×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Project Manager Data Security

Sr Manager, Information Security

Job in Herndon, Fairfax County, Virginia, 22070, USA
Listing for: VT iDirect
Full Time position
Listed on 2026-06-06
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Project Manager, Data Security
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below

Overview

At
ST Engineering iDirect
, we’re reshaping the future of global connectivity. As a leader in satellite communications, our groundbreaking technology empowers customers to grow, innovate, and transform their networks. Here, your skills and passion meet our vision and expertise to create something extraordinary. If you're ready to tackle technology’s biggest challenges and redefine how the world connects, the most exciting chapter of your career awaits.

With ST Engineering iDirect, the sky isn’t the limit—it’s just the beginning.

The Senior Manager, Information Security is a key leadership role responsible for overseeing the day‑to‑day execution of the company’s information security program while ensuring readiness for evolving global cybersecurity regulations, including the EU Cyber Resilience Act. Reporting to the Vice President, Technology and Information Security, this role provides hands‑on leadership across security operations, governance, and product security. The position serves as the operational owner for information security execution and as the central coordinator for translating regulatory, security, and product requirements into consistent, scalable outcomes across IT, engineering, and product organizations.

Responsibilities

Role Summary

The Senior Manager, Information Security is accountable for operational security execution, regulatory readiness, and security product leadership. This role oversees daily security operations, manages compliance and governance activities, and owns the integration of security and regulatory requirements, including those introduced by the Cyber Resilience Act, into product development, lifecycle management, and operational processes.

The position combines security operations leadership, regulatory and compliance ownership, and security product responsibility, ensuring that both internal systems and customer‑facing products meet security, resilience, and vulnerability management expectations throughout their lifecycle.

Information Security Operations and Governance

  • Lead day‑to‑day execution of the enterprise information security program in alignment with company strategy and risk posture.
  • Oversee security operations including monitoring, vulnerability management, incident response, root‑cause analysis, and remediation tracking.
  • Manage implementation and continuous improvement of the ISO
    27001‑based Information Security Management System (ISMS).
  • Ensure ongoing compliance with applicable regulatory requirements, industry standards, and customer security expectations, including emerging product security regulations such as the Cyber Resilience Act.
  • Coordinate preparation for internal and external audits, regulatory reviews, certifications, and customer security assessments.
  • Lead investigation and response activities for security incidents, vulnerabilities, and control failures, including follow‑up remediation actions.
  • Maintain and evolve IT and product security policies, standards, procedures, and technical baselines.
  • Drive security awareness initiatives and promote a culture of secure‑by‑design and shared responsibility across the organization.

Cyber Resilience Act and Product Security Accountability

  • Serve as the operational owner for Cyber Resilience Act readiness, interpretation, and implementation across products, platforms, and services.
  • Coordinate adoption of CRA‑aligned requirements including secure development lifecycle controls, product risk assessment, threat modeling, vulnerability handling, and coordinated disclosure processes.
  • Partner with engineering and product teams to ensure security and resilience requirements are embedded throughout the full product lifecycle, from design through end‑of‑life.
  • Ensure product security documentation, evidence, and technical controls support regulatory conformity assessments and audits.
  • Track and manage security vulnerabilities impacting products, including prioritization, remediation tracking, customer communication, and regulatory reporting as required.
  • Act as a primary liaison with Legal, Compliance, Engineering, and Product leadership on CRA‑related and product security regulatory matters.
  • Monitor evolving global…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search