Senior Manager, Cybersecurity Operations & Risk Management (Remote)

Posted Yesterday
Be an Early Applicant
Hiring Remotely in Greenland, NH, USA
In-Office or Remote
155K-185K Annually
Senior level
Fashion • Retail
The Role
Lead and improve cybersecurity operations, incident response, vulnerability management, and technical risk reduction. Coordinate cross-functional remediation, manage security technologies and vendors, develop metrics and playbooks, and communicate risks to stakeholders and leadership.
Summary Generated by Built In
Job Summary & Responsibilities

Reporting to the Senior Director, Cybersecurity & Compliance, the Senior Manager, Cybersecurity Operations & Risk Management is responsible for the operational oversight and continuous improvement of cybersecurity operations, incident response, vulnerability management, and technical risk reduction activities. This is a senior manager-level individual contributor role that leads initiatives through influence, coordination, and cross-functional partnership rather than direct people management.

 

The role partners with IT teams, business stakeholders, vendors, and managed service providers to strengthen security controls, reduce risk, and drive timely remediation of security issues. As the operational lead for key cybersecurity functions, this position helps ensure threats, vulnerabilities, and control weaknesses are effectively identified, prioritized, and addressed.

 

The ideal candidate combines strong technical expertise, operational leadership, and communication skills with a demonstrated ability to drive measurable security improvements across a global environment

 

CORE ACCOUNTABILITIES:

 

Security Operations & Incident Response

  • Lead cybersecurity monitoring, investigations, and incident response activities
  • Serve as the operational lead and primary coordinator for cybersecurity incidents and investigations
  • Coordinate containment, recovery, stakeholder communications, and post-incident remediation activities
  • Develop and maintain incident response procedures, playbooks, and tabletop exercises
  • Partner with internal teams, vendors, and managed security service providers to investigate and resolve security events
  • Develop operational metrics and reporting related to threats, incidents, response effectiveness, and overall security posture
  • Develop and maintain operational dashboards and reporting that provide leadership visibility into critical vulnerabilities, remediation status, technology lifecycle risks, security incidents, and unresolved risk exposures

Vulnerability & Threat Management

  • Own vulnerability identification, risk-based prioritization, remediation tracking, exception management, reporting and stakeholder engagement processes. Establish remediation expectations, monitor adherence, remediation SLAs, and escalate aging risks to appropriate technology and business leaders
  • Maintain visibility into end-of-life (EOL) and end-of-support (EOS) technology risks. Partner with Infrastructure, Applications, and Architecture teams to ensure replacement, upgrade, or risk mitigation plans are established and tracked before expiration dates
  • Partner with technology teams to drive timely remediation of vulnerabilities and security weaknesses
  • Develop vulnerability metrics and reporting to measure remediation performance, risk reduction, and program effectiveness
  • Manage vulnerability exceptions and ensure risk acceptance decisions are documented and periodically reviewed
  • Assess emerging threats and organizational exposure to inform remediation priorities
  • Partner with Security Architecture to align remediation efforts with security standards and long-term risk reduction objectives

Security Technology & Operations Improvement

  • Serve as the operational owner for cybersecurity technologies and services, ensuring they effectively support threat detection, incident response, vulnerability management, and risk reduction objectives
  • Continuously improve security monitoring, detection, response, and reporting capabilities
  • Administer and continuously improve endpoint privilege management (EPM) controls to support least-privilege access, application control, and endpoint risk reduction
  • Design and optimize operational workflows, dashboards, alerts, and automation opportunities
  • Partner with Security Architecture and Infrastructure teams to implement and operationalize new security controls and technologies
  • Support onboarding, integration, and optimization of security technologies across the enterprise
  • Manage cybersecurity vendor and service provider relationships, ensuring effective service delivery, operational performance, issue resolution, and alignment with security objectives

 

Security Risk & Control Management

  • Conduct technical security assessments to identify cybersecurity risks, control weaknesses, and remediation opportunities across infrastructure, cloud, applications, and security technologies
  • Partner with Infrastructure, Cloud, Applications, and Security Architecture teams to develop remediation plans
  • Validate implementation and effectiveness of security controls
  • Provide technical expertise and evidence in support of cybersecurity audits, assessments, and compliance activities
  • Maintain remediation tracking, cybersecurity risk registers, technology lifecycle risk inventories, and operational security improvement plans. Drive regular review of outstanding risks with accountable technology leaders and facilitate escalation of overdue remediation activities
  • Assist with third-party security assessments and technical due diligence reviews

Leadership & Collaboration

  • Serve as a trusted cybersecurity subject matter expert across operational security initiatives.
  • Build strong relationships with technology teams, business stakeholders, vendors, and service providers
  • Drive accountability for remediation activities and security commitments
  • Foster a culture of operational excellence, continuous improvement, and proactive risk management
  • Communicate cybersecurity risks and recommendations to both technical and non-technical audiences
  • Establish and lead recurring cybersecurity operational review meetings focused on vulnerability remediation, technology lifecycle risks, exception management, and risk reduction progress across the enterprise
Preferred Qualifications

Education

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
  • Advanced degree preferred

Experience

  • 7+ years of cybersecurity experience, with demonstrated success in security operations, incident response, vulnerability management, and technical risk reduction initiatives
  • 3-5 years leading security operations, vulnerability management, or incident response functions.
  • Experience managing security incidents and coordinating cross-functional technical response activities
  • Experience working with SIEM, EDR/XDR, vulnerability management, and cloud security platforms
  • Experience prioritizing remediation efforts using business risk, exploitability, and threat intelligence
  • Experience presenting cybersecurity risks, trends, and operational metrics to leadership
  • Experience working with cybersecurity vendors, MSSPs, and technology partners

