Manager Information Security - Cyber Threat Exposure
$105.79k - $141.05kLumen
Lumen is the trusted network for the AI‑powered world, connecting people, data, and applications through our expansive fiber network and connected ecosystem. We enable secure, high‑performance connectivity across cloud, edge, and AI workloads for enterprises, governments, and communities.
At Lumen, you’ll work on infrastructure customers rely on today and build for what’s next, where performance, security, and resilience matter.
This is a high accountability environment where bold ideas drive real innovation for our customers, partners, and industry. The work is challenging, expectations are clear, and trust is built into how we operate. If you’re ready to take ownership, deliver meaningful impact, and help shape the future of AI‑ready connectivity, join us today.
The Role
The Manager of Information Security—Cyber Threat Exposure Management plays a critical role in solving complex challenges and building the infrastructure that powers what’s next for our customers and our world.
In this role, you won’t just manage vulnerabilities—you’ll shape how Lumen identifies, prioritizes, and reduces cyber risk across a rapidly evolving digital landscape. From strengthening asset visibility to advancing risk-based vulnerability management and governance, your work directly enables innovation by ensuring our foundation is secure, resilient, and ready to scale.
Location
This is a remote postion open to candidates based anywhere in the US.
The Main Responsibilities
This role matures vulnerability and asset management programs, improves data quality, advances risk-based remediation, and collaborates across security and technology teams to reduce enterprise exposure.
- Own the strategy, execution, and continuous maturity of the enterprise vulnerability management program, driving measurable reduction of cyber risk.
- Implement and refine risk-based prioritization using threat intelligence, exploitability, asset criticality, exposure, and business impact to focus remediation on the highest-risk vulnerabilities.
- Ensure comprehensive visibility across internal, cloud, and externally exposed assets through effective asset discovery, inventory governance, ownership assignment, and data quality management.
- Oversee vulnerability management and asset discovery platforms, supporting tool optimization, process automation, and consistent operational workflows.
- Drive remediation accountability by partnering with Security, IT, Cloud, Engineering, and business stakeholders to address critical vulnerabilities, visibility gaps, and risk exceptions.
- Define, monitor, and report key program metrics, including vulnerability backlog, mean time to remediate, SLA compliance, exception trends, asset coverage, and external exposure trends.
- Deliver clear executive-level reporting that translates technical findings into business risk, remediation priorities, and measurable program outcomes.
- Support audit, regulatory, and compliance requirements by maintaining evidence, reporting, and processes aligned to applicable security frameworks and control expectations.
- Lead, coach, and develop a high-performing team while fostering accountability, collaboration, operational excellence, and continuous improvement.
What We Look For in a Candidate
Minimum Qualifications:
- 5+ years of experience in information security, vulnerability management, security risk assessment, application security, system security, network security, or a related discipline.
- Experience leading, coaching, or managing technical personnel in a security, infrastructure, cloud, or technology operations environment.
- Undergraduate degree in Computer Science, Engineering, Information Security, or a related field, or equivalent combination of education and relevant experience.
- Broad technical knowledge of current and emerging technologies used within enterprise infrastructure, cloud environments, applications, and security operations.
- Experience communicating technical security risk to technical and non-technical audiences, including management and cross-functional stakeholders.
- Applicable professional or technical certifications should be in place, or the candidate must be willing to pursue relevant certification.
Preferred Qualifications:
- Professional or technical certifications such as CISSP, CISM, GISEC, Security+, cloud security certifications, or related security credentials.
- Experience with modern vulnerability management, asset discovery, cyber asset attack surface management, cloud security posture management, or external attack surface management platforms.
- Demonstrated understanding of risk-based vulnerability prioritization, remediation governance, exception management, and vulnerability lifecycle management.
- Knowledge of information security frameworks, control standards, and regulatory obligations, including ISO 27001/27002, NIST, SOX, PCI, FISMA, HIPAA, NACHA, and SSAE-16.
- Experience supporting audit readiness, evidence collection, control validation, and security reporting requirements.
- Knowledge of project management practices and experience driving cross-functional initiatives through influence, accountability, and measurable outcomes.
- Experience working in large enterprise environments, including complex data center, network, cloud, and hybrid technology ecosystems.
- Strong ability to translate complex technical findings into clear executive-level communication, business risk context, and actionable recommendations.
Compensation
This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors.
Location Based Pay Ranges
$105,786 - $141,047 in these states: AL AR AZ FL GA IA ID IN KS KY LA ME MO MS MT ND NE NM OH OK PA SC SD TN UT VT WI WV WY $111,074 - $148,099 in these states: CO HI MI MN NC NH NV OR RI $116,364 - $155,152 in these states: AK CA CT DC DE IL MA MD NJ NY TX VA WA
Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process.
