Dutch Bros Coffee, founded in 1992, is a drive-through coffee company committed to delivering exceptional beverages and creating meaningful connections. With a
Manager, Cybersecurity Operations
Location
Arizona
Posted
17 hours ago
Salary
0
Seniority
Lead
Job Description
Manager, Cybersecurity Operations
Dutch Bros Coffee
Title: Manager, Cybersecurity Operations Location: Tempe, AZ 85281 Job Description: Headquarters widget:Full time Job ID:REQ-18645 SummaryResponsibilitiesEducationSkills The Manager of Cybersecurity Operations is responsible for safeguarding critical systems and sensitive information at Dutch Bros Coffee. This role requires a minimum of 6 years of experience in information security, with a strong background in IT areas such as software development and incident response. The position is based in Tempe, Arizona, and requires in-office presence four days a week. Compensation is dependent on experience. It's fun to work in a company where people truly believe in what they are doing. At Dutch Bros Coffee, we are more than just a coffee company. We are a fun-loving, mind-blowing company that makes a difference one cup at a time. Position Overview: The Manager of Cybersecurity Operations plays a crucial role in ensuring the protection and security of critical systems and sensitive information across the organization. Reporting to the Director, Cybersecurity this role oversees key cybersecurity programs, including the Security Operations Center (SOC), Vulnerability Management, Data Loss Prevention (DLP), ensuring the confidentiality, integrity, and availability of critical assets. This role will be tasked with driving security strategies and initiatives while proactively addressing emerging cybersecurity risks. Strong technical expertise, leadership capabilities, and a proactive approach to challenges are essential for success in this role. Job Qualifications: - Bachelor’s degree (BA/BS) in a related discipline, or 4 additional years of related experience, required - A minimum of 6 years of experience in infosec roles that provide a background in IT areas such as software development, infrastructure, operations, and incident response, is required - Understanding of Artificial Intelligence (AI) concepts, including their applications, risks, and implications within cybersecurity environments - A Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) Certification, is preferred - Proven experience managing a SOC and implementing vulnerability management, and DLP - Strong knowledge of cybersecurity technologies, MDR, EDR, SIEM, SOAR, Vulnerability Management tools and best practices - Thorough understanding of SOX, CCPA, PCI, NIST, and CIS18 - Previous experience in SaaS-heavy environments and vendor management - Deep experience with risk management, threat modeling, and vulnerability assessment - Can lead without authority. Ability to lead, mentor, and develop a high-performing cybersecurity team, fostering a collaborative and growth-oriented environment - Expertise in managing high-pressure, time-sensitive incidents and making quick, informed decisions under stress - In-depth knowledge of current and emerging cyber threats, with the ability to apply advanced detection methodologies to stay ahead of risks - Familiarity with cloud security frameworks, controls, and best practices for securing cloud environments (e.g., AWS, Azure, Google Cloud) Location Requirement: This role is located in Tempe, Arizona. This position is required to be in office 4 days per week (Mon-Thurs); Fridays are optional remote work days. Key Result Areas (KRAs): - Design workflow and processes for Security Operations Center (SOC): - Manage and optimize the day-to-day operations and tools of the SOC, ensuring effective monitoring, detection, and response to security incidents. - Develop and implement SOC processes and procedures to improve efficiency and effectiveness with increased focus on new capabilities and advanced threat detection. - Incident Response: - Oversee the incident response process, ensuring rapid identification, containment, eradication, and recovery from security incidents. - Conduct post-incident reviews and implement lessons learned to enhance security measures. - Partners with IT and GRC teams to maintain readiness, incident response plans, to include building playbooks and conducting simulations ensuring preparedness across the organization. - Vulnerability Management: - Lead the vulnerability management program, including vulnerability assessments, prioritization, and remediation strategies. - Collaborate with IT and development teams to ensure timely patching and vulnerability mitigation. - Establish metrics on the status of the program and inform leadership on areas for opportunity. - Data Loss Prevention (DLP): - Oversee the DLP strategy, ensuring the protection of sensitive data across all platforms and preventing unauthorized access or data exfiltration. - Conduct regular audits and assessments to evaluate DLP effectiveness and compliance. - AI-Driven Security Strategy & Risk Management - Define and drive key results related to Artificial Intelligence adoption and governance within cybersecurity, including evaluating AI-driven security tools, understanding AI-enabled threat vectors, and ensuring secure, responsible use of AI across security operations. - Support the growth of the infosec team while operationalizing cybersecurity initiatives to highlight improvements in posture: - Evangelize scorecards against NIST and CIS standards to track the improvement of security across programs. - Foster team mentality centered around business benefits from security initiatives. - Actively participate in hiring processes and onboarding of new employees and vendors. - Plan, assign and support workloads for direct reports. - Grow and mentor security talent. - Set reasonable stretch performance goals, provide balanced, regular performance feedback, and conduct tri-annual performance reviews. - Recognize and reward performance excellence. - Provide leadership, direction, and training to improve information security awareness. - Other duties as assigned Skills: - Change Management - Project Management - Business Plan Development - Using data to make decisions - Communication - Critical Problem Solving - Delegation Physical Requirements: - In-Office Environment:Must be able to work in a busy, crowded, and loud office with frequent distractions and interruptions - Must be able to collaborate in-person with occasional impromptu in-person meetings - Office Conditions:Adaptability to typical office conditions, which may include exposure to air conditioning, heating, artificial lighting, and varying noise levels - Mobility: Ability to sit, stand, reach, twist, stretch, and work at a desk for long stretches. Must be able to occasionally move or lift office items up to 25 pounds - Hearing Requirements:Hearing must be sufficient or correctable to ensure clear understanding of spoken information, including participating in virtual meetings and phone calls. Use of hearing aids or other assistive devices is acceptable if needed. - Reading and Writing Proficiency:Ability to read and write in English is essential for processing documents, drafting reports, and following up on necessary actions. Proficiency in written communication is required to handle job-related tasks effectively. - Vision Requirements:Vision must be adequate or correctable to perform essential job duties, such as reading documents on a computer screen and using other visual tools. Use of corrective lenses or other measures to meet visual requirements is expected if needed. - Technology Proficiency:Must be proficient in operating a computer and other office productivity tools such as printers, scanners, and collaboration software. - Effective Communication:Must possess strong verbal and written communication skills to interact effectively with team members, clients, and other stakeholders via email, video conferencing, and other in office communication tools. Compensation: DOE If you like wild growth and working in a unique and fun environment, surrounded by positive community, you'll enjoy your career with us!
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Enterprise Account Exec, Cybersecurity (Strategic Tech)
ServiceNowServiceNow provides cloud-based services that automate enterprise information technology operations. As an employer, ServiceNow offers a challenging, collaborat
Company Description It all started when engineer Fred Luddy wrote code that automated a tedious task for his coworker, Phyllis. She cried tears of joy. That moment inspired Fred to build a company that could do that for everyone-freeing people from busywork so they could focus on meaningful work. Today, ServiceNow is the AI control tower for business reinvention. Our ServiceNow AI platform brings together any AI, any data, and any workflow- helping 85% of the Fortune 500® work smarter, faster, and better. We're building an AI-native culture where technology and talent are unstoppable together. And we're just getting started. Join us to put AI to work for people. Armis from ServiceNow, protects the entire attack surface and manages an organization's cyber risk exposure in real time. Combined with ServiceNow's Security and Risk capabilities, as well as Identity Security capabilities from Veza, we bring together all critical capabilities to secure every asset, every identity - incl. AI Agents - across all environments with the right level of context - security, operational and business - to build the first of its kind autonomous defense platform for the Agentic Enterprise. Job Description You will produce new business sales revenue from a SaaS license model. You will accomplish this through account planning, territory planning, researching prospect customers, using business development strategies and completing field-based sales activities within a defined set of prospects, territory or vertical. What you get to do in this role: - Develop relationships with multiple C-suite personas (e.g., CFO, CIO, COO, CDO) across all product sales - Oversee client relationship mapping to the account team, orchestrating an account strategy across a broad virtual team (Solutions Consultants, Solutions Specialist, Success resources, Partners and Marketing, etc.) - Be a trusted advisor to your customers by understanding their business and advising on how ServiceNow can help help their IT roadmap - Identify the right specialist/ support resources to bring into a deal, at the right time Qualifications To be successful in this role you have: - Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving. This may include using AI-powered tools, automating workflows, analyzing AI-driven insights, or exploring AI's potential impact on the function or industry. - 7+ years of sales experience within software OR solutions sales organization - Experience selling cybersecurity - Knowledge of and experience selling into technology companies - Experience establishing trusted relationships with current and prospective clients and other teams - Ability to produce new business, negotiate deals, and maintain healthy C-Level relationships - Experience achieving sales targets - The ability to understand the "bigger picture" and our plans around IT - Experience promoting a customer success focus in a "win as a team" environment For positions in this location, we offer a base pay of $114,400 - $188,750, plus equity (when applicable), variable/incentive compensation and benefits. Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure. Please note that the base pay shown is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location. We also offer health plans, including flexible spending accounts, a 401(k) Plan with company match, ESPP, matching donations, a flexible time away plan and family leave programs. Compensation is based on the geographic location in which the role is located and is subject to change based on work location. Additional Information Work Personas We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here . To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service. Equal Opportunity Employer ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, age, disability, gender identity, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements. Accommodations We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact globaltalentss@servicenow.com for assistance. Export Control Regulations For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities. From Fortune. ©2026 Fortune Media IP Limited. All rights reserved. Used under license.
