Instructional Design

Learning & Development

Higher Ed

K-12

Sales

Customer Success

Product Development

Software Engineering

Academic Advising

Marketing

Fully Remote

All Jobs

Companies
About Post a job
Existing employer? Sign in
edtech.com
Curriculum Associates logo

Curriculum Associates

Senior Manager, Information Security

🇺🇸 Remote - MA

🕑 Full-Time

💰 TBD

💻 Cybersecurity

🗓️ June 24th, 2025

OWASP SaaS SIEM

Edtech.com's Summary

Curriculum Associates is hiring a Senior Manager, Information Security. This role involves aligning security practices within a semi-autonomous group, advancing data, application, and cloud security for SaaS products, managing risks and vendor relationships, and leading compliance and incident response activities.

Highlights
  • Align security practices across internal IT, SaaS operations, and development processes.
  • Advance data security, application security, and cloud architecture security initiatives.
  • Manage security vendor relationships and evaluate new security tools.
  • Lead compliance and governance initiatives related to the semi-autonomous group.
  • Execute Security Incident Response Plan and serve as incident manager.
  • Respond to customer inquiries on security practices and deliver security awareness training.
  • Required skills include SAST/DAST/SCA tools, OWASP frameworks, threat modeling, AWS security, SOC automation, SIEM monitoring, and SOC 2 or ISO-27001 experience.
  • Strong leadership and ability to communicate security concepts to technical and non-technical staff.
  • Minimum 10 years of cybersecurity or related experience and 2 years of people management.
  • Travel required less than twice per month to company offices.

Senior Manager, Information Security Full Description

Senior Manager, Information Security
Remote
US MA Remote
Full time

At Curriculum Associates, we believe in the potential of every child and are changing the face of education technology with award-winning learning programs like i-Ready that serve a third of the nation’s K–8 students. For more than 50 years, our commitment to making classrooms better places, serving educators, and supporting accessible learning experiences for all students has driven the continuous improvement of our innovative programs. Our team of more than 2,500 employees is composed of lifelong learners who stand behind this mission, working tirelessly to serve the educational community with world-class programs and support every day.

Essential duties/responsibilities:  
  • Align security practices of semi-autonomous group within the company, including areas such as internal IT controls, SaaS operations, and development processes.
  • You’ll advance our capabilities in data security, application security, and cloud architecture security for our SaaS offerings
  • Identify and manage risk within the scope of a semi-autonomous group within the company
  • Manage security vendor relationships
  • Evaluate and recommend new security tools and vendors
  • Contribute to the creation and maintenance of company-wide security and privacy policies and practices.
  • Lead various compliance and governance initiative related to semi-autonomous group within the company
  • Execute the company’s Security Incident Response Plan in various roles, including incident manager. 
  • Respond to and interact with customers regarding inquiries about the company’s security practices.
  • Deliver security awareness training for employees

Required Job Skills and Abilities:  
  • Strong leadership abilities 
  • The ability to effectively present security concepts to technical and non-technical staff 
  • Experience with SAST/DAST/SCA tools, OWASP frameworks and threat modeling. 
  • The ability to effectively work with software engineering teams to provide security input. 
  • Experience using AWS security tools, models and monitoring. 
  • Experience in leading incident response and securing corporate IT. 
  • Automation of Security Operations Center tasks and SIEM monitoring. 
  • Experience with SOC 2 audits and/or ISO-27001 standards. 
  • Experience with security and phishing training for employees. 

Required Education and Experience:  
  • A combination of education and experience amounting to 10 years in cybersecurity, IT, or other related engineering field. 
  • Two years of people management experience 

Travel: Less than twice per month to Company offices only. 

Similar Jobs

Cybersecurity Industry Coach

Chegg

🇺🇸 Remote - US

Program Support Specialist – Cybersecurity and AI

Oakland University

🇺🇸 Rochester, MI

Principal IT Security Architect (Threat Detection)

Western Governors University

🇺🇸 Raleigh, NC

Information Security Analyst

Robert Morris University

🇺🇸 Moon, PA

Information Security Compliance Analyst III - 526822

University of Alabama

🇺🇸 Tuscaloosa, AL