Cybersecurity Manager

Cybersecurity Manager to lead our security program and protect the confidentiality, integrity, and availability of company systems and data. The ideal candidate will design, implement, and operate security controls, lead incident response and threat hunting activities, and partner with engineering, IT, legal, and business stakeholders to embed security into product and operational life cycles. This role requires strong technical cybersecurity expertise, proven leadership of security initiatives, and the ability to communicate risk and mitigation strategies to leadership and cross‑functional teams.

• Lead the development, implementation, and continuous improvement of the enterprise cybersecurity program, including policies, standards, and operational procedures aligned with industry best practices and regulatory requirements.
• Manage day‑to‑day security operations, including monitoring, detection, vulnerability management, patching coordination, endpoint protection, and security tooling to ensure timely identification and remediation of threats.
• Own incident response planning and execution: develop and maintain incident response playbooks, lead investigations, coordinate containment and remediation activities, and drive post‑incident root cause analysis and lessons learned.
• Perform threat modeling, threat hunting, and security assessments (including architecture reviews, penetration testing coordination, and application security reviews) to proactively reduce risk across cloud and on‑premises environments.
• Partner with engineering, Dev Ops, product, and IT teams to integrate security into software development lifecycle (Dev Sec Ops ), cloud deployments, and infrastructure changes while enabling secure and efficient delivery.
• Manage third‑party security risk through vendor assessments, contractual security requirements, and ongoing monitoring of critical suppliers.
• Develop and maintain security metrics, dashboards, and executive reporting to communicate security posture, trends, and risk appetite to leadership and stakeholders.
• Maintain and enhance security controls to support compliance with applicable frameworks and regulations (e.g., NIST, ISO 27001, SOC 2, GDPR); coordinate external audits and attestations as needed.
• Coach, mentor, and grow a high‑performing security team; provide training and security awareness programs for employees across the organization to foster a security‑conscious culture.

• Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or a related field, or equivalent experience.
• 5+ years of progressive experience in cybersecurity roles, including hands‑on experience with security operations, incident response, vulnerability management, and security engineering.
• Proven ability to lead incident response activities and manage security incidents end‑to‑end in production environments.
• Strong technical knowledge of network, host, application, and cloud security controls and architectures (e.g., IAM, WAF, SIEM, EDR, CASB, cloud‑native security services).
• Experience with cloud platforms (AWS, Azure, GCP) and securing cloud‑native workloads, infrastructure‑as‑code, and containerized environments.
• Familiarity with security standards and frameworks (e.g., NIST CSF, CIS, ISO 27001, SOC
  2) and practical experience implementing controls to meet audit requirements.
• Strong analytical and problem‑solving skills, attention to detail, and a data‑driven approach to measuring and improving security posture.
• Excellent verbal and written communication skills; able to translate technical security concepts for non‑technical stakeholders and prepare clear documentation and executive briefings.
• Ability to manage multiple priorities, lead cross‑functional initiatives, and drive projects to completion in a fast‑paced environment.

• Relevant certifications such as CISSP, CISM, GIAC, CCSP, or equivalent are preferred.
• Experience with security orchestration and automation (SOAR), SIEM platforms (e.g., Splunk, Sentinel), EDR/XDR tools, and cloud security posture management (CSPM) solutions.
• Prior experience in a public company, highly regulated industry, or at‑scale consumer‑facing technology environment is a plus.

• Full‑time position with an onsite work model.
• Competitive salary commensurate with experience and a comprehensive benefits package, including health insurance, retirement plan options, paid time off, and professional development support.
• Opportunities for continuous learning, conference attendance, and certification assistance to support career growth.
• Collaborative and inclusive team environment committed to diversity, equity, and inclusion.