Senior Manager, IT Information Security

About The Position

Requirements

• Bachelor’s degree in IT, Cyber security, or related field
• 8–10 years of IT experience with 4+ years in security
• Hands-on experience across key security domains
• Experience in regulated environments
• Knowledge of security frameworks (NIST, ISO 27001)
• Experience with SOC or MSP providers

Nice To Haves

• Experience supporting commercialization
• Familiarity with GxP and SOX controls
• Experience securing healthcare or patient data
• Experience with Microsoft 365 security
• Certifications (CISSP, CISM, Security+)

Responsibilities

• Lead implementation and improvement of the cybersecurity program
• Develop security policies, standards, and procedures
• Support transition to a risk-based security model
• Oversee monitoring and alerting with SOC partners
• Manage incident response processes and reporting
• Coordinate response and reporting of security events
• Lead vulnerability management lifecycle
• Partner with IT teams on remediation
• Ensure controls across endpoints, cloud, and applications
• Support identity and access controls
• Establish and manage cyber security KPI’s and metrics
• Support SOX ITGC controls and audits
• Ensure protection of sensitive data
• Participate in cyber security risk assessments and vendor assessments
• Lead awareness programs and phishing simulations
• Promote security culture
• Manage third-party security vendors
• Partner with IT, Legal, and Compliance
• Report on security posture and risks

Benefits

• Additional discretionary bonuses
• Equity