Information Technology Security Manager- Hybrid

Are you a cybersecurity leader who thrives on solving complex challenges, strengthening security posture, and driving strategic initiatives? We're looking for an experienced Information Technology Security Manager to lead and evolve our enterprise Information Security Program in a highly regulated financial environment.

In this critical leadership role, you'll shape cybersecurity strategy, oversee risk management and compliance efforts, lead incident response initiatives, and collaborate across the organization to protect systems, networks, and sensitive member data. You'll work alongside executive leadership and play a key role in ensuring operational resilience and regulatory readiness.

If you're passionate about security, governance, and making a measurable impact, we'd love to hear from you.

What You'll Do

Cybersecurity Leadership & Strategy

• Lead and continuously improve the organization's enterprise Information Security Program aligned with frameworks such as NIST, ISO 27001, and COBIT
• Develop and implement cybersecurity strategies, policies, standards, and procedures
• Provide leadership and guidance to junior team members and cross-functional stakeholders

Risk Management & Compliance

• Conduct cybersecurity risk assessments, audits, and vulnerability reviews
• Ensure compliance with financial industry regulations and standards including GLBA, FFIEC, PCI, and NCUA requirements
• Partner with auditors, regulators, compliance teams, and senior leadership during examinations and assessments
• Support Enterprise Risk Management (ERM) initiatives and reporting

Incident Response & Security Operations

• Lead incident response planning, testing, investigations, remediation, and post-incident reviews
• Monitor and analyze enterprise security tools including firewalls, SIEM platforms, endpoint protection, and logging systems
• Oversee security event monitoring, threat detection, and escalation processes
• Support business continuity planning (BCP) and disaster recovery preparedness

Collaboration & Operational Excellence

• Work closely with IT, Legal, Compliance, Risk, and business teams to integrate security into operations and projects
• Evaluate vendor and third-party security risks, contracts, and due diligence requirements
• Contribute security expertise to RFPs, Statements of Work (SOWs), and vendor engagements
• Manage cybersecurity budgets, forecasting, and resource planning

Do you have experience in Security threat response protocols?, Do you have a Bachelor's degree?, * Bachelor's degree in Cybersecurity, Computer Science, or related field (or equivalent experience)

• 5-8+ years of experience in cybersecurity or information security roles
• Experience within financial services or another highly regulated industry preferred
• Strong knowledge of:

• NIST CSF
• NIST 800-53
• CIS Controls
• ISO 27001
• Networking concepts and the OSI model

• Experience with:

• Risk assessments and security audits
• Incident response and threat analysis
• Security tools such as SIEM, firewalls, and endpoint protection platforms
• Regulatory and compliance environments including GLBA, FFIEC, PCI, and NCUA

• Excellent communication and leadership skills with the ability to present to executive leadership and Boards

Preferred Certifications

• CISSP
• CISA
• GIAC
• Security+
• CEH, * A strategic thinker with strong technical depth
• Calm and decisive during incidents and high-pressure situations
• Highly organized and able to manage multiple priorities
• Collaborative, adaptable, and solutions-oriented
• Passionate about continuous improvement and staying ahead of evolving cyber threats

Pulled from the full job description

• 401(k)
• Health insurance
• 401(k) matching
• Vision insurance
• Dental insurance
• Life insurance
• Disability insurance, * Occasional local and non-local travel may be required
• Flexibility for after-hours support, on-call rotation, and weekend work as needed
• Ability to obtain a U.S. passport required

Why Join Us?

This is an opportunity to play a visible, high-impact role in protecting a mission-driven financial institution while helping shape the future of cybersecurity across the organization. You'll work with leadership, influence strategic decisions, and contribute directly to safeguarding the trust of our members and employees.

Apply today and help lead the next generation of cybersecurity excellence

NGFCU offers competitive compensation and a rich benefits package including medical, dental, vision, disability and life insurance, and a 401(k)-profit sharing plan with employer matching.

Compensation and Job Title is commensurate with experience and may fall under the following pay ranges:

Information Technology Manager- $111,035 to $145,000 Annually

Please note that the salary information is a general guideline only. Northrop Grumman Federal Credit Union considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/training, key skills, internal peer equity, as well as market and business considerations when extending an offer. We offer a competitive total rewards package including a wide range of medical, dental, vision, financial, and other benefits.

We perform thorough background checks including verification of previous employment, education, credit checks and pre-employment drug screening. Any discrepancies in reported dates, titles, or degree information may result in an employment offer to be withdrawn.

NGFCU is an Equal Opportunity Employer

Pursuant to the Los Angeles Fair Chance Ordinance, we will consider for employment-qualified applicants with arrest and conviction records. Monday through Friday 9:00 am to 6:00 pm