Enterprise Account Exec, Cybersecurity (Toronto)
ServiceNowServiceNow provides cloud-based services that automate enterprise information technology operations. As an employer, ServiceNow offers a challenging, collaborat
Company Description It all started when engineer Fred Luddy wrote code that automated a tedious task for his coworker, Phyllis. She cried tears of joy. That moment inspired Fred to build a company that could do that for everyone-freeing people from busywork so they could focus on meaningful work. Today, ServiceNow is the AI control tower for business reinvention. Our ServiceNow AI platform brings together any AI, any data, and any workflow- helping 85% of the Fortune 500® work smarter, faster, and better. We're building an AI-native culture where technology and talent are unstoppable together. And we're just getting started. Join us to put AI to work for people. Armis from ServiceNow, protects the entire attack surface and manages an organization's cyber risk exposure in real time. Combined with ServiceNow's Security and Risk capabilities, as well as Identity Security capabilities from Veza, we bring together all critical capabilities to secure every asset, every identity - incl. AI Agents - across all environments with the right level of context - security, operational and business - to build the first of its kind autonomous defense platform for the Agentic Enterprise. Job Description You will produce new business sales revenue from a SaaS license model. You will accomplish this through account planning, territory planning, researching prospect customers, using business development strategies and completing field-based sales activities within a defined set of prospects, territory or vertical. What you get to do in this role: - Develop relationships with multiple C-suite personas (e.g., CFO, CIO, COO, CDO) across all product sales - Oversee client relationship mapping to the account team, orchestrating an account strategy across a broad virtual team (Solutions Consultants, Solutions Specialist, Success resources, Partners and Marketing, etc.) - Be a trusted advisor to your customers by understanding their business and advising on how ServiceNow can help help their IT roadmap - Identify the right specialist/ support resources to bring into a deal, at the right time Qualifications To be successful in this role you have: - Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving. This may include using AI-powered tools, automating workflows, analyzing AI-driven insights, or exploring AI's potential impact on the function or industry. - 7+ years of sales experience within software OR solutions sales organization - Experience selling cybersecurity - Experience establishing trusted relationships with current and prospective clients and other teams - Ability to produce new business, negotiate deals, and maintain healthy C-Level relationships - Experience achieving sales targets - The ability to understand the "bigger picture" and our plans around IT - Experience promoting a customer success focus in a "win as a team" environment Additional Information Work Personas We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here . To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service. Equal Opportunity Employer ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, age, disability, gender identity, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements. Accommodations We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact globaltalentss@servicenow.com for assistance. Export Control Regulations For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities. From Fortune. ©2026 Fortune Media IP Limited. All rights reserved. Used under license.
