Information Technology Security Manager- Hybrid

If you are unable to complete this application due to a disability, contact this employer to ask for an accommodation or an alternative application process.

Full Time Gardena, CA, US

5 days ago Requisition

Salary Range: $ To $ Annually

Are you a cybersecurity leader who thrives on solving complex challenges, strengthening security posture, and driving strategic initiatives? We’re looking for an experienced Information Technology Security Manager to lead and evolve our enterprise Information Security Program in a highly regulated financial environment.

In this critical leadership role, you’ll shape cybersecurity strategy, oversee risk management and compliance efforts, lead incident response initiatives, and collaborate across the organization to protect systems, networks, and sensitive member data. You’ll work alongside executive leadership and play a key role in ensuring operational resilience and regulatory readiness.

If you’re passionate about security, governance, and making a measurable impact, we’d love to hear from you.

• Lead and continuously improve the organization’s enterprise Information Security Program aligned with frameworks such as NIST, ISO 27001, and COBIT
• Develop and implement cybersecurity strategies, policies, standards, and procedures
• Provide leadership and guidance to junior team members and cross-functional stakeholders
• Conduct cybersecurity risk assessments, audits, and vulnerability reviews
• Ensure compliance with financial industry regulations and standards including GLBA, FFIEC, PCI, and NCUA requirements
• Partner with auditors, regulators, compliance teams, and senior leadership during examinations and assessments
• Support Enterprise Risk Management (ERM) initiatives and reporting

• Conduct cybersecurity risk assessments, audits, and vulnerability reviews
• Ensure compliance with financial industry regulations and standards including GLBA, FFIEC, PCI, and NCUA requirements
• Partner with auditors, regulators, compliance teams, and senior leadership during examinations and assessments
  
  Support Enterprise Risk Management (ERM) initiatives and reporting

• Lead incident response planning, testing, investigations, remediation, and post-incident reviews
• Monitor and analyze enterprise security tools including firewalls, SIEM platforms, endpoint protection, and logging systems
• Oversee security event monitoring, threat detection, and escalation processes
• Support business continuity planning (BCP) and disaster recovery preparedness

• Work closely with IT, Legal, Compliance, Risk, and business teams to integrate security into operations and projects
• Evaluate vendor and third‑party security risks, contracts, and due diligence requirements
• Contribute security expertise to RFPs, Statements of Work (SOWs), and vendor engagements
• Manage cybersecurity budgets, forecasting, and resource planning

• Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience)
• 5–8+ years of experience in cybersecurity or information security roles
• Experience with in financial services or another highly regulated industry preferred
• Strong knowledge of:
  • NIST CSF
  • NIST 800-53
  • CIS Controls
  • ISO 27001
  • Networking concepts and the OSI model
• Experience with:
  • Risk assessments and security audits
  • Incident response and threat analysis
  • Security tools such as SIEM, firewalls, and endpoint protection platforms
  • Regulatory and compliance environments including GLBA, FFIEC, PCI, and NCUA
• Excellent communication and leadership skills with the ability to present to executive leadership and Boards

• CISSP
• CISA
• GIAC
• Security+
• CEH

• A strategic thinker with strong technical depth
• Calm and decisive during incidents and high‑pressure situations
• Highly organized and able to manage multiple priorities
• Collaborative, adaptable, and solutions‑oriented
• Passionate about continuous improvement and staying ahead of evolving cyber threats