Learn more about Lumen's: Benefits
#LI-Remote
Requisition #: 342405
Life at Lumen
Life at Lumen is human and connected, even in a fast moving, AI‑focused organization. We set clear expectations and trust people to meet them. With real support and shared accountability, teams collaborate better, move faster, and deliver meaningful outcomes.
Our Lumen 8 behaviors guide how we interact, make decisions, and work together, shaping a culture built to perform and win.
To learn more about Life at Lumen and how we live the Lumen 8, please visit:
Background Screening
If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis.
Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
Equal Employment Opportunities
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.
Privacy Notice
Lumen is committed to protecting the privacy and security of personal information collected during the recruitment and hiring process. Our Privacy Notice explains how we collect, use, disclose, and protect applicant information, as well as how individuals may request access to or deletion of their personal data.
To review Lumen’s Privacy Notice, please visit:
Disclaimer
The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions.
In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.
Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.
$136k - $200k
...or implementing scalable data pipelines, threat intelligence feeds, machine learning or rule-based detection solutions, or cyber-security researcher tooling and workflows.... ...sensitive data like passwords and customer information. Security Engineers work directly with network...CyberFull time$188k - $275k
...CoreWeave is seeking a Senior Manager, Security Engineering, Incident... ...global incident response and cyber defense capabilities. In this... ...work closely with the Chief Information Security Officer (CISO), senior... ...in line with emerging threats, regulatory requirements, and...CyberPermanent employmentTemporary workCasual workWork at officeRemote workFlexible hours$192k - $279k
...experience in technical program management or engineering leadership... ...Advanced knowledge of physical security systems, automation, and... ...engineering of physical and cyber security solutions for data centers... ...assessments and threat modeling of physical and OT networks...CyberTemporary work$62.59 - $93.9 per hour
...Position Description Position: Security Operations Manager (IT Professional A) in Seattle Information Technology’s Security and Infrastructure... ..., forensic investigations, threat intelligence sharing,... ...remediation. Adapt Security Operations cyber defense capabilities in...CyberHourly payLocal areaShift work- ...Description Senior Director of Information Security reports directly to the VP, CISO... ...four core security functions: Cyber Defense (SOC & Security Engineering), Threat Intelligence, Application Security... .... This leader will oversee managers and senior technical talent, define...Cyber
$165k - $200k
...position. Position Title: Director, Cyber Security Base Salary: $165,000 to... ...assets, systems, and sensitive information against an increasingly complex threat landscape. This role... ...People Leadership & Talent Management · Build, lead, and scale a high...CyberLocal areaRemote workFlexible hoursWeekend workAfternoon shift- Information Security Specialist (Cyber security analysis) Job Title: “Information Security Specialist” (Cyber security... ...and under the direction of the Manager, Third-Party Cybersecurity... ...potential advancement in engineering or threat analysis roles. Self‑directed team...CyberFull timeContract work
$160k - $205k
Koitecc Solutions is seeking a Senior Ethical Hacker to join their Cyber Security Assurance team. This role involves performing and leading ethical hacking assessments, predicting future threats, and mentoring junior assessors. The ideal candidate will have at least 5 years...Cyber- ...safeguards, encryption protocols, and secure configurations to ensure compliance with... ...access, malware, and other cyber threats. Manage anti-malware solutions, conduct scans,... ...rotation. Requirements Associate’s degree in Information Security, Information Technology, Computer...CyberLocal area
$200k - $275k
...interpersonal skills, as well as cyber domain knowledge. Core... ...Collaborate with product engineering and security teams to anonymize, aggregate and derive threat-related insights from platform data... ...Ability to handle sensitive information with a high degree of integrity...CyberFlexible hours- ...Cyber Security Engineer Location: Atlanta-GA, Overland Park-KS, Frisco... ...), Advanced Persistent Threats (ex - Damballa), Privileged... ...large groups Knowledge of information security policies and regulatory... ...design, SSL Certificate management, vulnerability analysis & mitigation...Cyber
$71.6k - $136.89k
...focus on providing IT services to US Strategic Command. The ideal candidate will have a Bachelor's degree, over 10 years of information security experience, and necessary certifications. The role offers a salary range of $71,600 - $136,885, medical benefits, and a 401(...Cyber- ...The Enterprise Cybersecurity Manager is expected to interface with peers in the Information technology department as well as... ...business units, to share the agency security vision and ensure compliance... ...uptodate knowledge of the threat landscape, emerging technologies...CyberWork experience placement
$160k - $205k
