Job Closed

This listing is no longer active.

REE Medical

REE Medical is committed to providing empowering solutions to veterans with disabilities across the healthcare industry. Built on a philosophy of teamwork and i

Information Systems Security Manager

Location

United States

Posted

64 days ago

Salary

$125K - $150K / year

Seniority

Senior

Bachelor Degree6 yrs expEnglishAWSAzureCloudCyber SecurityFirewalls

Job Description

Information Systems Security Manager

REE Medical

• Oversee the design, implementation, and management of security controls, including firewalls, intrusion detection/prevention systems, and endpoint protection. • Lead incident response efforts, including investigation, containment, and recovery from security breaches or incidents. • Monitor and assess emerging threats, vulnerabilities, and industry trends to maintain a robust security posture. • Develop, implement, and enforce IT security policies, standards, and procedures. • Ensure compliance with relevant regulations and standards (e.g., GDPR, PCI-DSS, ISO 27001). • Coordinate audits and assessments to validate security controls and address gaps. • Conduct regular risk assessments and vulnerability scans to identify and prioritize security risks. • Develop and maintain a risk management framework to mitigate threats to data and systems. • Collaborate with legal, compliance, and business units to address risk-related issues. • Evaluate and implement advanced security technologies, such as AI-driven threat detection, zero-trust architecture, and cloud security solutions. • Stay abreast of emerging technologies and their implications for cybersecurity

Job Requirements

  • Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
  • Current Certified Information Systems Security Professional certification.
  • 6+ years of experience in IT security, with at least 3 years in a leadership or managerial role.
  • Proactive approach to identifying and mitigating cyber risks.
  • Ability to balance security requirements with business agility.
  • Familiarity with modern IT environments, including cloud platforms (AWS, Azure, Google Cloud), and DevSecOps.
  • Strong knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001).
  • Expertise in network security, encryption, and endpoint protection.
  • Proficiency with security tools (e.g., SIEM, IDS/IPS, DLP).
  • Excellent leadership, communication, and problem-solving skills.
  • Ability to work under pressure and handle sensitive information discreetly.
  • Experience w/ Salesforce is a plus
  • Excellent communication and interpersonal abilities, facilitating effective collaboration across various departments and levels of the organization.
  • Experience working in a remote environment, comfortable leading remote teams.
  • Proficiency in Microsoft Office Suite, data visualization tools, and project management software.
  • Knowledge of VA disability ratings and claims preferred.
  • Ability to navigate difficult interpersonal conversations and utilize multiple platforms for communication within departments and teams

Benefits

  • Competitive salary: $125,000-$150,000 Salary Depending on Experience.
  • Health, dental, and vision insurance with Company-sponsored Life Insurance
  • Retirement savings plan with company match
  • Vacation time off, sick time off, and holidays
  • Ongoing training and development programs
  • Opportunities for advancement within the company
  • Flexible work schedules
  • Remote first environment with companywide conferences annually
  • Employee assistance program for personal and family well-being
  • Employee discounts on products and services through Insperity
  • Recognition programs for outstanding performance
  • Company-sponsored social events and activities
  • Ability to travel twice per year, to Annual Company Conference and IT Team Onsite, as well as potential for additional Leadership meetings.

Related Categories

Related Job Pages

More Security Engineer Jobs

Title: Subject Matter Expert – Nuclear Power Plant Cybersecurity Remote - SAN ANTONIO, TX Job Description: Job Description:Seeking a Subject Matter Expert (SME) with expertise in nuclear power plant (NPP) technology and associated cybersecurity requirements, programs, and applications. Requirements: - Demonstrated experience performing work related to the cybersecurity of Nuclear Power Plants (NPPs), including regulation, research, evaluation, or implementation of NPP cybersecurity programs. - Demonstrated knowledge of NPP systems and the application of cybersecurity programs across NPP environments. - Detailed knowledge of NRC cybersecurity regulations, guidance, and standards applicable to nuclear power plants. - Experience supporting cybersecurity assessments, risk evaluations, compliance activities, or security controls for digital assets and operational technologies within NPPs. - Strong understanding of industrial control systems (ICS), operational technology (OT), digital instrumentation and control (I&C), and critical infrastructure protection within nuclear environments. - Ability to support technical research, analysis, documentation, and stakeholder discussions related to nuclear cybersecurity initiatives. Preferred Qualifications: - Bachelor’s degree in Nuclear Engineering, Cybersecurity, Electrical Engineering, Computer Science, or related field. - Prior experience supporting NRC, DOE, utilities, national laboratories, or related nuclear industry programs. Place of Performance: 100% Remote

