Sr. Manager, Information Security

Job Level: Manager (Individual Contributor – No Direct Reports)

Department: Information Technology – Enterprise Security (Security Operations & Engineering)

Reports To: Director, Information Security – Security Operations & Engineering

Location: Remote

The Sr. Information Security Manager is the owner and coordinator for Omnicell’s security engineering & automation capabilities and core security tooling stack, with emphasis on Qualys, Netskope, DLP, Vectra, or equivalent. This role defines the strategy, roadmap, standards, and operating model for these capabilities and ensures they deliver effective controls, meaningful metrics, and integrated workflows for Sec Ops.

The Sr. Information Security Manager leads tooling strategy, engineering direction, and cross-team execution working through influence, governance, and hands on technical expertise. The role drives vulnerability management, data protection, network detection, and offensive security (penetration testing and red team exercises), while building automation and process improvements across Omnicell’s Sec Ops technologies (SIEM, SOAR, EDR/XDR, ITSM, CMDB, and related tools).

• Serve as service owner and primary authority for:

• Qualys or equivalent vulnerability management

• Netskope or equivalent SWG/CASB/ZTNA

• Enterprise DLP or equivalent (endpoint, email, and/or cloud)

• Vectra or equivalent NDR platform

• Define and maintain tool strategy, roadmap, and standards, including policies, configurations, and integration patterns.

• Coordinate with Sec Ops, Infrastructure, Cloud, Network, and Product/Cloud Security to prioritize backlogs and ensure tools support business and risk reduction objectives.

• Own the Qualys (or equivalent) operating model, including scan architecture, schedules, asset tagging, and authentication patterns across on prem, cloud, and endpoint assets.

• Define risk-based prioritization models, remediation SLAs, and exception processes in partnership with asset owners and Sec Ops.

• Establish and maintain dashboards and reports for coverage, vulnerability aging, SLA performance, and risk trends; use these to drive accountability with IT and business stakeholders.

• Lead the design and governance of DLP and Netskope (or equivalent) policies to protect sensitive data (e.g., PHI, PII, confidential IP) across web, cloud apps, endpoints, and email.

• Partner with Data Owners, Privacy, Legal, and Compliance to translate classification and regulatory requirements into implementable policies.

• Oversee tuning strategy, rollout plans, and exception handling, balancing protection with business productivity.

• Define and oversee detection engineering strategy for Vectra (or equivalent) NDR and related integrations into SIEM/SOAR and case management.

• Work with Sec Ops to design and refine detections, correlation rules, and playbooks leveraging NDR, CASB/SWG, DLP, EDR/XDR, and vulnerability data.

• Act as Tier3 escalation for incidents involving these tools and ensure post incident findings are translated into durable configuration, process, and automation improvements.

• Define and own KPIs/KRIs for security tooling, including:

• Vulnerability remediation rates and SLA adherence
• Tool and sensor coverage across environments
• DLP incident volumes, false positive rates, and closure times.

• Drive automation strategy and patterns using APIs, scripting (e.g., Python, Power Shell), and SOAR, guiding engineers who implement automations and contributing hands on as needed.

• Lead continuous improvement initiatives to reduce manual effort, improve data quality, and standardize workflows across Sec Ops and IT (e.g., standard runbooks, intake processes, and change patterns).

• Act as the primary point of contact for these tools with Infrastructure, Cloud, Network, Application Owners, and Product/Cloud Security.

• Create and maintain SOPs, runbooks,…