Cyber Security Manager

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field.
• 5+ years of experience in cybersecurity or information security roles.
• 2+ years of team leadership or management experience.
• Strong knowledge of cybersecurity frameworks, standards, and regulations (e.g., NIST, ISO 27001, CIS, GDPR, HIPAA).
• Proficient in managing and configuring security technologies such as firewalls, intrusion detection/prevention systems, endpoint protection, DLP, IAM, MFA, and EDR solutions.
• Deep understanding of network protocols, operating systems (Windows, Linux), and cloud platforms (AWS, Azure, Google Cloud).
• Experience conducting risk assessments, vulnerability scans, and penetration testing.
• Demonstrated ability to lead incident response efforts and coordinate remediation activities.
• Skilled in designing and implementing security policies, procedures, and technical controls.
• Strong project management capabilities and ability to balance multiple priorities effectively.
• Proven leadership and team development skills with the ability to mentor and motivate staff.
• Excellent analytical and problem-solving skills, with keen attention to detail.
• Effective communication and presentation skills, with the ability to explain technical issues to non-technical audiences.
• Strong collaboration and interpersonal skills to work cross-functionally with IT, legal, finance, and business units.
• Ability to stay current with emerging threats, trends, technologies, and regulatory changes in the cybersecurity landscape.
• High level of integrity, professionalism, and discretion when handling sensitive information.
• Experience utilizing Microsoft Office products (MS Word, Excel, and Outlook).
• Bilingual (writing, conversational and reading comprehension in English and Spanish).

Nice To Haves

• Certifications such as CISSP, CISM, CEH, CompTIA Security+, or GIAC certifications, and membership in recognized cybersecurity professional organizations (e.g., ISACA, (ISC)²), are preferred.

Responsibilities

• Develop, implement, and maintain a comprehensive enterprise cybersecurity strategy aligned with business goals and risk tolerance.
• Define and enforce cybersecurity policies, procedures, and standards across the organization.
• Serve as a subject matter expert and advisor to senior leadership on cybersecurity matters.
• Monitor networks and systems for security breaches using specific tools and threat intelligence feeds.
• Lead investigations into security incidents and coordinate incident response and remediation efforts.
• Develop, maintain, and regularly test incident response, business continuity, and disaster recovery plans.
• Conduct regular cybersecurity risk assessments and gap analyses to identify vulnerabilities and threats.
• Ensure compliance with internal policies and external regulations.
• Coordinate third-party and internal audits and drive remediation activities.
• Evaluate, recommend, and oversee the implementation of security solutions such as firewalls, antivirus, DLP, IAM, MFA, and EDR.
• Partner with infrastructure and application teams to integrate security into system design and development.
• Manage security for cloud, hybrid, and on-premises environments.
• Lead, coach, and develop a team of cybersecurity analysts and engineers.
• Plan and manage security training and awareness campaigns for employees and contractors.
• Establish OKRs and metrics to track team performance and incident response effectiveness.
• Conduct security assessments of third-party vendors and service providers.
• Establish vendor security standards and ensure contractual security obligations are met.
• Collaborate with Finance and Legal to ensure security is built into contracts and SLAs.
• Stay up to date with emerging cyber threats, vulnerabilities, attack vectors, and mitigation techniques.
• Leverage threat intelligence to proactively adjust defense mechanisms.
• Participate in industry forums and security communities to benchmark and share best practices.
• Develop and manage the cybersecurity budget, resource allocation, and tool investments.
• Provide input into strategic planning for IT and business initiatives from a security perspective.
• Complies fully and consistently with the Company's standards, policies, and procedures and the local and federal laws applicable to our industry, business, and employment practices.
• May perform other duties and responsibilities as assigned, in accordance with the education and experience requirements contained in this document.

Benefits

• Full time
• Regular position