Rodan + Fields
IT Operations & Security Manager
Rodan + Fields is a female‑founded skincare and haircare company launched in 2008 by Stanford‑trained dermatologists Dr. Katie Rodan and Dr. Kathy Fields. The company delivers science‑backed, dermatologist‑created products and is committed to putting people first, protecting our planet, and investing in global communities.
Overview We’re seeking an experienced IT Operations & Security Manager to lead our infrastructure, cloud, and cybersecurity initiatives. The role combines hands‑on technical management with strategic oversight, ensuring systems remain reliable, secure, and compliant. You’ll oversee on‑premises and cloud (GCP) environments, manage a small team, and partner with business leaders to align technology with organizational goals. The role also governs AI capabilities across the organization, balancing innovation with strong security, privacy, and compliance controls.
Key Responsibilities
Supervise and mentor IT Helpdesk Technicians and System Administrators.
Oversee day‑to‑day IT operations, ticketing workflows, and SLAs.
Foster a culture of accountability, collaboration, and continuous improvement.
Partner with Legal and the VP of Technology to define and execute the organization’s security, privacy, and AI governance strategy, including CCPA, global privacy, PCI compliance, and data protection initiatives.
Participate in change management processes and provide infrastructure input.
Plan and manage IT budgets, vendor relationships, and hardware/software procurement.
Maintain documentation for systems, procedures, configurations, and AI enablement standards.
Manage GCP environments, including firewall policies, network configurations, and IAM permissions; automate provisioning via Terraform and Bitbucket; administer compute instances, load balancing, VPNs, and peering.
Oversee hybrid network connectivity between office sites and GCP; monitor performance and health using SolarWinds and related tools; ensure secure integration of AI tools and APIs.
Manage LAN/WAN architecture, routers, firewalls, switches, VPNs, DNS, DHCP, NPS services, wireless networks, Windows and Linux servers, backups (Veeam), file and print services, and server/storage configurations.
Oversee Active Directory, Group Policy, Entra ID, Intune, Kandji, and user/service account permissions; enforce least‑privilege and zero‑trust access policies; govern AI tools like Microsoft Copilot.
Define, implement, and improve the company’s cybersecurity and compliance program; conduct vendor risk assessments, lead compliance audits, manage third‑party security reviews, lead penetration testing, oversee incident response, maintain certificates, and monitor global security risks.
Maintain firewall rules, IDS/IPS, network security configurations; enforce guardrails for AI usage, prompt governance, data retention, and monitoring of AI outputs.
Security Tools & Platforms
Endpoint & patching: Tanium, WSUS, Linux repos.
Identity & access: Entra ID, Intune, Kandji.
Network & monitoring: SolarWinds, FortiGate, Aruba.
Backup & recovery: Veeam, Druva.
Vulnerability & threat management: Tenable, Proofpoint, Defender, LMNTRIX.
Cloud & CDN: Akamai, GCP, Terraform.
Code quality & governance: SonarQube, Panorays.
Collaboration & SaaS: O365, Teams, SharePoint, Box, Microsoft Copilot.
AI & Automation: Microsoft Copilot, GCP AI tools, responsible AI governance frameworks.
Qualifications
Bachelor’s degree; 5–7 years related experience with 1–3 years management experience.
Infrastructure and cybersecurity experience in a mid‑size enterprise (200+ employees).
Proven leadership in managing IT operations or security engineering teams.
Strong knowledge of Microsoft E5 platforms (SharePoint, Copilot integrations).
Background in privacy compliance (CCPA, PCI, GDPR) and risk management.
Deep networking, routing/switching, VPNs, and cloud security (GCP) expertise.
Hands‑on infrastructure automation, patching, monitoring tools.
Experience with vendor risk assessments, compliance audits.
Familiarity with AI tools, Copilot admin, securing AI integrations.
Excellent communication and analytical skills; able to translate technical risk for business leaders.
Preferred certifications: Microsoft (MCSE, MCSA, MCITP), GCP, CISSP, CISM, or equivalent.
