Senior Manager, Information Security

DescriptionPhotonic is seeking an experienced Senior Manager, Information Security to establish, enhance and lead our security program. This role will work closely alongside our existing IT team to strengthen the organization's overall technology posture through a structured, collaborative approach to security, risk management, and operations.
This position introduces a dedicated security function, creating clear ownership and effective checks and balances across infrastructure, systems, and access.
This role operates as an independent security function, working in close partnership with IT to ensure balanced, well-governed technology decisions.
WHAT WE NEED YOU TO DOSecurity Leadership & Strategy

• Evaluate the organization's existing information security program and develop a strategic plan for improvement in a rapidly growing deep tech environment
• Work with business leaders to establish security priorities aligned with the business objectives and compatible with risk tolerance
• Provide expert guidance to leadership on security risks, trade-offs and investments

Security Operations & Incident Response

• Own and continuously improve the organization's incident response capabilities
• Lead coordination and response during security events
• Conduct post-incident reviews and drive improvements across systems and processes

MDR / SOC Ownership

• Evaluate, onboard, and manage a third-party MDR provider (e.g., Arctic Wolf or equivalent)
• Define alerting, escalation, and response workflows in collaboration with IT
• Ensure effective monitoring across endpoints, identity systems, and infrastructure

Security Architecture & Controls

• Define and maintain baseline security standards across:
• Identity and access management
• Endpoint protection
• Logging and monitoring
• Partner with IT to implement controls in a scalable and operationally practical way
• Provide security input into infrastructure and system design decisions
• Define and run a vulnerability management program (asset coverage, scanning, prioritization, remediation tracking, and patch governance) in partnership with IT

Identity & Access Governance

• Establish and enforce identity security practices, including MFA and conditional access
• Define access models and privileged access controls
• Oversee governance of external/guest identities and third-party access

Risk, Compliance & Reporting

• Maintain a security risk register and prioritized remediation roadmap
• Provide regular reporting to senior leadership on security posture, risks, and priorities
• Support customer, partner, and regulatory security requirements as needed
• Own and maintain security policy, standards, and exception/risk acceptance governance processes
• Establish and manage a third-party/vendor risk management process

Cross-Functional Collaboration

• Work alongside the IT team to implement security controls and improvements
• Establish clear separation of responsibilities between security and IT operations
• Contribute to a culture of shared accountability, transparency, and continuous improvement
• Own and maintain our security awareness and training program (onboarding, annual refreshers, and phishing simulations)

WHAT YOU BRING TO OUR TEAMRequired:

• 10+ years in information security, IT security, or related roles
• Demonstrated experience building, leading, or maturing a security program in a mid-sized organization
• Strong hands-on experience with:
• Microsoft 365 / Entra ID security
• Endpoint detection and response (EDR/XDR) platforms
• Incident response and forensic workflows
• Experience selecting and managing MDR/SOC providers
• Proven ability to operate independently and influence cross-functional teams

Preferred:

• Experience in hybrid IT environments (cloud + on-prem)
• Familiarity with security frameworks (NIST CSF, ISO 27001, CIS)
• Background in infrastructure, systems, or DevOps prior to specializing in security
• Experience partnering with senior leadership teams

Success in First 6 Months

• Security program roadmap established and aligned with key stakeholders
• MDR provider onboarded and fully integrated into operations
• Baseline security controls and monitoring coverage established
• Incident response process formalized and exercised
• Strong effective partnership established with IT team and stakeholders

WHY YOU SHOULD WORK WITH US

• Work closely with some of the brightest innovators in quantum technologies to drive breakthroughs that redefine computing
• Enjoy a fast-paced and fun environment where you can try new things while solving innovative challenges every day
• Inclusive company culture that values collaboration
• Regular social events and fun activities keep our global team connected
• Competitive compensation package including base salary, stock options, and relocation assistance for global talent
• Comprehensive benefits including extended health, dental, life, long term disability, an employee assistance program, parental leave top-ups, and a flexible spending account

The description above is what we think an ideal candidate would look like for this role. At Photonic, we understand that everyone has a different work and life journey. If you feel your experience is close to what we've described, but you might not meet all the requirements, please still apply! All roles listed are for current vacancies. While artificial intelligence (AI) tools may be used to assist in reviewing applicant profiles, they do not determine candidate outcomes. Our hiring decisions are made by people, not algorithms. We are committed to fostering, cultivating, and preserving a culture of equity, diversity, and inclusion. We embrace and encourage our employees' differences, knowing that these very differences inspire innovation and build better teams. If there are any accommodations our team can make throughout our hiring process, please let us know.