The Opportunity...The Security Manager is responsible for the day-to-day leadership, execution, and continuous improvement of the organization's cybersecurity program. This individual plays a hands-on role in protecting the enterprise's digital assets, information, and systems against an evolving threat landscape. The Security Manager reports to the SVP of IT.
As organizations become increasingly reliant on digital technology, data, and AI-driven tools, this role ensures that security operations run effectively day to day and that emerging technologies - including AI platforms and AI-powered security tooling - are deployed, monitored, and governed responsibly. The Security Manager works closely with IT, engineering, compliance, and business unit stakeholders to translate security strategy into operational reality, while also escalating significant risks and incidents to senior leadership.
The Security Manager partners regularly with IT and engineering teams, compliance and legal, external vendors, and auditors. They may support senior leadership during major security incidents or regulatory inquiries, but are not typically the primary executive spokesperson for the organization.
How You'll Contribute...• Operational Leadership: Manage day-to-day security operations, ensuring policies and strategies set by senior leadership are implemented effectively across teams and systems.
• Risk Management: Identify, assess, and track cyber risks; recommend and implement mitigations through technology, process, and policy changes.
• Policy Implementation: Maintain and enforce information security policies, standards, and procedures; recommend updates based on operational realities.
• Security Operations: Manage security monitoring, incident response, vulnerability management, and threat intelligence functions, including coordinating with SOC/MSSP resources as applicable.
• AI Governance and Tooling: Own the security review, deployment, and ongoing monitoring of AI tools used across the organization. Manage platforms such as Harmonic (for AI/data risk visibility and shadow AI detection) and Weave (for AI-related threat and behavior monitoring), including configuration, alert tuning, and reporting on findings. Develop and maintain guidelines for safe employee use of generative AI and third-party AI tools, and evaluate new AI tools/vendors for security and data-handling risk before adoption.
• Governance, Risk, and Compliance (GRC) Support: Support compliance with relevant laws, regulations, and frameworks (e.g., GDPR, HIPAA, PCI DSS, NIST). Coordinate evidence gathering and remediation for internal and external audits.
• Team Leadership: Lead, mentor, and develop a team of security analysts/engineers; manage workload, performance, and skill development.
• Incident Response: Lead execution of incident response plans for day-to-day and moderate-severity incidents; escalate and support leadership during major incidents.
• Stakeholder Communication: Communicate security status, risks, and AI tooling findings clearly to IT leadership and relevant business stakeholders.
• Technology Management: Manage and optimize the organization's security tool stack (SIEM, EDR/endpoint protection, IAM, vulnerability scanners, and AI monitoring platforms like Harmonic and Weave), including licensing, integration, and vendor relationships.
• Vendor and Third-Party Risk: Conduct security assessments of third-party vendors, partners, and AI tool providers; track remediation of identified issues.
• Budget Support: Assist in developing and managing the security budget for tools, staffing, and training within the team's scope.
• Awareness and Training: Run organization-wide security awareness programs, including training on safe and compliant use of AI tools.
• Continuous Improvement: Stay current on cyber threats, AI-specific risks (e.g., prompt injection, data leakage via AI tools, shadow AI usage), and industry best practices; recommend program improvements.
What We're Looking For...• Education: Bachelor's degree in Computer Science, Information Technology, Cyber Security, or a related field required.
• Professional Certifications: CISSP, CISM, Security+, GIAC, or other relevant certifications preferred.
• Experience: Minimum 5-7 years of progressive experience in cybersecurity or information security, including at least 2 years in a team lead or management capacity.
• Technical Expertise: Solid working knowledge of security technologies (firewalls, SIEM, IAM, endpoint protection), cloud security, and threat intelligence. Familiarity with AI security/monitoring tools (e.g., Harmonic, Weave, or similar platforms) strongly preferred.
• AI Risk Awareness: Understanding of risks associated with generative AI and AI tool adoption (data leakage, shadow AI, model misuse) and how to mitigate them operationally.
• Risk Management: Experience executing risk assessments and mitigation plans at the team/operational level.
• Compliance Knowledge: Working knowledge of relevant regulatory frameworks and industry standards.
• Communication Skills: Strong verbal and written communication skills; able to translate technical issues for non-technical stakeholders.
• Project Management: Ability to manage multiple initiatives and priorities in a fast-paced environment.
• Leadership: Demonstrated experience managing, mentoring, and developing a security team.
• Problem Solving: Resourceful, hands-on approach to resolving security issues.
• Adaptability: Comfortable working in a dynamic environment with evolving tools and threats.
• Ethical Judgment: Commitment to high standards of integrity, confidentiality, and professional conduct.
Key Challenges and Opportunities...• Evolving Threat Landscape: Staying ahead of increasingly sophisticated threats requires continuous monitoring and process refinement.
• AI Adoption: Enabling secure, monitored use of AI tools across the organization while managing new categories of risk (shadow AI, data exposure, tool sprawl).
• Regulatory Complexity: Keeping day-to-day operations aligned with an evolving compliance landscape.
• Resource Constraints: Balancing operational workload with proactive risk reduction and team development.
Outcomes and Metrics of Success...• Reduction in security incidents and mean time to detect/respond
• Successful deployment and operationalization of AI monitoring tools (Harmonic, Weave)
• Reduction in unsanctioned/shadow AI tool usage
• Compliance audit outcomes within the team's scope
• Employee engagement and completion rates in security and AI-use training
• Timely remediation of vendor and third-party risk findings
Life at Centerfield...- This is a hybrid position, and employees are expected to work in our Playa Vista, CA office every Tuesday, Wednesday & Thursday
- Competitive salary + semi-annual bonus
- Unlimited PTO - take a break when you need it!
- Industry-leading medical, dental, and vision plans + generous parental leave
- 401(k) company match plan - fully vested on day 1
- Outside patio overlooking Playa Vista + cabanas, firepits & working grills
- Monthly happy hours, catered lunches + daily food trucks
- Award-winning culture & unprecedented team spirit (featured in LA Business Journal & Built In LA)
- Fully stocked kitchens with snacks & drinks
- Breakroom supplied with games, couches, workout equipment + weekly in-office exercise classes hosted by professional instructors (yoga, kickboxing & circuit training)
- Free onsite gym + locker rooms
- Paid charity and volunteer days (local mentor programs, adopt a pet, beach cleanup, etc.)
- Monthly team outings (ball games, casino night, hikes, etc.)
- Career growth - we enjoy promoting from within!
#LI-CC1
#LI-Remote
AI & Interview PolicyAt Centerfield, we use AI tools internally to support efficiency and fairness in our hiring process, including resume screening and administrative tasks.
Candidates are welcome to use AI tools ethically to prepare for interviews, such as practicing responses or researching questions. However, all responses during the interview process should reflect your own knowledge, experience, and judgment.
The use of AI tools to generate responses during live interviews, technical assessments, or written submissions is not permitted unless explicitly stated otherwise.
To learn more, visit us Here.Interviews will take place after resumes have been screened for the minimum requirements. Please note that this position is not restricted solely to the responsibilities listed above and that the job scope and responsibilities are subject to change.