't hesitate to reach out.

Best regards,

Rahul

Bringing security and project management together can be tricky, but clear processes and close teamwork help. I’ve seen success with regular risk assessments and strong collaboration between security and project teams.