Senior Manager, Information Security

About The Position

Requirements

• 10+ years of security leadership across Fortune 100 enterprises and publicly traded companies.
• Proven experience applying frameworks and regulations such as NIST 800-53, ISO 27001, SOC criteria, CIS, OWASP, CSA, GDPR, and the EU AI Act.
• Deep expertise in Zero Trust, MDM, EDR, AWS security, data protection, vulnerability management, and SIEM operations.
• Strong background in incident response, crisis management, business resumption, and contingency planning.
• Hands-on experience in threat modeling and secure design reviews.
• Up-to-date knowledge of cybersecurity trends, threat landscape, and risk management in a global environment.
• Exceptional ability to influence senior leaders and collaborate cross-functionally, with a track record of problem-solving, motivation, and high integrity.
• One or more advanced certifications: CISSP, CISM, CCSP, CRISC, CISA.

Responsibilities

• Lead the development and execution of risk treatment strategies, ensuring identified risks are mitigated through well-defined directives, controls, and action plans.
• Regularly track and report cybersecurity program progress, emerging risks, and remediation status to business and technology stakeholders, enabling informed decision-making and clear visibility into the Motive's risk posture.
• Provide architectural guidance on secure system design, control integration, and scalable security services.
• Lead Incident Response as Commander, directing cross-functional teams during incidents, while enhancing playbooks and readiness.
• Strengthen Incident Management and SIEM monitoring capabilities to improve detection and response while optimizing security operations, preparing resiliency plans, and coordinating enterprise-wide strategies for breach response.
• Manage and mature core security domains, including Identity and Access Management (IAM), Endpoint Protection, Data Loss Prevention (DLP), Vulnerability Management, Email Security, and Zero Trust architecture, ensuring alignment with enterprise standards and effective risk reduction.
• Oversee third-party SaaS security reviews as part of the vendor risk program.
• Evaluate and manage AI technologies to ensure secure adoption, regulatory compliance, and resilience against AI-driven threats.
• Manage compliance audits and attestations (SOC 2, ISO, PCI, SOX ITGC), strengthening controls through feedback and best practices.
• Introduce and adopt security innovations and tools, including AI-driven solutions, to continuously improve posture.
• Maintain strong understanding of GovRAMP/StateRAMP/FedRamp frameworks and certification processes.
• Work closely with Legal on a variety of privacy-focused initiatives, including data protection impact assessments (DPIAs), cross-border data transfer reviews, vendor and contract privacy clauses, regulatory readiness (GDPR, CCPA)

Benefits

• health, pharmacy, optical and dental care benefits
• paid time off
• sick time off
• short term and long term disability coverage
• life insurance
• 401k contribution