Senior Manager, Infrastructure Protection Operations

Position Summary

We are seeking an experienced Senior Manager of Infrastructure Protection Operations to strengthen the security and resilience of our enterprise infrastructure. Reporting to the Vice President of Network & Infrastructure Protection Operations, this leadership role is responsible for managing the IPO team and ensuring the successful delivery of all services in the Infrastructure Protection & Operations charter. The Manager of IPO focuses on operational oversight of security controls (vulnerability management, endpoint security, network security operations, compliance, etc.), driving service delivery, and collaborating with technology teams to maintain a secure, compliant, and highly resilient environment.

Primary Responsibilities

• Team Leadership & Development: Manage and mentor a team of infrastructure security professionals. Oversee staffing, coaching, performance management, and skills development to build a high-performing IPO team, fostering a culture of accountability, continuous improvement, and collaboration.
• Vulnerability Management Program: Oversee the end-to-end vulnerability management program, including vulnerability scanning, patching, and remediation activities across servers, endpoints, and network devices. Ensure remediation timelines meet defined Service Level Agreements (SLAs) and escalate exceptions or delays to senior leadership. Track and report on vulnerability metrics to drive accountability and risk reduction.
• Endpoint Security & Hardening: Ensure robust endpoint security by overseeing the team’s management of antivirus/EDR solutions, device hardening, and security baseline compliance. Confirm that endpoints (workstations, servers, etc.) adhere to secure configuration standards and direct timely remediation of any deviations or endpoint risks.
• Network & Application Security Operations: Direct the operational management of network and application security controls. Oversee firewall, proxy, and web application firewall (WAF) policy enforcement and tuning in line with established security standards and architecture guidance. Ensure the team effectively monitors and responds to security events related to network, cloud, and application infrastructure, maintaining secure configurations and promptly addressing vulnerabilities or misconfigurations.
• Operational Compliance & Audit Readiness: Ensure that infrastructure operations consistently comply with enterprise security policies, baselines, and regulatory requirements. Supervise recurring operational compliance checks and evidence collection for internal and external audits. Proactively address and remediate compliance deviations, maintaining audit readiness and documentation of controls at all times.
• Secure Build Coordination: Collaborate with Cloud, Systems, Network, and Identity & Access Management (IAM) teams to integrate security requirements into infrastructure builds and changes. Validate that new systems and services are built in accordance with secure-by-default principles. Ensure patch cycles, backups, and recovery processes for new deployments meet security and resilience standards.
• Privileged Access Management Operations