Texas

Information Systems Security Manager

REE Medical

REE Medical is committed to providing empowering solutions to veterans with disabilities across the healthcare industry. Built on a philosophy of teamwork and i

Role Description The IT Security Manager is responsible for developing, implementing, and maintaining the organization’s cybersecurity policies, procedures, and systems to safeguard sensitive data and ensure compliance with regulatory standards. They lead a team of security professionals, manage risk assessments, and respond to security incidents to protect the organization’s IT infrastructure. - Oversee the design, implementation, and management of security controls, including firewalls, intrusion detection/prevention systems, and endpoint protection. - Lead incident response efforts, including investigation, containment, and recovery from security breaches or incidents. - Monitor and assess emerging threats, vulnerabilities, and industry trends to maintain a robust security posture. - Develop, implement, and enforce IT security policies, standards, and procedures. - Ensure compliance with relevant regulations and standards (e.g., GDPR, PCI-DSS, ISO 27001). - Coordinate audits and assessments to validate security controls and address gaps. - Conduct regular risk assessments and vulnerability scans to identify and prioritize security risks. - Develop and maintain a risk management framework to mitigate threats to data and systems. - Collaborate with legal, compliance, and business units to address risk-related issues. - Evaluate and implement advanced security technologies, such as AI-driven threat detection, zero-trust architecture, and cloud security solutions. - Stay abreast of emerging technologies and their implications for cybersecurity. Qualifications - Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. - Current Certified Information Systems Security Professional certification. - 6+ years of experience in IT security, with at least 3 years in a leadership or managerial role. - Proactive approach to identifying and mitigating cyber risks. - Ability to balance security requirements with business agility. - Familiarity with modern IT environments, including cloud platforms (AWS, Azure, Google Cloud), and DevSecOps. - Strong knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001). - Expertise in network security, encryption, and endpoint protection. - Proficiency with security tools (e.g., SIEM, IDS/IPS, DLP). - Excellent leadership, communication, and problem-solving skills. - Ability to work under pressure and handle sensitive information discreetly. - Experience w/ Salesforce is a plus. - Excellent communication and interpersonal abilities, facilitating effective collaboration across various departments and levels of the organization. - Experience working in a remote environment, comfortable leading remote teams. - Proficiency in Microsoft Office Suite, data visualization tools, and project management software. - Knowledge of VA disability ratings and claims preferred. - Ability to navigate difficult interpersonal conversations and utilize multiple platforms for communication within departments and teams. Benefits - Comprehensive Benefits Package - Competitive salary: $125,000-$150,000 Salary Depending on Experience. - Health, dental, and vision insurance with Company-sponsored Life Insurance. - Retirement savings plan with company match. - Vacation time off, sick time off, and holidays. - Career Development Opportunities - Ongoing training and development programs. - Opportunities for advancement within the company. - Work-Life Balance - Flexible work schedules. - Remote first environment with companywide conferences annually. - Employee assistance program for personal and family well-being. - Perks and Rewards - Employee discounts on products and services through Insperity. - Recognition programs for outstanding performance. - Company-sponsored social events and activities. - Ability to travel twice per year, to Annual Company Conference and IT Team Onsite, as well as potential for additional Leadership meetings.

United States
$125K - $150K / year
Job Closed
LUMIS logo

Security Tech Lead

LUMIS

Intuition som ledelses- og udviklingsværktøj. Coaching, workshops og foredrag.

Full TimeRemoteTeam 1-10Since 2024H1B No Sponsor

• Assess risks in systems, cloud environments, internal processes and new projects; • Conduct continuous security assessments of infrastructure and applications; • Propose and follow up on action plans to improve security maturity; • Ensure compliance with LGPD, ISO/IEC 27001 and other applicable frameworks; • Develop and maintain Information Security policies, standards and procedures; • Support business continuity and disaster recovery initiatives; • Prepare reports and provide evidence for audits and compliance assessments; • Support the implementation and evolution of security tools such as SIEM, WAF, IDS/IPS, EDR, DLP and vulnerability management solutions; • Establish monitoring, detection and incident response processes; • Coordinate security investigations and simulation exercises; • Ensure security best practices in cloud environments (AWS and OCI), including access management, encryption, backups and automations; • Collaborate with Engineering and DevOps teams to implement DevSecOps practices and security in CI/CD pipelines; • Define security and privacy-by-design standards for products and infrastructure; • Manage IAM-related controls, including MFA, SSO, RBAC and periodic access reviews; • Ensure traceability, segregation of duties and privileged access governance; • Support the adoption and governance of PAM/password vault solutions; • Participate in defining security requirements for SaaS/PaaS products; • Perform application vulnerability analysis using SAST, DAST and interpret pentest results; • Promote secure development practices and share references such as the OWASP Top 10 with technical teams; • Conduct security training and awareness initiatives; • Act as a technical authority for different areas of the company; • Define a security roadmap aligned with business strategy; • Support architecture decisions, risk prioritization and security investments; • Serve as the technical focal point for audits, RFPs and security questionnaires; • Support commercial, customer service and pre-sales teams in communicating the company’s security practices.