Salary Range $116,000 – $145,000
Seniority level Mid‑Senior level
Employment type Full‑time
Job function Information Technology
Industries Manufacturing and Personal Care Product Manufacturing
San Ramon, CA
#J-18808-Ljbffr
Overview We’re seeking an experienced IT Operations & Security Manager to lead our infrastructure, cloud, and cybersecurity initiatives. The role combines hands‑on technical management with strategic oversight, ensuring systems remain reliable, secure, and compliant. You’ll oversee on‑premises and cloud (GCP) environments, manage a small team, and partner with business leaders to align technology with organizational goals. The role also governs AI capabilities across the organization, balancing innovation with strong security, privacy, and compliance controls.
Key Responsibilities
Supervise and mentor IT Helpdesk Technicians and System Administrators.
Oversee day‑to‑day IT operations, ticketing workflows, and SLAs.
Foster a culture of accountability, collaboration, and continuous improvement.
Partner with Legal and the VP of Technology to define and execute the organization’s security, privacy, and AI governance strategy, including CCPA, global privacy, PCI compliance, and data protection initiatives.
Participate in change management processes and provide infrastructure input.
Plan and manage IT budgets, vendor relationships, and hardware/software procurement.
Maintain documentation for systems, procedures, configurations, and AI enablement standards.
Manage GCP environments, including firewall policies, network configurations, and IAM permissions; automate provisioning via Terraform and Bitbucket; administer compute instances, load balancing, VPNs, and peering.
Oversee hybrid network connectivity between office sites and GCP; monitor performance and health using SolarWinds and related tools; ensure secure integration of AI tools and APIs.
Manage LAN/WAN architecture, routers, firewalls, switches, VPNs, DNS, DHCP, NPS services, wireless networks, Windows and Linux servers, backups (Veeam), file and print services, and server/storage configurations.
Oversee Active Directory, Group Policy, Entra ID, Intune, Kandji, and user/service account permissions; enforce least‑privilege and zero‑trust access policies; govern AI tools like Microsoft Copilot.
Define, implement, and improve the company’s cybersecurity and compliance program; conduct vendor risk assessments, lead compliance audits, manage third‑party security reviews, lead penetration testing, oversee incident response, maintain certificates, and monitor global security risks.
Maintain firewall rules, IDS/IPS, network security configurations; enforce guardrails for AI usage, prompt governance, data retention, and monitoring of AI outputs.
Security Tools & Platforms
Endpoint & patching: Tanium, WSUS, Linux repos.
Identity & access: Entra ID, Intune, Kandji.
Network & monitoring: SolarWinds, FortiGate, Aruba.
Backup & recovery: Veeam, Druva.
Vulnerability & threat management: Tenable, Proofpoint, Defender, LMNTRIX.
Cloud & CDN: Akamai, GCP, Terraform.
Code quality & governance: SonarQube, Panorays.
Collaboration & SaaS: O365, Teams, SharePoint, Box, Microsoft Copilot.
AI & Automation: Microsoft Copilot, GCP AI tools, responsible AI governance frameworks.
Qualifications
Bachelor’s degree; 5–7 years related experience with 1–3 years management experience.
Infrastructure and cybersecurity experience in a mid‑size enterprise (200+ employees).
Proven leadership in managing IT operations or security engineering teams.
Strong knowledge of Microsoft E5 platforms (SharePoint, Copilot integrations).
Background in privacy compliance (CCPA, PCI, GDPR) and risk management.
Deep networking, routing/switching, VPNs, and cloud security (GCP) expertise.
Hands‑on infrastructure automation, patching, monitoring tools.
Experience with vendor risk assessments, compliance audits.
Familiarity with AI tools, Copilot admin, securing AI integrations.
Excellent communication and analytical skills; able to translate technical risk for business leaders.
Preferred certifications: Microsoft (MCSE, MCSA, MCITP), GCP, CISSP, CISM, or equivalent.
Salary Range $116,000 – $145,000
Seniority level Mid‑Senior level
Employment type Full‑time
Job function Information Technology
Industries Manufacturing and Personal Care Product Manufacturing
San Ramon, CA
#J-18808-Ljbffr