Manager of Data Security, Cybersecurity InfoSec

About The Position

Requirements

• Expertise in enterprise-class data protection, DSPM operations
• 7-10 years of experience in cybersecurity, cloud security, data security, data protection, or data engineering
• 3-5+ years of leadership or people-management experience building and managing technical security teams and incident response
• Experience orchestrating risk reduction programs, automated remediation, or integrating security signals into operational workflows
• Track record of establishing security programs, standards, and operating models in complex, global environments
• Bachelor's degree in Computer Science, Cybersecurity, Engineering, or related technical field; or equivalent professional experience
• Deep expertise in data protection technologies, lifecycle management, and modern cloud-native security architectures
• Working knowledge of cloud platforms (AWS preferred) and modern data architectures including Snowflake, pipeline orchestration, structured/semi-structured storage, and SaaS data ecosystems
• Knowledge of encryption standards, CASB/DLP/CSPM/DAG platforms, AI-driven detection, and microservices/API security
• Familiarity with regulatory frameworks relevant to IDEXX (HIPAA, GDPR, SOX, global privacy laws, contractual data obligations)
• Understanding of data governance, cataloging, and classification programs
• Exceptional communicator with ability to influence executives, technical teams, and cross-functional stakeholders.
• Proven success leading global technical teams, scaling security functions, and partnering across business and technical domains.
• Strong analytical and problem-solving skills; adept at operating in complex global environments.
• Skilled at translating technical risk into business context with integrity, professionalism, and sound judgment.
• Ability to build trust and foster collaboration with engineering, application owners, cloud teams, and business partners.

Nice To Haves

• Advanced certifications such as CISSP, CISSP-ISSAP, CISM, CCSP, or equivalent
• Experience working in life sciences, medical diagnostics, healthcare, or other regulated data environments
• Background in data governance, cataloging, classification programs, or enterprise data management
• Proficiency with programming or scripting languages (Python, Java, Go, etc.)
• Strong SQL/data analytics capabilities
• Experience leveraging AI/ML in cybersecurity operations or anomaly detection
• Experience integrating DSPM signals into downstream tools and decision-making workflows
• Experience with enterprise DSPM platforms or data discovery/classification tooling (Cyera, BigID, Dig, Laminar, OneTrust, etc.)

Responsibilities

• Own and optimize IDEXX’s DSPM platform, including configuration, integrations, operations, and continuous improvement, ensuring comprehensive data discovery and monitoring across cloud, on-prem, SaaS, and critical business systems.
• Establish visibility into sensitive and regulated data—where it resides, how it flows, and how it’s protected—while driving systematic risk identification, alert triage, and remediation to reduce exposure, duplication, and over-privileged access.
• Partner with IT, Data Engineering, and Infrastructure teams to maintain DSPM integrations and deliver actionable insights aligned with IDEXX’s data use cases and global compliance requirements.
• Lead the strategy, design, and execution of global data protection across cloud, on-premises, and hybrid environments, establishing standards, classification models, and secure design patterns.
• Implement advanced technologies—DLP, CSPM, DAG, tokenization, encryption key management, and AI-driven detection—while ensuring compliance with GDPR, HIPAA, SOX, and global privacy laws.
• Oversee secure data-sharing models, lineage mapping, and technical controls for sovereignty requirements; provide guidance on secure data flows, minimization, and sensitive data handling.
• Drive reduction of over-privileged access across Snowflake, databases, applications, and SaaS environments through enforceable controls and continuous improvement.
• Build and mentor high-performing Data Security and DSPM teams while defining a clear roadmap, operating model, and maturity plan for IDEXX’s data security functions.
• Drive deep partnerships across engineering, product, and business teams—including Data Engineering, Vet Software/PIMS, HRIS, Finance, Manufacturing, Commercial, and Cloud—aligning security outcomes with governance, compliance, and regulatory requirements.
• Serve as senior advisor and enterprise advocate for secure design, data protection, and risk management; represent Data Security in advisory councils and cross-functional initiatives.
• Lead proactive strategy and response efforts, integrating DSPM insights into governance workflows and anticipating emerging technologies, threats, and regulatory trends.
• Define and communicate IDEXX’s multi-year data security strategy and architecture direction, incorporating emerging capabilities like DSPM, AI-driven detection, automated remediation, and sensitive data mapping.
• Scale global data risk reduction through automation, clear processes, metrics, and stakeholder engagement, while fostering a collaborative, customer-first culture.
• Drive education and enablement to promote secure data practices across teams and establish a predictable operating rhythm supported by automation and continuous improvement.

Benefits

• Health / Dental / Vision Benefits Day-One
• 5% matching 401k
• Opportunity for annual cash bonus
• Opportunity for yearly equity award
• Additional benefits including but not limited to financial support, pet insurance, mental health resources, volunteer paid days off, employee stock program, foundation donation matching, and much more!