Manager, IT Security

Overview

The Manager, IT Security, is a key leadership role within the IT Security organization, reporting directly to the Director, Information Security. This position is responsible for leading a team of IT Security Analysts and driving the implementation, optimization, and ongoing governance of the organization's Amazon Web Services (AWS) cloud environment, Microsoft Purview data governance platform, and Data Loss Prevention (DLP) program. The ideal candidate combines strong technical expertise with hands-on leadership, operational discipline, and a proactive approach to safeguarding sensitive data.

Job Duties

• Leads a team of IT Security Analysts, fostering a culture of continuous improvement and accountability. (Essential)
• Architects, implements, and maintains security controls across AWS environments, covering access management, network security, threat detection, monitoring, logging, encryption, and web application firewall protections. (Essential)
• Develops and enforces AWS security best practices, policies, and standards aligned with industry frameworks, including the Center for Internet Security (CIS), the National Institute of Standards and Technology (NIST), and System and Organization Control. (Essential)
• Leads cloud security posture management (CSPM) efforts and remediation of misconfigurations across AWS environments. (Essential)
• Coordinates team member selection and development and ensures team members comply with appropriate policies and procedures.
• Designs and implements automated security monitoring, alerting, and incident response workflows using AWS-native and third-party tools.
• Manages and optimizes the Microsoft Purview environment, including sensitivity labels, information protection policies, and data classification.
• Owns the end-to-end Data Loss Prevention (DLP) program strategy, implementation, and operational management.
• Designs, deploys, and tunes DLP policies across endpoints, cloud services, email, and collaboration platforms.
• Investigates and responds to DLP policy violations, conducting root cause analysis and recommending corrective actions.
• Collaborates with development operations and engineering teams to embed security into continuous integration and continuous delivery pipelines and infrastructure-as-code deployments.
• Manages AWS Organizations, Service Control Policies (SCPs), and multi-account security strategies.
• Serves as an escalation point for security incidents, coordinating response efforts, and driving resolution.
• Partners with IT infrastructure, application development, and business teams to integrate security requirements into projects and initiatives.
• Communicates security risks, recommendations, and program status to senior leadership and non-technical stakeholders.
• Supports audit and compliance activities by providing evidence, documentation, and subject matter expertise.
• Other duties and projects as assigned.

Requirements

• Bachelor's Degree in Computer Science, Information Security, Information Technology or related field (Required)
• Master's Degree in Information Security, Cybersecurity or related field (Preferred)
• 3 years in of people management experience leading security or technical teams (Required)
• 6 years in of progressive experience in information security or security engineering (Required)
• Deep hands-on expertise with AWS security services such as identity and access management (IAM), GuardDuty, Security Hub, CloudTrail, Config, key management services (KMS) and web application firewall (WAF) organizations (Required)
• Working knowledge of Microsoft Purview including information protection, sensitivity labels, and data classification (Required)
• Proven experience designing and managing enterprise DLP programs (Required)
• Solid understanding of security frameworks and standards such as NIST (National Institute of Standards and Technology), CIS (Center for Internet Security), ISO 27001, and SOC 2 (Preferred)
• Experience with infrastructure-as-code tools such as Terraform or CloudFormation (Required)
• Experience with security information and event management (SIEM) platforms such as Splunk, Sentinel, or similar (Preferred)
• Knowledge of scripting and automation using Python, PowerShell, or similar (Preferred)
• Excellent written, verbal, and presentation skills
• Ability to collaborate with cross-functional teams on effective security processes
• Ability to respond to business needs after normal business hours
• Must have a valid driver's license
• Preferred Certifications/Licensures:(AWS certifications such as Solutions Architect, Security Specialty, or equivalent)
• Preferred Certifications/Licensures:(Industry certifications such as CISSP, CISM, CCSP, or GIAC)