We are seeking a Cybersecurity Manager to join and lead our growing security team. This hands-on leadership role will oversee a small group of Identity and Access Management (IAM) engineers. It will advance our organization’s cybersecurity posture across multiple key domains. The ideal candidate combines team leadership, a deep understanding of business needs, technical expertise, and the ability to drive cross-functional collaboration.
Key Responsibilities
- Lead and mentor a small team of IAM engineers, providing technical direction, professional development, and performance management.
- Partner with business stakeholders to ensure cybersecurity initiatives align with organizational goals and risk tolerance.
- Oversee the administration, policy enforcement, and incident response related to the company’s email security systems (e.g., Mimecast, Microsoft Defender for Office 365, Abnormal).
- Own and evolve the vendor security management process, including onboarding reviews, contract assessments, risk mitigation plans, and periodic reassessments.
- Design, implement, and manage end-user cybersecurity awareness and training programs, including phishing simulations, policy education, and compliance campaigns.
- Collaborate closely with internal IT and compliance teams to ensure cybersecurity controls meet relevant regulatory requirements and industry standards.
- Stay informed about emerging threats, tools, and best practices, proactively incorporating them into the organization’s security architecture and planning.
- Contribute to creating and refining security policies, standards, and procedures.
Minimum Qualifications
- Bachelor’s degree in Cybersecurity, Information Technology, or a related field (or equivalent experience).
- 5+ years of hands-on cybersecurity experience, with at least 2 years in a team leadership or management role.
- Deep knowledge of email security platforms and threat protection technologies.
- Strong understanding of IAM principles, user lifecycle management, and access governance tools like SailPoint, Okta, or Microsoft Entra.
- Familiarity with vendor risk assessment frameworks and third-party due diligence processes.
- Experience building or managing end-user security awareness and training programs.
- Strong written and verbal communication skills, with the ability to present complex topics to technical and non-technical audiences.
- Industry certifications such as CISSP, CISM, or CISA are a plus.
Read Full Description