Manager Information Security - Cyber Threat Exposure

About The Position

Requirements

• 5+ years of experience in information security, vulnerability management, security risk assessment, application security, system security, network security, or a related discipline.
• Experience leading, coaching, or managing technical personnel in a security, infrastructure, cloud, or technology operations environment.
• Undergraduate degree in Computer Science, Engineering, Information Security, or a related field, or equivalent combination of education and relevant experience.
• Broad technical knowledge of current and emerging technologies used within enterprise infrastructure, cloud environments, applications, and security operations.
• Experience communicating technical security risk to technical and non-technical audiences, including management and cross-functional stakeholders.
• Applicable professional or technical certifications should be in place, or the candidate must be willing to pursue relevant certification.

Nice To Haves

• Professional or technical certifications such as CISSP, CISM, GISEC, Security+, cloud security certifications, or related security credentials.
• Experience with modern vulnerability management, asset discovery, cyber asset attack surface management, cloud security posture management, or external attack surface management platforms.
• Demonstrated understanding of risk-based vulnerability prioritization, remediation governance, exception management, and vulnerability lifecycle management.
• Knowledge of information security frameworks, control standards, and regulatory obligations, including ISO 27001/27002, NIST, SOX, PCI, FISMA, HIPAA, NACHA, and SSAE-16.
• Experience supporting audit readiness, evidence collection, control validation, and security reporting requirements.
• Knowledge of project management practices and experience driving cross-functional initiatives through influence, accountability, and measurable outcomes.
• Experience working in large enterprise environments, including complex data center, network, cloud, and hybrid technology ecosystems.
• Strong ability to translate complex technical findings into clear executive-level communication, business risk context, and actionable recommendations.

Responsibilities

• Matures vulnerability and asset management programs, improves data quality, advances risk-based remediation, and collaborates across security and technology teams to reduce enterprise exposure.
• Own the strategy, execution, and continuous maturity of the enterprise vulnerability management program, driving measurable reduction of cyber risk.
• Implement and refine risk-based prioritization using threat intelligence, exploitability, asset criticality, exposure, and business impact to focus remediation on the highest-risk vulnerabilities.
• Ensure comprehensive visibility across internal, cloud, and externally exposed assets through effective asset discovery, inventory governance, ownership assignment, and data quality management.
• Oversee vulnerability management and asset discovery platforms, supporting tool optimization, process automation, and consistent operational workflows.
• Drive remediation accountability by partnering with Security, IT, Cloud, Engineering, and business stakeholders to address critical vulnerabilities, visibility gaps, and risk exceptions.
• Define, monitor, and report key program metrics, including vulnerability backlog, mean time to remediate, SLA compliance, exception trends, asset coverage, and external exposure trends.
• Deliver clear executive-level reporting that translates technical findings into business risk, remediation priorities, and measurable program outcomes.
• Support audit, regulatory, and compliance requirements by maintaining evidence, reporting, and processes aligned to applicable security frameworks and control expectations.
• Lead, coach, and develop a high-performing team while fostering accountability, collaboration, operational excellence, and continuous improvement.

Benefits

• Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing.
• Bonus structure (short-term incentives, long-term incentives and/or sales compensation)