Penumbra is hiring: Sr Manager Cybersecurity in Alameda
Penumbra, Alameda, CA, United States, 94501
The Senior Manager, Cybersecurity, is a technical hands-on leader who will lead and guide a team of engineers overseeing cybersecurity engineering and operations for the Company enterprise. This role will handle engineering and implementation of solutions, conduct cybersecurity assessments, oversee, and streamline security operations center (SOC) and tools, cyber defense solutions and services, threat hunting, forensics, 3rd party risk and incident response across global IT environment spanning on-premises data centers, private and public cloud services. This role will also be responsible for developing and maintaining cybersecurity roadmaps, technical design standards, cybersecurity policies, and procedures; provide level three technical support, and thought leadership.
What You'll Be Working On
- Select, manage, train, and develop staff. Establish objectives and assignments and provide ongoing feedback through performance reviews and development plans.
- Develop and maintain cybersecurity policies, standards, and procedures.
- Develop, monitor, assess and report on Cybersecurity threat activities, enterprise defense and offence activity stats, assess capabilities and drive capability consolidation and identify cost reduction opportunities.
- Streamline and improve security operations tools, attack vector use-cases, MITTER framework coverage and provide continued posture updates.
- Assist in building and developing a high-performance security focused technical team to support and enhance Cybersecurity engineering and Operations Services with clear concise goals and objectives.
- Maintain 3-year cybersecurity roadmap supporting current capabilities, technologies, address gaps while remaining current on technologies/tools and trends to prepare and protect the organization against future threats.
- Engage and collaborate with other IT and business teams to ensure security is the forefront, quantify cybersecurity risks that may impact achievement of business objectives and formulate strategies to facilitate appropriate risk treatment strategies.
- Ensure continuous Cybersecurity threat monitoring (7x24), remediation, validate security defenses, finetune and posture reporting to senior management.
- Manage the security of the core Microsoft tenant services including IaaS, PaaS, SaaS services, Office 365, Microsoft Windows, SQL, and other 3rd party cloud applications technical components.
- Build and improve tools and processes for cybersecurity to enhance proactive defenses, conduct red teaming exercises, identify and triage incidents. Identify opportunities to automate tasks and maintain operational tools. Troubleshoot and resolve issues escalated by internal customers, external partners, including implementing and deploying emergency fixes.
- Responsible for developing and implementing strategies to manage cybersecurity risks across Corporate Function.
- Adhere to the Company’s Quality Management System (QMS) as well as domestic and global quality system regulations, standards, and procedures.
- Understand relevant security, privacy and compliance principles and adhere to the regulations, standards, and procedures that are applicable to the Company.
- Ensure other members of the department follow the QMS, regulations, standards, and procedures.
- Perform other work-related duties as assigned.
What You'll Bring
- Bachelor's degree in computer science or related field with 10+ years of experience, or equivalent combination of education and experience.
- 10+ years’ experience managing security across IT domains i.e., Network, IAM, Data, Product domains and SOC environment is preferred.
- 8+ years of experience in a supervisory role desired.
- Strong hands-on experience in design, deploying and managing Network security, IAM suite of technology solutions/services, PKI services, Data Security solutions, Product/Application security solutions, SOC solutions and tools, 3rd party risk management.
- Strong hands-on experience conducting PEN testing, red/purple team exercises, tabletop simulations, PEN testing, IR and vulnerability management across IT domains and business where appropriate.
- Strong knowledge of Microsoft, Linux, Apple, and Azure Security Stack of services.
- Experience in implementing and enforcing security services and control (shift-left) across Infrastructure as a Code, Configuration management, DevOps and other automation capabilities is desired.
- Proven experience leading a global cybersecurity engineering and operations team, managing both people and technology.
Working Conditions
- General office environment. Business travel from 0% - 10%. Potential exposure to blood-borne pathogens. Requires some lifting and moving of up to 25 pounds. The employee is frequently required to stand, walk, sit, and reach with hands and arms, and to use a computer, sitting for extended periods. Specific vision abilities required by this job include the ability to read, close vision, distance vision, color vision, peripheral vision, and depth perception.
- Alameda, CA
- Starting Base Salary is $184,060/year - $225,000/year.
- Individual compensation will vary over time based on factors such as performance, skill level, competencies, work location and shift.