Manager of CyberSecurity
Overview
We are seeking a hands-on and strategic Security Manager to lead and mature our client's information security program. This role will be responsible for protecting company systems, customer data, and cloud infrastructure while enabling the business to scale securely. As a key member of the technology team, the Security Manager will oversee security operations, governance, risk, and compliance efforts, with a strong focus on AWS cloud security.
Key Responsibilities
Security Strategy & Leadership
- Develop, implement, and continuously improve the company’s information security program
- Partner with executive leadership to align security initiatives with business objectives
- Establish and maintain security policies, standards, and procedures
Cloud Security (AWS)
- Design and manage security controls across AWS environments (IAM, VPC, logging, encryption)
- Monitor and respond to cloud security risks, vulnerabilities, and misconfigurations
- Partner with DevOps/Engineering to embed security into CI/CD pipelines (DevSecOps)
Security Operations
- Lead incident response efforts, including investigation, containment, and remediation
- Manage vulnerability scanning, penetration testing, and remediation tracking
- Oversee endpoint, network, and application security controls
Governance, Risk & Compliance
- Maintain and support compliance initiatives (SOC 2, ISO 27001, HIPAA or similar as applicable)
- Conduct risk assessments and manage third-party/vendor risk programs
- Ensure proper documentation and audit readiness
Awareness & Training
- Develop and deliver security awareness training across the organization
- Promote a strong security culture and best practices company-wide
Vendor & Tool Management
- Evaluate, implement, and manage security tools (SIEM, EDR, CSPM, etc.)
- Manage relationships with external security vendors and consultants
Qualifications
- 7+ years of experience in information security, with at least 2 years in a leadership or ownership role
- Strong experience securing
AWS environments (IAM, CloudTrail, GuardDuty, Security Hub, etc.)
- Experience with security frameworks such as
SOC 2, ISO 27001, NIST, or CIS
- Hands-on experience with incident response, vulnerability management, and security tooling
- Understanding of networking, system architecture, and application security
- Ability to balance security best practices with business needs in a growing company
Preferred Qualifications
- Experience in consumer services, fintech, or benefits platforms
- Familiarity with compliance requirements related to sensitive customer data
- Certifications such as CISSP, CISM, AWS Security Specialty, or similar
- Experience working in a mid-sized or high-growth environment
What Success Looks Like
- Security program is structured, documented, and audit-ready
- AWS environment is secure, monitored, and continuously improving
- Security risks are proactively identified and mitigated
- The organization demonstrates strong security awareness and accountability
Apply tot his job Apply To this Job