The Senior Manager, Cybersecurity, is a technical hands-on leader who will lead and guide a team of engineers overseeing cybersecurity engineering and operations for the Company enterprise. This role will handle engineering and implementation of solutions, conduct cybersecurity assessments, oversee, and streamline security operations center (SOC) and tools, cyber defense solutions and services, threat hunting, forensics, 3rd party risk and incident response across global IT environment spanning on-premises data centers, private and public cloud services. This role will also be responsible for developing and maintaining cybersecurity roadmaps, technical design standards, cybersecurity policies, and procedures; provide level three technical support, and thought leadership.
What You'll Be Working On
- Select, manage, train, and develop staff. Establish objectives and assignments and provide ongoing feedback through performance reviews and development plans.
- Develop and maintain cybersecurity policies, standards, and procedures.
- Develop, monitor, assess and report on Cybersecurity threat activities, enterprise defense and offence activity stats, assess capabilities and drive capability consolidation and identify cost reduction opportunities.
- Streamline and improve security operations tools, attack vector use-cases, MITTER framework coverage and provide continued posture updates.
- Assist in building and developing a high-performance security focused technical team to support and enhance Cybersecurity engineering and Operations Services with clear concise goals and objectives.
- Maintain 3-year cybersecurity roadmap supporting current capabilities, technologies, address gaps while remaining current on technologies/ tools and trends to prepare and protect the organization against future threats.
- Engage and collaborate with other IT and business teams to ensure security is the forefront, quantify cybersecurity risks that may impact achievement of business objectives and formulate strategies to facilitate appropriate risk treatment strategies.
- Ensure continuous Cybersecurity threat monitoring (7x24), remediation, validate security defenses, finetune and posture reporting to senior management.
- Manage the security of the core Microsoft tenant services including Iaas, PaaS, SaaS services, Office 365, Microsoft Windows, SQL, and other 3rd party cloud applications technical components.
- Build and improve tools and processes for cybersecurity to enhance proactive defenses, conduct red teaming exercises, identify and triage incidents. Identify opportunities to automate tasks and maintain operational tools. Troubleshoot and resolve issues escalated by internal customers, external partners, including implementing and deploying emergency fixes.
- Responsible for developing and implementing strategies to manage cybersecurity risks across Corporate Function.
- Adhere to the Company’s Quality Management System (QMS) as well as domestic and global quality system regulations, standards, and procedures.
- Understand relevant security, privacy and compliance principles and adhere to the regulations, standards, and procedures that are applicable to the Company.
- Ensure other members of the department follow the QMS, regulations, standards, and procedures.
- Perform other work-related duties as assigned.
What You'll Bring
- Bachelor's degree in computer science or related field with 10+ years of experience, or equivalent combination of education and experience
- 10+ years’ experience managing security across IT domains i.e., Network, IAM, Data, Product domains and SOC environment is preferred.
- 8+ years of experience in a supervisory role desired
- Strong hands-on experience in design, deploying and managing Network security, IAM suite of technology solutions/ services, PKI services, Data Security solutions, Product/Application security solutions, SOC solutions and tools, 3rd party risk management.
- Strong hands-on experience conducting PEN testing, red/ purple team exercises, tabletop simulations, PEN testing, IR and vulnerability management across IT domains and business where appropriate.
- Strong knowledge of Microsoft, Linux, Apple, and Azure Security Stack of services.
- Experience in implementing and enforcing security services and control (shift-left) across Infrastructure as a Code, Configuration management, DevOps and other automation capabilities is desired.
- Proven experience leading a global cybersecurity engineering and operations team, managing both people and technology.
Working Conditions
- General office environment. Business travel from 0% - 10%. Potential exposure to blood-borne pathogens. Requires some lifting and moving of up to 25 pounds. The employee is frequently required to stand, walk, sit, and reach with hands and arms, and to use a computer, sitting for extended periods. Specific vision abilities required by this job include the ability to read, close vision, distance vision, color vision, peripheral vision, and depth perception.
- Alameda, CA
-
Starting Base Salary is $184,060/year - $225,000/year.
- Individual compensation will vary over time-based on factors such as performance, skill level, competencies, work location and shift.
What We Offer
•A collaborative teamwork environment where learning is constant, and performance is rewarded.
•The opportunity to be part of the team that is revolutionizing the treatment of some of the world's most devastating diseases.
•A generous benefits package for eligible employees that includes medical, dental, vision, life, AD&D, short and long-term disability insurance, 401(k) with employer match, an employee stock purchase plan, paid parental leave, eleven paid company holidays per year, a minimum of fifteen days of accrued vacation per year, which increases with tenure, and paid sick time in compliance with applicable law(s).
Penumbra, Inc., headquartered in Alameda, California, is a global healthcare company focused on innovative therapies. Penumbra designs, develops, manufactures, and markets novel products and has a broad portfolio that addresses challenging medical conditions in markets with significant unmet need. Penumbra sells its products to hospitals and healthcare providers primarily through its direct sales organization in the United States, most of Europe, Canada, and Australia, and through distributors in select international markets. The Penumbra logo is a trademark of Penumbra, Inc.
Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, age, disability, military or veteran status, or any other characteristic protected by federal, state, or local laws.