Children’s National Hospital

Compensation

Full Description

Your north star: build and oversee a team of information security experts dedicated to protecting Children's National and our patients, families, and staff. The Senior Manager Information Security scales Security Operations through engineering rigor, automation, and executive-ready visibility. This leader owns the maturity and operational reliability of the security tooling ecosystem, drives detection engineering enablement, and delivers dashboards and metrics that translate telemetry into decisions and accountability. What Success Looks Like · Higher quality detections and lower noise through disciplined detection engineering and tuning. · Automation that reduces manual effort and increases consistency in investigations and case handling. · Reliable security tooling performance with stable telemetry and measurable improvements in coverage and data quality. · Executive-ready dashboards and metrics that drive prioritization, investment decisions, and operational accountability. Essential Functions and Responsibilities Security Tooling Engineering, Detection Engineering, and Reliability · Own security tooling operational reliability, telemetry integrity, configuration governance, and platform health. · Establish standards for change control, testing, release management, and support runbooks. · Own the detection engineering lifecycle, including use case design, tuning, validation, and continuous improvement. Automation and Orchestration · Own the automation strategy and delivery pipeline, including backlog prioritization, build standards, and production governance. · Deliver maintainable automations that improve speed, consistency, and documentation quality, including enrichment and ITSM workflow integration. Security Data Analytics and Executive Reporting · Own Security Operations dashboards, operational metrics, and executive reporting with clear standards and cadence. · Translate telemetry into trends and actionable insights, driving follow-through and accountability. Operating Discipline and Quality Assurance · Enforce system-of-record expectations, documentation standards, and measurable closure criteria. · Run quality assurance reviews across detections, cases, and engineering outputs, including missed-metric response and corrective action tracking. Structured Support to SOC and Incident Response Leadership · Enable SOC and Incident Response maturity through standards, coaching, and engineering improvements without owning day-to-day incident execution. · Establish continuous improvement forums focused on alert quality, enrichment, automation opportunities, and repeatable response patterns. Medical Device Security (IoMT) · Advising and assisting medical device stakeholders in operationalizing and adhering to connected device security requirements. · Providing input and support to connected medical device product and support teams throughout the connected device lifecycle from concept to decommissioning. · Overseeing the development, maintenance, and execution of a multi-year enterprise-wide security road map to protect connected medical devices and associated data. Decision Rights and Boundaries · Owns prioritization and roadmap for SIEM engineering, detection engineering, automation delivery, and Security Operations reporting. · Owns engineering standards and operational reliability expectations for security tooling, including quality gates and change governance. · Partners with SOC leadership to improve execution through enablement and governance. · SOC and Incident Response leaders retain accountability for analyst performance, queue health, and incident execution. Minimum Education Bachelor’s degree in education, psychology, social science, or another relevant discipline (Required) Master's Degree (Preferred) Minimum Work Experience 7+ years of experience in information security and 3+ years in a management role (Required). 3+ years in information security operations and 3+ years in health care (particularly medical device engineering, operations, or maintenance) (Preferred).