Information Security Manager/Senior Manager

About The Position

Requirements

• Bachelor's degree in information technology, computer science, or a related field.
• Five or more years of information security experience, including at least three years in a leadership or management role.
• Proven experience managing security operations, including oversight of a Security Operations Center (SOC) and related functions.
• Strong understanding of cybersecurity principles, including network and cloud security, endpoint protection, identity and access management (IAM), and data protection.
• Knowledge of security frameworks and regulations such as NIST CSF, ISO 27001, General Data Protection Regulation (GDPR), and Health Insurance Portability and Accountability Act (HIPAA).
• Demonstrated ability to lead cross-functional teams, communicate effectively with non-technical stakeholders, and influence decision-making across levels.
• Experience making risk-based decisions that balance security needs with business objectives.
• Excellent analytical, organizational, and problem-solving skills.

Nice To Haves

• Master's degree in information security, cybersecurity, or a related field.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Cloud Security Professional (CCSP).
• Experience managing information security programs within a regulated industry such as medical device, healthcare, or manufacturing.
• Familiarity with Lean Six Sigma or other continuous improvement methodologies.
• Strong understanding of budgeting, cost-benefit analysis, and security investment planning.

Responsibilities

• Lead and mentor a team of information security analysts to ensure effective daily operations across areas such as network security, endpoint protection, and identity and access management (IAM).
• Oversee threat detection, incident response, and vulnerability management processes, ensuring timely investigation and resolution of security events.
• Develop and implement security strategies that align with business objectives, compliance standards, and recognized frameworks including NIST CSF, ISO 27001, and SOC 2.
• Collaborate with global IT, engineering, and application development teams to integrate security controls into infrastructure, cloud environments, and software systems.
• Evaluate and manage third-party vendor risk, ensuring adherence to Applied Medical's information security standards and regulatory requirements.
• Lead the review and continuous improvement of information security policies, procedures, and documentation.
• Develop and deliver organization-wide security awareness and training programs that promote a proactive security culture.
• Monitor industry trends, emerging threats, and new technologies to strengthen Applied Medical's security posture and resilience.

Benefits

• Competitive compensation range: $100000 - $150000 / year (California).
• Comprehensive benefits package.
• Training and mentorship opportunities.
• On-campus wellness activities.
• Education reimbursement program.
• 401(k) program with discretionary employer match.
• Generous vacation accrual and paid holiday schedule.