Role Description Avint is seeking a highly motivated Journeyman Security Controls Assessor (SCA) in support of a critical federal contract. The Journeyman SCA is a mid-level professional responsible for executing standard security control assessments, evaluations, and compliance verifications across organizational information systems. Operating as a core member of the cybersecurity assurance team, this role focuses on testing technical, operational, and management controls to ensure alignment with regulatory requirements and security policies. The mid-level SCA works under the general supervision of and receives technical guidance from senior SCAs, contributing directly to the organization’s Risk Management Framework (RMF) and Security Assessment and Authorization (A&A) lifecycles. Qualifications - Bachelor’s degree (BS/BA) OR equivalent professional experience - Security+ or higher - Minimum of 6-8 years of dedicated experience in cybersecurity, information assurance, or IT auditing - At least six (6) years of dedicated experience performing hands-on security controls assessments of systems of moderate complexity (C2 & C3) with capability of supporting C4 assessments Requirements - Must be a U.S. citizen (no dual citizenship) - Ability to pass a background investigation - Able to obtain and maintain DHS Suitability/Entry on Duty (EOD) Soft Skills - Strong attention to detail and organized documentation habits - Good analytical and troubleshooting abilities - Professional verbal and written communication skills, with an ability to collaborate effectively across technical boundaries Position Responsibilities - Security Assessment and Validation: - Conduct security control assessments of information systems using interview, examination, and testing methods - Verify compliance with established frameworks such as NIST SP 800-37, NIST SP 800-53, NIST SP 800-171, FISMA, and/or FedRAMP, depending on organizational requirements - Analyze system architectures, network diagrams, configuration settings, and policies to identify vulnerabilities and compliance gaps - Review vulnerability scanning results (e.g., Nessus, Qualys) and penetration testing reports to validate the implementation of technical controls - Reporting and Risk Management: - Document detailed testing results and draft sections of the Security Assessment Report (SAR), ensuring clear explanations of non-compliant findings - Present assessment findings and risk postures to Authorizing Officials (AO), system owners, and other stakeholders in clear, actionable terms - Assist system owners in the development of realistic Plans of Action and Milestones (POA&M) to remediate identified deficiencies - Collaborate with the Risk Management team to ensure assessment data accurately informs the organization’s continuous monitoring strategy - Continuous Improvement and Strategy: - Stay current on emerging cyber threats, vulnerabilities, regulatory changes, and assessment techniques - Identify opportunities to automate assessment processes and integrate modern tooling into the assessment lifecycle - Participate in the development and refinement of enterprise information security policies, standards, and guidelines - Technical Areas of Expertise: - Solid working knowledge of security control frameworks (specifically NIST SP 800-53, NIST SP 800-37, and NIST SP 800-171) - Familiarity with cloud security concepts (AWS, Azure, Google Cloud) and cloud compliance frameworks (FedRAMP) - Knowledge of operating system security, network protocols, access control mechanisms, and vulnerability management tools Benefits - Competitive salaries - Full health insurance - Generous time off - Observation of federal holidays - Reimbursement for courses, exams, and tuition for professional development Salary Range $104,000-$119,000
Senior Cybersecurity Third-Party Risk Analyst
BoeingA leading global aerospace company and top U.S. exporter, Boeing develops, manufactures and services commercial airplanes, defense products and space systems for customers in more than 150 countries. Our U.S. and global workforce and supplier base drive innovation, economic opportunity, sustainability and community impact. Boeing is committed to fostering a culture based on our core values of safety, quality and integrity.
Job Description At Boeing, we innovate and collaborate to make the world a better place. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us. We are seeking a highly experienced Senior Cybersecurity Third-Party Risk Analyst to perform advanced, technical assessments of third-party cyber risk and to design automation and process improvements using configuration, integration, and agentic AI capabilities. This senior individual contributor will focus on developing hands-on assessment processes to evaluate vendor controls, validate technical evidence, and drive remediation recommendations - while also building robust automation and configuration assets (scripts, connectors, playbooks, and AI agents) to scale assessment throughput, improve data quality, and accelerate risk decisions. A strong emphasis on lean process enhancement will ensure the program delivers higher velocity, lower waste, and measurable improvements in assessment quality and cycle time. Though the position is primarily remote, there will be times to go into a Boeing facility. Candidates must live near a Boeing Facility or be willing to relocate at their own expense. This position requires candidates to be a US Person (Green Card holder or US Citizen) Key Responsibilities - Design & Execute end-to-end cybersecurity third-party assessments for strategic and high-risk vendors, including questionnaire reviews, technical evidence validation, architecture reviews, cloud configuration analysis, IAM assessments, encryption and key management reviews, logging/monitoring validation, and vulnerability/penetration test interpretation. - Produce repeatable