Security Engineering Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

Thorlabs · 3 hours ago

Security Engineering Manager

positionNewton, NJ
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$111K/yr - $165K/yr
date10+ years exp

Thorlabs is a company dedicated to advancing science through innovative photonics technologies. The Security Engineering Manager will lead the evolution of cybersecurity engineering, architecture, and operations while collaborating with various teams to enhance security measures and manage the security engineering team.

Health CareManufacturing
check
H1B Sponsor Likelynote

Responsibilities

Serve as a strategic advisor to the IT leadership team on emerging threats, investment priorities, and security posture
Set and track KPIs, KRIs, OKRs, and metrics to ensure effectiveness and continuous improvement
Collaborate closely with Infrastructure and Operations, Enterprise Applications, Application Development, and Enterprise Data teams to embed security into their processes
Present to executive stakeholders and help translate technical risk into business impact
Serve as the security SME in enterprise projects and technology investments, including tool evaluations, acquisitions, and divestitures, including strategic planning, budgeting, and cross-functional alignment
Define and drive the enterprise security architecture roadmap across infrastructure, cloud, applications, and Operational Technology (OT)
Lead the design and implementation of security controls, frameworks, and reference architectures
Oversee architecture reviews, and secure-by-design practices across the organization
Ensure baseline security measures are implemented and monitored (e.g., hardening, patching, zero trust, segmentation)
Manage integration and ongoing optimization of security tools (e.g., CSPM, CNAPP, IAM, PKI, DLP)
Lead the Security Engineering function responsible for Identity and Access Management
Architect and enhance enterprise IAM strategy including RBAC, PAM, MFA, SoD, and JML lifecycle
Drive IAM policy creation and enforcement across service, privileged, and user accounts
Guide the definition of IAM operating models, access certification processes, and automation of identity governance
Oversee day-to-day security operations including SOC management (outsourced), SIEM/SOAR (Microsoft Sentinel), EDR/XDR, and threat detection and response
Collaborate with the SOC to improve detection rules, reduce false positives, and ensure robust incident detection and response capabilities
Plan and oversee penetration testing, forensic analysis, and incident investigations
Align security architecture and operations with regulatory frameworks such as NIST, ISO 27001, CMMC, PCI-DSS, and GDPR
Partner with the GRC and Audit teams to ensure technical controls support broader compliance and risk
Coordinate with the GRC team to support policy development, risk assessments, and business continuity/disaster recovery planning

Qualification

CybersecuritySecurity ArchitectureIdentityAccess ManagementSecurity OperationsGovernanceRiskComplianceCloud PlatformsSecurity CertificationsCommunication SkillsLeadership SkillsInterpersonal Skills

Required

10+ years of experience in cybersecurity with increasing leadership responsibility, with at least 4+ years direct people management in technical security teams
Extensive experience in security architecture, cloud platforms (Microsoft Azure, M365), and enterprise security tools
Strong command of at least 3 of the following core security domains: IAM, SIEM, vulnerability management, network security, DevSecOps, and incident response
Experience leading or managing an outsourced SOC or MDR provider
Proven leadership in security engineering and operations in a hybrid (cloud/on-prem) environment
Bachelor's degree in computer science, Engineering, related field, or equivalent work experience
Excellent communication and interpersonal skills, with proven ability to lead across functions and influence executive stakeholders

Preferred

Advanced degree (e.g., MS in Cybersecurity) is a plus
Certifications such as CISSP, CISM, Microsoft Certified: Cybersecurity Architect Expert, Azure Solutions Architect, or CEH
Experience with Microsoft Defender suite, Intune, Microsoft Sentinel, various IAM and Vulnerability Management Tools
Familiarity with security control frameworks (e.g., NIST CSF, MITRE ATT&CK, CIS)
Experience in Zero Trust architecture and OT security a big plus

Company

Thorlabs

twittertwitter
Glassdoor3.7
company-logo
Thorlabs is a privately held optical equipment company.
dateFounded in 1989
location
New Jersey, Saint Patrick, TTO
people-size1001-5000 employees
web-link
http://www.thorlabs.com

H1B Sponsorship

Thorlabs has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (11)
2024 (8)
2023 (2)
2022 (8)
2021 (6)
2020 (3)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Peter Heim
Chief Technology Officer & General Manager
linkedin
leader-logo
Larry Wineberg
CFO
linkedin

Recent News

Labs of Latvia
Latvian scientists’ technology enters the catalogue of the leading photonics company
2025-12-10
SNS Insider pvt ltd
Transmission Immersion Probe Market Size to Hit USD 2.58 Billion by 2033 | SNS Insider
2025-12-03
Aeluma, Inc
Aeluma Quantum Photonics Paper Accepted to SPIE Photonics West Conference January 17 – 22, 2026 in San Francisco, California
2025-10-24
Company data provided by crunchbase