Children's National Medical Center
Senior Manager Information Security
Children's National Medical Center, Silver Spring, Maryland, United States, 20900
Job Description - Senior Manager Information Security (250003HY)
Senior Manager Information Security - (250003HY)
Your north star: build and oversee a team of information security experts dedicated to protecting Children’s National and our patients, families, and staff. The Senior Manager Information Security scales Security Operations through engineering rigor, automation, and executive‑ready visibility. This leader owns the maturity and operational reliability of the security tooling ecosystem, drives detection engineering enablement, and delivers dashboards and metrics that translate telemetry into decisions and accountability.
What Success Looks Like
Higher quality detections and lower noise through disciplined detection engineering and tuning.
Automation that reduces manual effort and increases consistency in investigations and case handling.
Reliable security tooling performance with stable telemetry and measurable improvements in coverage and data quality.
Executive‑ready dashboards and metrics that drive prioritization, investment decisions, and operational accountability.
Essential Functions and Responsibilities Security Tooling Engineering, Detection Engineering, and Reliability
Own security tooling operational reliability, telemetry integrity, configuration governance, and platform health.
Establish standards for change control, testing, release management, and support runbooks.
Own the detection engineering lifecycle, including use case design, tuning, validation, and continuous improvement.
Automation and Orchestration
Own the automation strategy and delivery pipeline, including backlog prioritization, build standards, and production governance.
Deliver maintainable automations that improve speed, consistency, and documentation quality, including enrichment and ITSM workflow integration.
Security Data Analytics and Executive Reporting
Own Security Operations dashboards, operational metrics, and executive reporting with clear standards and cadence.
Translate telemetry into trends and actionable insights, driving follow‑through and accountability.
Operating Discipline and Quality Assurance
Enforce system‑of‑record expectations, documentation standards, and measurable closure criteria.
Run quality assurance reviews across detections, cases, and engineering outputs, including missed‑metric response and corrective action tracking.
Structured Support to SOC and Incident Response Leadership
Enable SOC and Incident Response maturity through standards, coaching, and engineering improvements without owning day‑to‑day incident execution.
Establish continuous improvement forums focused on alert quality, enrichment, automation opportunities, and repeatable response patterns.
Medical Device Security (IoMT)
Advising and assisting medical device stakeholders in operationalizing and adhering to connected device security requirements.
Providing input and support to connected medical device product and support teams throughout the connected device lifecycle from concept to decommissioning.
Overseeing the development, maintenance, and execution of a multi‑year enterprise‑wide security road map to protect connected medical devices and associated data.
Decision Rights and Boundaries
Owns prioritization and roadmap for SIEM engineering, detection engineering, automation delivery, and Security Operations reporting.
Owns engineering standards and operational reliability expectations for security tooling, including quality gates and change governance.
Partners with SOC leadership to improve execution through enablement and governance.
SOC and Incident Response leaders retain accountability for analyst performance, queue health, and incident execution.
Qualifications Minimum Education
Bachelor’s degree in education, psychology, social science, or another relevant discipline (Required)
Master’s Degree (Preferred)
Minimum Work Experience
7+ years of experience in information security and 3+ years in a management role (Required)
3+ years in information security operations and 3+ years in health care (particularly medical device engineering, operations, or maintenance) (Preferred)
Primary Location Maryland—Silver Spring
Work Locations Inventa Towers 1, Inventa Place Silver Spring 20910
Job Management
Organization Operations
Position Status : R (Regular) - FT - Full‑Time
Shift : Day
Work Schedule : Monday‑Friday 8:00 AM - 5:00 PM
Job Posting Jan 7, 2026, 6:40:59 PM
Full‑Time Salary Range 137,550.4 - 229,257.6
Childrens National Hospital is an equal opportunity employer that evaluates qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender, identity, or other characteristics protected by law. The “Know Your Rights” poster is available here: and the pay transparency policy is available here: Know Your Rights Pay Transparency Nondiscrimination Poster.
Please note that it is the policy of Children’s National Hospital to ensure a “drug‑free” work environment: a workplace free from the illegal use, possession or distribution of controlled substances (as defined in the Controlled Substances Act), or the misuse of legal substances, by all staff (management, employees and contractors). Though recreational and medical marijuana are now legal in the District of Columbia, Children’s National and its affiliates maintain the right, in accordance with our policy, to enforce a drug‑free workplace, including prohibiting recreational or prescribed marijuana.
