Security Manager, CxM
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Lead information security efforts for CxM Practice Area at Dentsu, ensuring secure product delivery and risk management. Collaborate across teams to strengthen security culture and capabilities.
Responsibilities:
- Lead information security for client solutions and Practice Area technology, partnering with key stakeholders to deliver secure products and services to clients, including on‑premises and cloud infrastructure components.
- Embed security controls, patterns, and tooling into product and solution teams across all stages of the secure development lifecycle (SDLC), with a strong focus on shift-left practices.
- Oversee security assurance for products and solutions, evaluating the implementation and effectiveness of security controls.
- Identify, assess, and manage security weaknesses, vulnerabilities, and risks from multiple sources (e.g. security testing, threat intelligence and audits), ensuring appropriate response and management of these issues (e.g. treatment plans, remediation actions, and risk acceptance where applicable).
- Lead Practice Area delivery of relevant global security and transformation initiatives, ensuring successful execution and alignment with Practice Area priorities and client requirements.
- Provide Practice Area incident support to Cyber Operations, acting as a security subject matter expert (SME) for the business division and supporting investigations.
- Support client security requests, including (but not limited to) RFIs, audits and security questionnaires.
Requirements:
- Relevant security certifications or equivalent experience, e.g. CISSP, CISM (or similar).
- Experience in product/application security, including common security issues e.g. OWASP top 10.
- Experience across various security frameworks (e.g. ISO 27001, NIST CSF, SOC2).
- Demonstrated expertise in security risk assessment for technical products and solutions, including the ability to support design, development, and implementation of appropriate security controls.
- Good understanding of modern technologies, architectures, and engineering practices, including cloud-native patterns, APIs, CI/CD, and DevOps ways of working.
- Broad knowledge across core security domains and principles, such as secure design.
- Strong SDLC knowledge with practical experience embedding security early (“shift left”) through patterns, controls, tooling, and consultancy.
- Excellent stakeholder management and interpersonal skills, able to influence and communicate effectively with both technical and non-technical audiences.
- Excellent written and verbal communication skills, including producing clear security guidance, risk briefs, and assurance outcomes.
- Experience operating in a matrixed organisation, aligning and delivering across multiple teams, priorities, and stakeholders.
- Comfortable managing uncertainty, ambiguity, and change, making sound decisions and recommendations with incomplete information.
- PCI / PCI DSS experience (advantageous).
Benefits:
- Health insurance
- 401(k) matching
- Paid time off
- Flexible work arrangements
Similar Jobs
Senior Cybersecurity Engineer
Senior Cyber Program Analyst providing technical expertise across cybersecurity initiatives for Federal, Intelligence, and Defense customers. Leading Zero Trust security solutions and collaborating with teams.
Senior Cloud Security Architect
Senior Cloud Security Architect leading Zero Trust architecture and AI-Native security strategy for cloud environments. Designing security policies and conducting threat modeling in support of cyber missions.
Security & Sustainability Program Coordinator
Security and Sustainability Program Coordinator at JLL coordinating operations across security, facilities, and sustainability programs. Ensuring safe, secure, and environmentally responsible operations.
Senior Security Engineer, Identity & Access Management
Senior Security Engineer designing and managing IAM systems for Valon’s workforce and customer authentication. Collaborating across teams to secure AI-powered capabilities and optimize security processes.
Senior Product Security Engineer – Customer Platform
Senior Product Security Engineer at Valon ensuring the security of SaaS platform architecture and customer-facing security capabilities. Collaborate with cross-functional teams to optimize security processes.
Head of Security, GRC
Head of Security GRC overseeing governance, risk, and compliance for Valon, an AI-native fintech startup. Ensuring security practices for customer data and regulatory requirements are met.
Senior Cloud Security Engineer
Senior Cloud Security Engineer responsible for securing a massive hybrid ecosystem for USPS. Implementing strategies for compliance, identity management, and threat detection in cloud environments.
Compliance/Security Officer
Compliance Officer overseeing comprehensive compliance program while ensuring adherence to federal and state laws. Leading policies, audits, and risk assessments in a healthcare context.
Director of Security
Director of Security responsible for information security and compliance for Crete Professionals Alliance. Leading a team, managing risk, and integrating security processes across the organization.
Security Engineer
Information Security Engineer managing endpoint defense, security awareness, and operations. Collaborating to enhance the security program within FMG's remote IT environment.
Security Tech Lead
Security Tech Lead managing information security initiatives to protect data and systems. Leading and supporting the adoption of secure practices across teams and gaining client trust.
Senior Supply Chain Security Engineer
Senior Supply Chain Security Engineer developing Docker's security-hardened images and managing Helm charts. Collaborating on upstream OSS projects and ensuring compatibility with Kubernetes and security guidelines.
Enterprise Security Engineer
Enterprise Security Engineer at Benchling focusing on building a security program and implementing zero trust strategies for sensitive data protection.
Head of Security Research
Head of Security Research leading a team of security experts at Dropzone AI. Overseeing threat intelligence, detection engineering, and building an elite security team.
Information Systems Security Manager
IT Security Manager leading security professionals to protect sensitive data and ensure compliance. Overseeing cybersecurity policies, incident response, and risk management frameworks.
IT Business Partner, Enterprise Solutions – Real Estate and Corporate Security Platforms
Business Partnering role focused on leading business analysis for Real Estate and Corporate Security technology at Fresenius Medical Care. Collaborating with business owners to define and manage digital strategy and roadmap.
Cybersecurity Engineer II
Mid-level Cybersecurity Engineer responsible for identity security and cloud platforms. Supporting compliance with CMMC and NIST across various government environments.
FP&A Director, Security
FP&A Director overseeing P&L accountability and financial analysis for Cobalt’s security business. Driving key operating decisions and contributing to M&A deals.
Senior Corporate Security Engineer
Corporate Security Engineer handling IT and cloud security for Juniper Square, focusing on threat detection, incident response, and security tooling management.
Security Engineer – Threat Detection
Security Engineer at Snowflake enhancing threat detection capabilities utilizing AI and automation, collaborating across Security and Engineering teams.