×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Cybersecurity Risk & Resilience Manager

Job in Concord, Contra Costa County, California, 94527, USA
Listing for: Cerus Corporation
Full Time position
Listed on 2026-04-23
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

About Cerus

Cerus aims to be the global leader and trusted partner of blood centers and hospitals whose technology, services, and commitment are the lifeblood of safe and accessible blood for patients around the world.

This is a hybrid opportunity where you'll work out of our Concord, CA office twice a week.

About the Role

Cerus is seeking a pragmatic, business‑minded Cybersecurity Risk & Resilience Manager to help strengthen and mature our cybersecurity program. As the company continues to scale globally and adopt new digital capabilities, including AI‑powered tools, automation, and agentic workflows, the need to manage cyber risk thoughtfully, proactively, and in a business‑aligned way has never been greater.

This role sits at the intersection of cybersecurity risk, governance, preparedness, and corporate communication. Working closely with IT leadership, this role will help shape Cerus' cybersecurity posture, maintain core policies and standards, oversee key risk management processes, and develop reporting for executive leadership.

This is a high‑impact individual contributor role for someone who can balance strategic thinking with practical execution. The right candidate will be comfortable operating in a lean environment, building programs incrementally, partnering across functions, and helping the business move forward securely and responsibly.

This is not primarily a security engineering or hands‑on incident response role. This role is focused on building and maturing the governance, risk, oversight, and preparedness capabilities that will allow the cybersecurity program to scale effectively.

Key Responsibilities
  • Help shape and mature Cerus' cybersecurity program, including risk management practices, governance processes, policies, standards, and roadmap priorities.
  • Develop and maintain a practical framework for assessing cybersecurity risks associated with AI tools, agentic workflows, automation platforms, and other emerging technologies.
  • Partner with IT, Legal, Procurement, and business stakeholders to evaluate new technologies, vendors, and business initiatives, ensuring cybersecurity and data protection risks are identified and addressed appropriately.
  • Own the lifecycle of cybersecurity policies, standards, and procedures, including drafting, review, approval, communication, and periodic refresh.
  • Conduct cybersecurity risk assessments to identify control gaps, prioritize remediation, and support continuous improvement of the company's security posture.
  • Develop and maintain cybersecurity reporting for executive leadership, translating technical and operational risks into clear, business‑relevant metrics, themes, and recommendations.
  • Evolve cybersecurity KPI reporting to provide trend‑based visibility into risk posture, control effectiveness, and remediation progress.
  • Lead the company's third‑party cybersecurity risk management program for critical vendors, service providers, and business partners, including risk tiering, due diligence, assessment workflows, ongoing monitoring, and issue tracking.
  • Partner with Procurement, Legal, IT, and business stakeholders to ensure cybersecurity expectations are incorporated into vendor evaluations, onboarding, renewals, and contract terms for critical third parties.
  • Provide governance and oversight for vulnerability management activities, including risk‑based prioritization, remediation expectations, exception tracking, and leadership reporting in partnership with internal IT staff and external providers.
  • Coordinate external penetration testing and related security assessments as needed, including scoping, vendor oversight, findings review, and remediation tracking.
  • Design, coordinate, and facilitate cybersecurity tabletop exercises for IT, business leadership, and cross‑functional stakeholders, and drive follow‑up actions based on lessons learned.
  • Support incident readiness and response coordination by helping document roles, escalation paths, communications, and post‑event follow‑up in partnership with internal teams and external specialists as needed.
  • Lead the evolution of the company's security awareness program, including phishing simulations, training…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search