#J-18808-Ljbffr
Your north star: build and oversee a team of information security experts dedicated to protecting Children’s National and our patients, families, and staff. The Senior Manager Information Security scales Security Operations through engineering rigor, automation, and executive‑ready visibility. This leader owns the maturity and operational reliability of the security tooling ecosystem, drives detection engineering enablement, and delivers dashboards and metrics that translate telemetry into decisions and accountability.
What Success Looks Like
Higher quality detections and lower noise through disciplined detection engineering and tuning.
Automation that reduces manual effort and increases consistency in investigations and case handling.
Reliable security tooling performance with stable telemetry and measurable improvements in coverage and data quality.
Executive‑ready dashboards and metrics that drive prioritization, investment decisions, and operational accountability.
Essential Functions and Responsibilities Security Tooling Engineering, Detection Engineering, and Reliability
Own security tooling operational reliability, telemetry integrity, configuration governance, and platform health.
Establish standards for change control, testing, release management, and support runbooks.
Own the detection engineering lifecycle, including use case design, tuning, validation, and continuous improvement.
Automation and Orchestration
Own the automation strategy and delivery pipeline, including backlog prioritization, build standards, and production governance.
Deliver maintainable automations that improve speed, consistency, and documentation quality, including enrichment and ITSM workflow integration.
Security Data Analytics and Executive Reporting
Own Security Operations dashboards, operational metrics, and executive reporting with clear standards and cadence.
Translate telemetry into trends and actionable insights, driving follow‑through and accountability.
Operating Discipline and Quality Assurance
Enforce system‑of‑record expectations, documentation standards, and measurable closure criteria.
Run quality assurance reviews across detections, cases, and engineering outputs, including missed‑metric response and corrective action tracking.
Structured Support to SOC and Incident Response Leadership
Enable SOC and Incident Response maturity through standards, coaching, and engineering improvements without owning day‑to‑day incident execution.
Establish continuous improvement forums focused on alert quality, enrichment, automation opportunities, and repeatable response patterns.
Medical Device Security (IoMT)
Advising and assisting medical device stakeholders in operationalizing and adhering to connected device security requirements.
Providing input and support to connected medical device product and support teams throughout the connected device lifecycle from concept to decommissioning.
Overseeing the development, maintenance, and execution of a multi‑year enterprise‑wide security road map to protect connected medical devices and associated data.
Decision Rights and Boundaries
Owns prioritization and roadmap for SIEM engineering, detection engineering, automation delivery, and Security Operations reporting.
Owns engineering standards and operational reliability expectations for security tooling, including quality gates and change governance.
Partners with SOC leadership to improve execution through enablement and governance.
SOC and Incident Response leaders retain accountability for analyst performance, queue health, and incident execution.
Qualifications Minimum Education
Bachelor’s degree in education, psychology, social science, or another relevant discipline (Required)
Master’s Degree (Preferred)
Minimum Work Experience
7+ years of experience in information security and 3+ years in a management role (Required)
3+ years in information security operations and 3+ years in health care (particularly medical device engineering, operations, or maintenance) (Preferred)
Primary Location Maryland—Silver Spring
Work Locations Inventa Towers 1, Inventa Place Silver Spring 20910
Job Management
Organization Operations
Position Status : R (Regular) - FT - Full‑Time
Shift : Day
Work Schedule : Monday‑Friday 8:00 AM - 5:00 PM
Job Posting Jan 7, 2026, 6:40:59 PM
Full‑Time Salary Range 137,550.4 - 229,257.6
Childrens National Hospital is an equal opportunity employer that evaluates qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender, identity, or other characteristics protected by law. The “Know Your Rights” poster is available here: and the pay transparency policy is available here: Know Your Rights Pay Transparency Nondiscrimination Poster.
Please note that it is the policy of Children’s National Hospital to ensure a “drug‑free” work environment: a workplace free from the illegal use, possession or distribution of controlled substances (as defined in the Controlled Substances Act), or the misuse of legal substances, by all staff (management, employees and contractors). Though recreational and medical marijuana are now legal in the District of Columbia, Children’s National and its affiliates maintain the right, in accordance with our policy, to enforce a drug‑free workplace, including prohibiting recreational or prescribed marijuana.
#J-18808-Ljbffr