Brazil
Job Closed

Role Description Own the enterprise information security, compliance & business continuity program across Crete (corporate) and all member firms. Build standardized, scalable security controls, governance, and operations across multiple independent control environments. - Define the multi-year security strategy and roadmap across Crete and member firms in a federated model, aligning priorities to business risk and acquisition cadence. - Establish and maintain the security policy framework, standards, and minimum control baseline across all firms; design pragmatic exception handling and remediation plans for varying maturity levels. - Build security operating rhythms and executive reporting: KPIs, risk posture, incident trends, audit/compliance status, and program progress for Crete leadership and firm leaders. - Partner with IT, data, and engineering leadership to embed security into operations, architecture decisions, and change management across the portfolio. - Lead security diligence for M&A: current-state control assessments, key risk identification, remediation estimates, and repeatable post-close stabilization playbooks (30/60/90-day plans). - Drive security integration of new firms (people/process/technology) across separate environments — identity, endpoint/email, logging/monitoring, data protection — with scalable onboarding playbooks and control alignment patterns. - Provide security architecture oversight for cloud and hybrid environments with emphasis on Azure, Intune, and Microsoft Defender; define secure patterns for privileged access, conditional access, PAM, RBAC, and separation of duties. - Oversee day-to-day security operations: vulnerability management, patch/risk prioritization, endpoint and email security, tooling lifecycle, and event triage across Crete and member firms. - Manage third-party MDR/SOC providers — scope, SLAs, escalation paths, detection coverage, playbooks, reporting — and drive continuous improvement of monitoring outcomes. - Own the incident response program end-to-end: runbooks, tabletop exercises, ransomware preparedness, forensics coordination, and post-incident reviews with corrective actions. - Implement consistent risk management across firms — periodic assessments, control testing, remediation tracking — and own third-party/vendor security risk management for corporate and shared vendors. - Support member firms with client-driven security and compliance requirements (NIST CSF, CIS, SOC 2 Type II); ensure evidence collection is repeatable and accurate. - Lead security awareness and training programs tailored to professional services workflows, with measurable adoption and behavioral outcomes. - Lead, coach, and develop the cybersecurity team; serve as escalation point for security decisions, incidents, and complex risk tradeoffs. - Build documentation, playbooks, and implementation guides that enable consistent security outcomes across firms; influence firm leaders and local teams to drive baseline control adoption. Qualifications - 10+ years of progressive experience in information security or cybersecurity. - 3+ years leading and developing security teams. - Demonstrated M&A, private equity, or roll-up experience. - Strong understanding of cloud security principles with hands-on Azure and Microsoft security experience. - Experience managing and governing compliance standards (NIST, CSF, CIS, and SOC2 Type II preferred). - Experience managing business continuity programs and lifecycle. - Microsoft Azure/Intune experience. - Experience managing third-party security services (MDR/SOC, IR retainers, testing vendors). - Proven ability to design and run a complete enterprise security control program. - Excellent stakeholder management and executive communication skills. - Bachelor’s degree or equivalent experience; security certifications preferred (CISSP). - Professional services experience and/or accounting and CPA firm experience strongly preferred. Benefits - The total rewards package at Current includes base salary, bonus, and benefits. - Our salary ranges are competitive within the accounting industry and are updated regularly using the most reliable compensation survey data for our industry. - New hire offers are made based on a candidate’s experience, expertise, geographic location, and internal pay equity relative to peers. - We provide a robust benefits package, including: - Health, Dental, and Vision Insurance (with options for fully paid employee only coverage for health and dental). - Company-Paid Life and Long-Term Disability Insurance. - Ancillary Benefits such as supplemental life insurance and short-term disability options. - Classic Safe Harbor 401(k) Plan with employer contributions. - Opportunities for professional growth, learning, and development including access to Becker and LinkedIn Learning. Equal Opportunity We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or any other applicable legally protected characteristic.

United States
$187K - $225K / year