processes that create clear, prioritized risk findings and remediation guidance tailored to vendor risk and business impact - Design, build, and maintain automated assessment capabilities: evidence collection scripts, API connectors, ETL pipelines, data validation routines, and integration points with TPRM/GRC platforms (Aravo, ServiceNow GRC, RSA Archer, OneTrust, etc.). - Develop and deploy agentic AI components (e.g., automated evidence triage, document ingestion and extraction, risk-scoring assistants, remediation suggestion agents) while ensuring safe, auditable, and privacy-preserving behavior. - Lead lean process improvement initiatives across the assessment lifecycle: map value streams, eliminate waste, reduce handoffs, optimize SLAs, and implement continuous improvement cycles to increase throughput and quality. - Create and maintain technical assessment artifacts: standardized templates, evidence matrices, technical checklists, assessment playbooks, and scoring rubrics that support repeatability and auditability. - Validate and tune automated scoring models and AI outputs; perform periodic calibration and manual reviews to ensure accuracy and reduce false positives/negatives. - Collaborate closely with Procurement, Legal, Security Operations/CIRT, Privacy, and other business stakeholders to ensure technical assessment findings map to contractual requirements and incident response expectations. - Support remediation verification and re-assessment - use automation to track evidence submission, validate fixes, and update risk status. - Maintain strong documentation & processes to support change management of automation logic, AI agent behaviors, data mappings, integration schemas - Stay current on emerging attack techniques, supply chain threats, automation best practices, responsible AI controls, and lean methods; propose and implement improvements. Basic/Required Qualifications - 5+ years of cybersecurity experience with at least 3 years focused on third-party/vendor security assessments or equivalent technical assessment roles. - Deep hands-on expertise reviewing technical artifacts: cloud console evidence (AWS/Azure/GCP), architecture diagrams, IAM configurations, network security, encryption, logging/monitoring, vulnerability scans, and penetration test reports. - Proven ability to translate technical findings into concise executive-level summaries and remediation plans; excellent written and verbal communication skills. - Demonstrated experience applying lean principles or continuous improvement methods to operational processes - ability to run value stream mapping, define and measure waste, and implement sustainable improvements. - Comfortable working independently as a senior individual contributor and coordinating across technical and non-technical stakeholders; experience in agile environments and using agile tooling (ADO, JIRA). Preferred Qualifications - Bachelor's degree in Computer Science, Information Security, Engineering, or related technical field; advanced degree (MS or equivalent) preferred. - Industry recognized security certifications (CISSP, CISM, CRISC) and/or cloud security certifications (AWS/Azure/GCP Security) preferred. - Strong configuration skills for security/TPRM tooling (Aravo, ServiceNow GRC, RSA Archer, OneTrust, or similar) including forms, workflows, scoring, and data model configuration. - Formal training or certification in Lean/Six Sigma, Kaizen, or similar continuous improvement methodologies. - Practical experience designing, training, or integrating agentic AI components (LLM orchestration, retrieval-augmented generation, agent frameworks) into security processes - able to implement guardrails, audit logging, and privacy controls. - Prior experience implementing AI governance for security use cases - Familiarity with software supply chain risk concepts (SBOMs) - Experience with SIEM/SOAR integrations, vulnerability management platforms, and continuous monitoring - Experience working in regulated industries (finance, aviation, healthcare, defense) or with global privacy/regulatory requirements (GDPR, CMMC, etc...). Typical Education/Experience: - Education/experience typically acquired through advanced education (e.g. Associate) and typically 2 or more years' related work experience or an equivalent combination of education and experience (e.g. Bachelor+1 years' related work experience, 5 years' related work experience, etc.). Relocation: Relocation assistance is not a negotiable benefit for this position. Candidates must live in the immediate area of a Boeing facility or relocate at their own expense. Drug Free Workplace: Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria are met as outlined in our policies. Pay & Benefits: At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities. The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and several programs that provide for both paid and unpaid time away from work. The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements. Pay is based upon candidate experience and qualifications, as well as market and business considerations. Pay Range is dependent on geographical location and experience: Senior - $128,700 - $181,500 Applications for this position will be accepted until Jul. 15, 2026 Export Control Requirements: This position must meet U.S. export control compliance requirements. To meet U.S. export control compliance requirements, a "U.S. Person" as defined by 22 C.F.R. §120.62 is required. "U.S. Person" includes U.S. Citizen, U.S. National, lawful permanent resident, refugee, or asylee. Export Control Details: US based job, US Person required Relocation Relocation assistance is not a negotiable benefit for this position. Visa Sponsorship Employer will not sponsor applicants for employment visa status. Shift This position is for 1st shift Equal Opportunity Employer: Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.


