Senior Manager, Information Security Architecture & Engineering in United States at Jobgether

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Senior Manager, Information Security Architecture & Engineering based in the United States.

This role sits at the center of enterprise security architecture and engineering, responsible for defining how security is embedded across platforms, applications, and data systems. You will lead the design and implementation of secure-by-default frameworks that protect cloud infrastructure, software delivery pipelines, and sensitive data flows at scale. Acting as a key security leader within a global organization, you will partner closely with engineering, DevOps, and governance teams to ensure security is seamlessly integrated into every stage of the development lifecycle. The position blends hands-on architectural expertise with strategic leadership, requiring both deep technical knowledge and the ability to influence cross-functional teams. You will also guide vulnerability management, security design reviews, and identity and access management practices across the enterprise. This is a high-impact role where security is positioned not as a constraint, but as a business enabler that accelerates innovation safely.

• Define and maintain enterprise security architecture frameworks ensuring secure-by-design principles across applications, infrastructure, and data systems.
• Partner with engineering, DevOps, and platform teams to embed security into SDLC, CI/CD pipelines, and cloud environments.
• Lead and continuously improve vulnerability management programs, ensuring risk-based prioritization and remediation across assets.
• Oversee security design review processes for new and evolving systems, ensuring consistent and scalable security assessment practices.
• Promote security-as-a-service models that enable developers to build and deploy securely with minimal friction.
• Act as a trusted advisor to engineering and technology leadership on security risks, architecture decisions, and best practices.
• Collaborate with GRC teams to align technical controls with regulatory, compliance, and business requirements.
• Champion a security-first culture by embedding awareness, standards, and accountability across technical teams.
• Drive improvements in identity, access management, encryption, logging, monitoring, and data protection architectures.

• 10+ years of experience in information security, including security architecture, application security, or infrastructure security roles.
• Strong expertise in cloud security environments (AWS, Azure, or GCP) and DevSecOps practices.
• Proven experience designing and implementing secure software development and CI/CD-integrated security controls.
• Deep understanding of vulnerability management, threat modeling, and security testing methodologies.
• Experience leading or influencing globally distributed teams across multiple time zones.
• Strong ability to communicate complex security concepts to engineering, technical, and non-technical stakeholders.
• Familiarity with security frameworks and regulations such as NIST CSF, PCI-DSS, GLBA, or equivalent standards.
• Hands-on experience with identity and access management, encryption, authentication, and monitoring systems.
• Bachelor’s degree in Computer Science, Information Security, or a related field.

Preferred qualifications include certifications such as CISSP, CISM, OSCP, AWS Security Specialty, or equivalent, as well as experience with tools like Wiz, Okta, GitHub, or SentinelOne, and exposure to bug bounty programs or advanced security testing practices.

• Competitive base salary range of $166,400–$266,200 depending on experience and location.
• Comprehensive medical, dental, and vision insurance coverage.
• Remote-first working arrangement with flexibility.
• 401(k) retirement plan eligibility.
• Paid time off plus standard US holidays.
• Professional development support, including certifications and training opportunities.
• Opportunity to lead enterprise-wide security architecture initiatives at scale.
• Exposure to modern cloud-native, DevSecOps, and data security environments.
• Collaborative, mission-driven culture focused on innovation and continuous improvement.
• High-impact leadership role with visibility across engineering and executive teams.