...Application Development Security Framework Program within Bank of America's Cyber Security Assurance... ...evolving and emerging threats. Key Responsibilities... ...and external threats on information systems and predict future... ...advice regarding managing risks. Learn and develop...CyberShift workDay shift- ...looking to work with some of the best information security professionals in the world in challenging... ...an opportunity to shine and grow. The Cyber Security Assurance Division is looking... ...technical knowledge, a deep understanding of threats, and a hacker mentality. You will lead...CyberWork at officeRemote workShift workDay shift
$175k - $225k
...Pathstone is a growing wealth management firm serving ultra-high... ...complexity and make informed decisions aligned with... ...separate the IT function from Security. This senior role serves... ...(identity federation, threat detection, data protection). Exposure to AI/ML platforms or...Contract workWork at officeFlexible hours$108k - $126k
...Wright Tremaine's worldwide information assets, including its... ...data, from unwanted cyber-attacks, cyber intrusions, and other threats. On a typical day you will... ...’s networks, review security audits and logs, and regularly... ...s Information Security Management System Participate in...CyberFor contractorsRemote workWorldwide- Security Architect--------------Need GC and USC Security Architect... ...Security Design/Architecture/Threat Modeling 2) Ability to scope... ...individual will be part of T-Mobile’s Cyber Security Team responsible for... ...to address accordingly Lead information security review of new...CyberContract work
- ...PUD. Basic Responsibilities The Security Architect is responsible for designing... ...and technology to protect information systems, data, and networks from threats and vulnerabilities. This role provides... ...’s degree in Information (Cyber) Security, Computer/Information Sciences...CyberTemporary work
- ...Chief Information Security Officer (CISO) About the Company Trusted provider... ...customer experience management advisory services and... ...level leadership role in global cyber security, information risk,... ...management, cloud security, and threat detection, is essential, as...Cyber
$145k - $210k
...Senior Cyber Security Engineer Cooley is seeking a Senior Cyber Security... ...Engineer will implement and manage security systems and tools... ..., EDR, and security information event monitoring (SIEM) systems... ...desk tickets to ensure minimum exposure of Firm assets under the direction...CyberFull timeTemporary workWork at officeFlexible hoursWeekend work- Overview The Information Security Manager, working with in Corporate Information Security Team will be... ...with them to manage business impact and threats, through a risk based methodology.... ...environment from all forms of malicious cyber activity. Assist the Governance group...CyberLocal area
$171.5k - $283.5k
...fast-growing and innovative Cyber Resilience Field Solutions Architect... ...Architects and Product Management about field impact, deals,... ...years of experience in the Information Security field, including hands-on experience... ...Familiarity/experience with threat modeling, penetration...CyberFlexible hours- EY's Cyber Triage and Forensics (CTF) Analyst role sits within EY Information Security to monitor, detect, and respond to security events, supporting the organization’s cyber... ...and applying technical knowledge to identify threats and support response activities, including...Cyber
$99k - $232k
...protecting organisations from cyber threats through advanced... ...identify vulnerabilities, develop secure systems, and provide proactive... ...member's unique strengths, and managing performance to deliver on... ...Computer Science, Cybersecurity, Information Security, Information...CyberFull timeH1b- Galvanick is looking for a Threat Hunter / SOC Analyst in Seattle to enhance operational security by conducting manual threat detection operations. This role involves developing detection strategies, investigating security incidents, and providing insights through monthly...Cyber
$142.8k - $193.2k
...and implement machine learning models that protect customers from cyber threats. You will tackle challenges in threat detection and collaborate with a team of scientists to develop intelligent security systems. This position offers a competitive salary range of $142,80...Cyber$120k - $140k
...the Consultant - Endpoint Security Analyst role at Kalles Group... ...approach to Patch Management across their organization.... ...IT operations, ideally with exposure to patch management, endpoint... ...WA . Practice Director, Cyber and Information Security Services Project...CyberFull timeRemote workFlexible hours- ...Senior Security Engineer - Software Engineer At Disney, we're... ...operational excellence. The Global Information Security (GIS) organization... ..., detect, and respond to cyber threats that present risk to The... ..., Terraform, Azure Resource Manager, Google Deployment Manager)...CyberWork experience placement
$120k - $175k
...Technology Cyber Security Architect Cooley is seeking a Cyber Security... ...identify and mitigate cyber threats to protect our organization'... ..., identity and access management (IAM), encryption, and endpoint... ...Bachelor's Degree in Information Technology, Computer Information...CyberFull timeTemporary workWork at officeFlexible hoursWeekend work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Manager Information Security - Cyber Threat Exposure. Be the first to apply!
- corporate security manager Bellevue, WA
- director global security Bellevue, WA
- security operations manager Bellevue, WA
- surveillance manager Bellevue, WA
- security manager Bellevue, WA
- security systems manager Bellevue, WA
- director information security Bellevue, WA
- cyber Bellevue, WA
- information technology security engineer Bellevue, WA
- information security Bellevue, WA


