Manager Security

About The Position

Requirements

• Bachelor's degree in computer science, Information Security, or a related field, or an equivalent combination of education and experience
• Minimum of eight years of progressive experience in information security, including people leadership responsibilities
• Experience with managing Cyber Risk program
• Demonstrated expertise in information security disciplines, supported by industry‑recognized certifications such as CISSP, CISM, CRISC, GSEC, GSNA, or equivalent
• Strong working knowledge of IT controls, regulatory requirements, and compliance frameworks (e.g., SOX, PCI, NIST, ISO 27001)
• Proven experience leading and developing teams within an enterprise security environment
• Ability to assess technical and business risk, translate findings into actionable recommendations, and influence senior stakeholders
• Experience managing complex, high‑impact security initiatives or programs

Nice To Haves

• Experience supporting large‑scale, consumer‑facing or highly regulated environments
• Demonstrated success partnering with product, engineering, or third‑party risk management teams
• Prior experience with budget ownership or financial management

Responsibilities

• Lead day‑to‑day cyber security risk program, including team structure, capacity planning, and resource allocation to ensure effective delivery of security services.
• Hire, coach, and develop security team members; manage performance, provide feedback, address corrective actions, and support career development and succession planning.
• Establish priorities and assign work to ensure security initiatives and operational objectives are delivered on time and aligned with business needs.
• Monitor the organization’s security posture, including threats, vulnerabilities, and control effectiveness; assess risk and recommend appropriate mitigation strategies.
• Provide regular reporting and executive‑level updates on security risks, incidents, and initiative status to senior leadership.
• Drive awareness, adoption, and compliance with security policies, standards, and procedures across technology and business teams.
• Partner with IT, product, and business leaders to assess security requirements, document risks, and prioritize remediation and improvement initiatives.
• Oversee complex or high‑risk security projects, ensuring appropriate scope, resourcing, governance, and delivery timelines.
• Stay informed of emerging security threats, regulatory requirements, and industry best practices, and use this knowledge to inform security strategy and improvements.
• Support budget planning and forecasting for assigned security functions, as applicable.

Benefits

• competitive compensation
• benefits to support your health and well-being