 

Preferred Areas of Expertise

 

  • Security Operations & Monitoring
  • Incident Response
  • Vulnerability Management
  • Threat Intelligence
  • SIEM & Security Analytics
  • EDR/XDR Platforms
  • Identity & Access Management
  • Privileged Access Management
  • Microsoft 365 Security
  • Cloud Security
  • Security Automation

 

Preferred Certifications

 

  • CISSP
  • CISM
  • GCIH
  • Security+
  • Microsoft Security Certifications

Base Salary/Hourly Range: From $155,000 to $185,000 annually*

Bonus Eligibility: Yes, eligible for annual target bonus based on company and individual performance

Benefits Offered: Health Insurance, Dental Insurance, Vision Care, Health Savings Account with Employer Contribution, Flexible Spending Accounts, 401(k) Retirement Plan with Employer Matching Contributions, Short-Term Disability Insurance, Life Insurance, Vacation Time, Sick Time, Paid Parental Leave, Adoption Assistance Program, Charitable Matching Gifts Program, Holidays and Cole Haan Discounts

Paid Time Off: Paid vacation days starting at 120 hours, 11 paid company and personal holidays, 3 volunteer days

Sick Leave: Eligible non-exempt employees earn one hour of sick time for every 30 hours worked. Eligible exempt full-time employees earn 2.67 hours of sick time each bi-weekly pay period

 

*Rate of pay dependent upon candidates’ relevant skills, experience, and location

Skills Required

  • Bachelor's degree in Cybersecurity, IT, Computer Science, or related field
  • 7+ years of cybersecurity experience (security operations, incident response, vulnerability management)
  • 3-5 years leading security operations, vulnerability management, or incident response functions
  • Experience with SIEM platforms
  • Experience with EDR/XDR platforms
  • Experience with vulnerability management platforms and processes
  • Experience with cloud security platforms
  • Experience prioritizing remediation using business risk, exploitability, and threat intelligence
  • Experience managing security incidents and coordinating cross-functional technical responses
  • Experience working with cybersecurity vendors, MSSPs, and technology partners
  • Experience with Identity and Access Management and Privileged Access Management
  • Experience administering endpoint privilege management and least-privilege controls
  • Experience presenting cybersecurity risks, trends, and operational metrics to leadership
  • Preferred certifications: CISSP, CISM, GCIH, Security+, Microsoft Security Certifications
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Greenland, NH
1,618 Employees
Year Founded: 1928

What We Do

Cole Haan became an independently owned company again in 2013 and is growing rapidly in the US and abroad. We have earned a unique leadership position in the marketplace as a pioneer of goods that are as functional and versatile as they are crafted—most notably through our ZerøGrand and GrandSeries products. We are reinventing the world of modern footwear, handbags and accessories for consumers who seek style, versatility, and innovative comfortable function in their products. The company’s worldwide headquarters is in Greenland, NH, with offices in New York, Tokyo, Hong Kong, London, Amsterdam, Dubai and sourcing offices in Asia. Cole Haan is sold in more than 500 retail stores globally, digital platforms around the world and within our department store and specialty retail partners. We seek hard-working team members who are entrepreneurial-minded, solutions-oriented who accept and own accountability, model integrity, value individuality and diversity, encourage teamwork and inspire creativity. We invite you to visit us at any time at www.colehaan.com. To keep tabs on us to see what’s happening, follow us at: Facebook: https://www.facebook.com/colehaan Twitter: https://twitter.com/colehaan Instagram: http://instagram.com/colehaan Pinterest: http://www.pinterest.com/ColeHaan/ Google +: https://plus.google.com/+colehaan/posts Let's connect and see what happens. As an Equal Opportunity Employer, Cole Haan is committed to meeting the spirit as well as the letter of the law. We have been, and continue to be, committed to Equal Opportunity Employment and equal treatment of all qualified individuals -- regardless of race, color, sex, national origin, age, religion, marital status, sexual orientation, gender identity, gender expression, veteran status, disability, or any other factors that are not job related.

Similar Jobs

GameChanger Logo GameChanger

Senior Product Manager

Computer Vision • Digital Media • Kids + Family • Mobile • Software • Sports
Remote
United States
260 Employees
160K-180K Annually

Samsara Logo Samsara

Sr. Director, Enablement - Shared Services

Artificial Intelligence • Cloud • Computer Vision • Hardware • Internet of Things • Software
Easy Apply
Remote or Hybrid
United States
4000 Employees
151K-215K Annually

Samsara Logo Samsara

Sr. Director, Field Activation

Artificial Intelligence • Cloud • Computer Vision • Hardware • Internet of Things • Software
Easy Apply
Remote or Hybrid
United States
4000 Employees
151K-215K Annually

Samsara Logo Samsara

Director, Enablement - Skills and Leadership Excellence

Artificial Intelligence • Cloud • Computer Vision • Hardware • Internet of Things • Software
Easy Apply
Remote or Hybrid
United States
4000 Employees
128K-182K Annually

Similar Companies Hiring

Grocery TV Thumbnail
Software • Retail • Marketing Tech • Hardware • Digital Media • AdTech
Austin, TX
56 Employees
Scotch Thumbnail
Artificial Intelligence • eCommerce • Fintech • Payments • Retail • Software • Analytics
US
35 Employees
Golden Pet Brands Thumbnail
Digital Media • eCommerce • Information Technology • Marketing Tech • Pet • Retail • Social Media
El Segundo, California
178 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account