Security Engineer focused on enhancing cloud security at Ramp, ensuring safe management of financial data. Collaborating with cross - functional teams to remediate security issues and deploy secure solutions.
About the role
- Information Security Manager leading security operations for Protolabs' digital infrastructure. Overseeing compliance and risk management in a hybrid role based in Maple Plain, MN.
Responsibilities
- Lead global security operations, including SOC oversight, SIEM/SOAR tuning, threat detection, and incident response.
- Serve as incident commander for security events and drive end‑to‑end investigation, containment, and remediation.
- Direct vulnerability management across IT, cloud, and OT environments with SLA‑based remediation.
- Manage endpoint, network, and cloud security technologies (EDR/EPP, DLP, CASB, WAF, segmentation).
- Strengthen plant‑floor and OT security in partnership with manufacturing teams.
- Oversee compliance programs for NIST 800‑53/800‑171, SOX ITGC, PCI DSS, ITAR, and CMMC Level 2.
- Lead readiness assessments, audits, evidence management, and remediation tracking.
- Maintain security policies, standards, and procedures aligned with regulatory and customer requirements.
- Manage third‑party risk assessments and ongoing vendor compliance monitoring.
- Lead security governance and risk assessments; track mitigation and communicate risk posture to leadership.
- Ensure adherence to export control requirements, including ITAR and foreign‑person access controls.
- Manage and mentor a global security operations and compliance team.
- Build multi‑year security roadmaps and budgets aligned to company strategy.
- Collaborate across IT, OT, Engineering, Legal, HR, Finance, and other teams on key initiatives.
- Support security and compliance due diligence for M&A activities.
- Drive global security training and awareness programs, including annual and role‑based training.
Requirements
- Bachelor’s Degree in Information Security, Information Technology, Computer Science, or equivalent experience.
- 10+ years of experience across security operations, incident response, vulnerability management, and GRC.
- Experience in regulated environments including ITAR, SOX, PCI DSS, GDPR, and DoD compliance requirements.
- Strong working knowledge of security frameworks: NIST 800‑53/800‑171, CIS Controls, ISO 27001.
- Experience with cloud security (Azure/AWS), identity security, PAM, segmentation, and DLP.
- Outstanding analytical, communication, and documentation skills.
- Experience managing global security programs across complex hybrid environments.
- Proficiency with SIEM, SOAR, vulnerability management platforms, GRC tools, and identity platforms.
- Certifications such as CISSP, CISM, CCSP, CRISC, CISA, ISO 27001 are preferred.
- Ability to collaborate effectively with technical and non‑technical stakeholders.
- Ability to lead incident response activities and guide teams through high‑pressure situations.
- Ability to travel up to 10% of the time.
Benefits
- Health Insurance: Traditional OR High Deductible plan
- Flexible Spending Accounts
- Health Savings Account (including employer contributions)
- Dental and Vision
- Basic and Supplemental Life Insurance
- Short-Term and Long-Term Disability
- Paid caregiver leave
- You will receive PTO + Holiday Pay + Wellness Hours + Volunteer Hours
- 401k with company match and immediate vest
- Employee Stock Purchase Program with a 15% discount
- And More!
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Information Security Analyst at Banco ABC Brasil securing digital assets and ensuring compliance with industry standards. Collaborating with teams to enhance cybersecurity measures and manage incidents.
Sales Enablement Manager at Upwind Security crafting compelling narratives for technical audiences. Collaborating across teams to enhance market readiness and impact through influential content.
Talent Acquisition Partner owning recruitment cycles and enhancing Upwind's culture through AI - driven strategies in a fast - growing startup. Proactively sourcing global Go - To - Market roles while partnering closely with hiring managers.
Principal Associate in Capital One’s Cyber Division managing Information Security for Financial Services. Supporting stakeholders with analysis, reporting, and execution of cyber initiatives within the FS ISO Command Center.
IT Security Expert developing and maintaining a scalable hybrid multicloud network architecture across multiple European locations. Managing security and connectivity solutions in Azure and AWS environments.
Senior Information Governance Security Consultant at Civica improving information governance and cyber security for public and private sector clients. Leading security engagements and consultancy for resilience, compliance, and risk management.
Manager of IS Architecture & Compliance supporting security and compliance initiatives at Connecticut Children's health system. Partnering with teams to implement controls and assess risks across IT and business functions.
Associate Manager in Accenture's Global Protection & Security Team for Central Europe. Advising on physical safety, crisis management, and threat analyses in a dynamic, international environment.
Cybersecurity Learning Specialist at Avaron developing digital learning solutions to promote secure behaviors across a global cybersecurity organization. Focusing on pedagogical methods for effective learning experiences.