Manager, IT Security Architecture

Company Description

About CyberArk:
CyberArk (NASDAQ: CYBR), is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine – across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world’s leading organizations trust CyberArk to help secure their most critical assets. To learn more about CyberArk, visit our CyberArk blogs or follow us on Twitter, LinkedIn or Facebook.

Job Description

As part of the global CyberArk Information Security group, the Manager of IT Security Architecture will evaluate current and future security processes and technologies, recommend improvements, and ensure controls meet business goals and secure CyberArk's environment. Reporting to the Senior Director of Information Security, this role will manage architects, lead security projects for continuous improvement, support policy development, apply technical expertise to achieve business objectives, manage risks, ensure compliance, and oversee access to protect information resources. 

This position requires a deep understanding of various security technologies. The Manager must also stay ahead of emerging threats and vulnerabilities and develop strategies to mitigate risks. Additionally, they will work closely with other departments to integrate security measures into new initiatives and existing frameworks. 

Candidates should have a proven track record in security architecture, preferably within a large enterprise setting. Strong leadership skills are essential, along with excellent communication abilities to convey complex security concepts to non-technical stakeholders.  

Furthermore, the Manager will be responsible for mentoring junior team members, fostering a culture of security awareness throughout the organization, and ensuring all security policies are up-to-date and effectively enforced. Regular audits and assessments will be conducted to verify compliance with industry standards and regulations. The ideal candidate should also be able to handle high-pressure situations with professionalism and efficiency. 

Overall, the Manager, IT Security Architecture plays a critical role in safeguarding CyberArk's digital assets and ensuring the company remains resilient against cyber threats. 

Responsibilities: 

• Direct management of a global Security Architects team 
• Set clear goals and KPIs for the team members and follow up their progress 
• Conduct detailed security assessments, risk analyses, and vulnerability management activities; recommend mitigation measures and process improvements. 
• Responsible for the professional growth of the team members 
• Ensure high performances of SLA and handle security tickets as part of InfoSec on ongoing service and support 
• Review and update security and privacy policies, roadmaps, and procedures to align with industry standards and regulatory requirements. 
• Project management skills are a must. 
• Create and maintain documentation (e.g., technical or procedural) as needed. 
• Participate in the technical design, development, and testing of new features and products. 
• Create an annual work plan based on risks and market research. 

#LI-Hybrid  

#LI-CR1

Qualifications

• Information Security Experience 7+ years preferred  
• At least 3 years of experience as a leader of security teams in a global tech company with a proven ability to deliver 
• Experience in creating a technology roadmap as well as leading large-scale security projects while understanding the information security risk matrix 
• Ability to drive team to achieve and exceed established goals and objectives 
• Experience in hardening and virtualization systems, with strong technical understanding of operating system 
• Experience in network architecture and firewalls design and review 
• Strong understanding of security industry standards and best practices 
• Experience in CyberArk products is a plus 
• Strong knowledge of multi-cloud environments, preferably AWS. 
• Experience in vulnerability scanners (preferably Qualys) and as a minimum basic understanding of common vulnerabilities, including OWASP Top10. 
• A team player with a good interpersonal communication skill  
• Ability to consult, work & lead other colleagues 

Certifications (a plus): 

• CISSP (Certified Information Security System Professional) 
• Other relevant Information Security certifications