Apply on Employer Site

VB Spine · 9 hours ago

Manager, Security Engineering

United States

Full-time

Remote

Senior Level, Lead/Staff

8+ years exp

VB Spine is a mission-focused company that supports surgeons during life-changing spinal procedures. The Senior Manager, Security Engineering will lead the global security engineering function, responsible for designing, implementing, and maintaining advanced security technologies and architectures to protect the company's intellectual property and ensure secure business operations.

E-CommerceHospitalManufacturingMedical Device

Responsibilities

Lead VB Spine’s security engineering function, ensuring robust design and implementation of security controls across on-prem, cloud, and hybrid environments

Develop and maintain enterprise security architecture aligned with NIST CSF, ISO 27001, and FDA/medical device regulations

Oversee deployment and optimization of security technologies, including EDR/XDR, SIEM, identity protection, network security, and cloud-native security tools

Drive adoption of Zero Trust principles and secure-by-design methodologies across infrastructure and applications

Implement automation and orchestration solutions (SOAR) to streamline security workflows and reduce manual effort

Collaborate with SecOps and MSSPs to ensure telemetry integration and detection rule optimization

Evaluate emerging technologies (AI-driven detection, threat intelligence platforms) and develop a roadmap for continuous improvement

Own vulnerability management lifecycle, including scanning, prioritization, remediation, and reporting

Partner with IT and application teams to ensure timely patching and secure configuration baselines

Conduct security assessments for new technologies and third-party integrations

Develop a multi-year roadmap for security engineering maturity, including automation, advanced analytics, and secure development practices

Mentor and grow a global team of security engineers, fostering a culture of innovation and operational excellence

Collaborate with Cybersecurity, Infrastructure, and Business Applications teams to deliver an integrated security posture

Qualification

Security ArchitectureVulnerability ManagementCloud SecuritySecurity AutomationSIEM/XDR PlatformsIncident ResponseLeadership SkillsStakeholder ManagementCommunication SkillsProblem-Solving Skills

Required

Minimum 8+ years of progressive cybersecurity experience, including 3+ years in security engineering or architecture leadership roles

Proven experience designing and implementing enterprise security architectures and technologies

Strong knowledge of SIEM/XDR platforms (Microsoft Sentinel, Defender XDR), identity security, and cloud security models

Expertise in vulnerability management, secure configuration, and automation/orchestration tools

Demonstrated expertise in incident response frameworks, escalation workflows, and regulatory evidence collection

Experience managing hybrid delivery models with a mix of internal analysts and outsourced MSSPs, including vendor governance and SLA enforcement

Familiarity with automation/orchestration tools and threat intelligence integration

Exceptional leadership, communication, and stakeholder management skills

Ability to influence, motivate, and build trust across diverse global teams

Ability to work in a fast-paced environment and manage multiple priorities

Strong analytical, problem-solving, and decision-making skills

Preferred

Bachelor's degree in Cybersecurity, Computer Science, or related field preferred; equivalent experience considered

Preferred certifications: CISSP, CISM, or SABSA for architecture; GIAC (e.g., GSEC, GCSA) for engineering expertise; Azure/AWS security certifications for cloud security

Experience in regulated industries (medical device, life sciences, healthcare) is a plus