Senior Manager, Cybersecurity and Operations (SaaS)

TL;DR

Senior Manager, Cybersecurity and Operations (SaaS): Leading cybersecurity operations and security engineering across corporate, cloud, and production environments with an accent on incident response, detection, and risk reduction. Focus on building robust security tooling, coordinating response for material events, and ensuring compliance with GovRAMP, SOC 2, and PCI DSS.

Location: Remote (Must be based in the US)

Salary: $170,000–$190,000

Company

hirify.global is an industry leader in government software, providing cloud-based SaaS solutions to improve efficiency and transparency in local governments.

What you will do

• Lead the cybersecurity operations and security engineering function across corporate, cloud, hybrid, and production environments.
• Manage and develop security engineers and analysts focusing on monitoring, detection, response, and vulnerability management.
• Own and optimize the security tooling stack, including SIEM, EDR/XDR, DLP, WAF, and cloud security platforms.
• Serve as the operational control point and lead coordinator during significant cybersecurity incidents.
• Develop and test incident response playbooks, escalation paths, and post-incident review processes.
• Drive measurable risk reduction and support compliance for GovRAMP, SOC 2, ISO 27001, and PCI DSS.

Requirements

• 8+ years of experience in cybersecurity, security operations, security engineering, or incident response.
• 3+ years of experience leading cybersecurity teams or technical security initiatives.
• Strong working knowledge of SIEM, EDR/XDR, and security tooling across AWS, Azure, or GCP.
• Proven experience leading or coordinating incident response for material cybersecurity events.
• Must be based in the US.
• Strong communication skills to explain operational security risks to technical and executive audiences.

Nice to have

• Experience with Microsoft Defender for Cloud or Azure-native security tooling.
• Background supporting SaaS environments with public-sector or highly regulated requirements.
• Familiarity with zero-trust architectures, SSO, MFA, and privileged access management (PAM).
• Experience securing Kubernetes, containers, and CI/CD infrastructure.
• Relevant certifications such as CISSP, CISM, CCSP, or GIAC.

Culture & Benefits

• Comprehensive medical, dental, and vision plans.
• 401(k) retirement savings plan with company match.
• Flexible time off and family planning benefits.
• Health savings account (HSA) with company contributions and flexible spending account (FSA).
• Commitment to diversity, equity, and inclusion to ensure a safe and belonging workplace.