Senior Manager, Data Protection Services

Blackbaud

3d•$133,700 - $173,800•Remote

About The Position

Blackbaud is seeking a seasoned security leader to own and evolve our Data Protection and Cryptographic Services program. This role offers a unique opportunity to build a critical function within a company making significant investments in security and AI. As a high-impact, highly visible position, you will set the strategic direction for securing the Company’s sensitive data, while leading and growing a team of talented security engineers. The role demands both the technical expertise to guide engineering teams in building and operating complex security controls to support the Company's adoption of AI, and the communication skills to effectively convey this work to executive leadership and the board.

Requirements

10+ years of experience in information security, with at least 5 years in a people management role leading technical security teams.
Demonstrated ability to build and mature security programs, not just operate them.
Track record of influencing cross-functional partners (Engineering, Legal, Compliance, IT, Product) without direct authority.
Strong working knowledge of cryptographic principles and applied cryptography — key management lifecycles, HSMs, PKI, TLS/mTLS.
Familiarity with cloud-native data security architectures across AWS, GCP, and/or Azure.
Working knowledge of AI/ML security concepts — data poisoning, model exfiltration, prompt injection, and AI governance frameworks.
Familiarity with agile development processes.
Hands-on experience deploying AI-SPM tooling or building LLM security controls.
Experience contributing to or responding to regulatory audits and certifications.

Nice To Haves

Industry Certifications like: CISSP, CCSP, CRISC, CISM, CISA, AWS certification(s), Azure certification(s)

Responsibilities

Define, own, and execute a multi-year roadmap for data protection and cryptographic services, maturing the program from operational to industry-leading.
Establish and enforce data protection policies, standards, and frameworks aligned with industry best practices (NIST, ISO 27001, SOC 2, GDPR, CCPA, and emerging AI governance standards).
Serve as the company's authoritative source on data protection strategy, advising executive leadership on risk posture and investment priorities.
Lead the architecture, deployment, and continuous improvement of the full DLP ecosystem, including: Web Proxies & SSL Inspection, CASB, Data Classification & Tagging, DSPM, and AI-SPM.
Own vendor relationships, contract negotiations, and technology roadmap alignment for all data protection tooling.
Oversee the company's cryptographic standards and practices, including key management, PKI, encryption-at-rest and in-transit standards, and secrets management.
Drive adoption of modern cryptographic controls across engineering teams, ensuring alignment with evolving standards and quantum-readiness planning.
Set expectations, manage performance, and build a high-trust team environment where engineers do their best work.