Cybersecurity Manager
Evergreen Goodwill of Northwest Washington
110k - 130k USD/year
Office
Seattle, WA, 98144, USA
Full Time
About Evergreen Goodwill
Evergreen Goodwill of Northwest Washington is a 501(c)(3) nonprofit organization founded in 1923 that helps people get jobs across Northwest Washington by offering high-quality free job training, educationand job placement. Goodwill empowers individuals to overcome barriers to working, by providing comprehensive support and connecting them with life changing job opportunities, ensuring they are career-ready and can support themselves and their families.
The organization employs over 2,000 people, operatesfive job-training centers, 23 nonprofit retail stores and more than 27 donation sites in King, Snohomish, Skagit, Whatcomand Kitsap Counties. Every day, Evergreen Goodwill connects people with the jobs, servicesand skills they need — because Jobs Change Lives. We are committed to creating and sustaining a culture of equity, diversityand inclusion (DEI) and are focused on creating a joyful, inclusiveand successful organization.
Title: Cybersecurity Manager
Department: IT (Information Technology)
Location: Admin Bldg (Hybrid: 3 days/week in Office)
Reports to: Sr Manager, IT Services
Supervises: Cybersecurity & Compliance Engineer; Security Analysts
Salary Range: $110,000–$130,000/year
Pay Type: Salary Exempt (Paid Bi-Weekly)
About Evergreen Goodwill
Evergreen Goodwill of Northwest Washington is a 501(c)(3) nonprofit organization founded in 1923 that helps people get jobs across Northwest Washington by offering high-quality free job training, education and job placement. Goodwill empowers individuals to overcome barriers to working, by providing comprehensive support and connecting them with life changing job opportunities, ensuring they are career-ready and can support themselves and their families.
The organization employs over 2,000 people, operates five job-training centers, 23 nonprofit retail stores and more than 27 donation sites in King, Snohomish, Skagit, Whatcom and Kitsap Counties. Every day, Evergreen Goodwill connects people with the jobs, services and skills they need — because Jobs Change Lives. We are committed to creating and sustaining a culture of equity, diversity and inclusion (DEI) and are focused on creating a joyful, inclusive and successful organization.
About the Position
EGNW is looking for a hands-on, growth-minded Cybersecurity Manager to build, run, and level up our organization-wide cybersecurity and compliance program; you’ll lead strategic security initiatives, manage security tools and processes, own incident response, and keep us compliant while protecting digital assets, employee data, and operational systems from evolving threats.
This role is central to our digital transformation—embedding security into every tech project, helping the org move fast without compromising safety, collaborating across teams, and shaping policies and culture. If you’re curious, proactive, and excited to make a visible impact at a mission-driven nonprofit while learning, leading, and growing in a flexible, fast-paced environment, we want you on the team.
Essential Duties and Responsibilities include the following. Other duties, responsibilities, and activities may change or be assigned at any time with or without notice.
Cybersecurity Program Leadership
◦ Develop and implement comprehensive cybersecurity strategy aligned with EGNW's risk tolerance and operational requirements
◦ Establish and maintain cybersecurity policies, procedures, and standards across all locations and systems
◦ Lead cybersecurity risk assessments and vulnerability management programs
◦ Design and oversee incident response procedures and coordinate breach response activities
◦ Manage cybersecurity budget, vendor relationships, and technology investments
Compliance & Risk Management
◦ Ensure compliance with relevant regulations including PCI DSS (payment processing), SOX controls, and nonprofit data protection requirements
◦ Implement and maintain security frameworks (NIST Cybersecurity Framework, CIS Controls)
◦ Conduct regular security audits and assessments across retail, warehouse, and administrative environments
◦ Manage third-party security assessments and vendor risk evaluations
◦ Coordinate with legal and executive teams on regulatory compliance and reporting
Security Technology Management
◦ Oversee security technology stack including firewalls, endpoint protection, SIEM, backup systems, and monitoring tools
◦ Manage identity and access management systems, ensuring appropriate controls for 2,000+ employees
◦ Design and implement security controls for cloud environments (Azure, Microsoft 365, D365)
◦ Evaluate, select, and implement new security technologies and solutions
◦ Ensure integration of security tools with existing IT infrastructure and business applications
Team Leadership & Development
◦ Lead and mentor cybersecurity team members including Cybersecurity & Compliance Engineer
◦ Develop security training programs for IT staff and end users organization-wide
◦ Build cybersecurity awareness programs tailored to retail, warehouse, and administrative staff
◦ Coordinate with HR on security-related hiring, onboarding, and termination procedures
◦ Foster a culture of security awareness and responsibility across the organization
Strategic Security Integration
◦ Partner with IT leadership on security considerations for digital transformation initiatives
◦ Provide security guidance for production automation, AI implementation, and new technology rollouts
◦ Ensure security requirements are integrated into retail POS systems, warehouse management, and e-commerce platforms
◦ Support business continuity planning and disaster recovery procedures
◦ Collaborate with facilities and operations teams on physical security integration
Monitoring & Incident Response
◦ Establish and maintain 24/7 security monitoring and alerting capabilities
◦ Lead incident response team and coordinate response to security events
◦ Conduct post-incident analysis and implement lessons learned
◦ Maintain relationships with external security resources, law enforcement, and incident response partners
◦ Ensure timely communication of security issues to executive leadership and stakeholders
Position Requirements Qualifications under the Americans with Disabilities Act (ADA)
To successfully perform this job, individuals must be able to complete each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform these essential functions.
Education
◦ Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
◦ Advanced degree (MBA, MS in Cybersecurity) preferred
◦ Industry certifications required: CISSP, CISM, or CISA
◦ Additional certifications preferred: Security+, GCIH, GSEC, or equivalent
Experience
◦ 7+ years of progressive experience in cybersecurity, with at least 3 years in management roles
◦ Experience managing cybersecurity programs in multi-location retail or nonprofit environments
◦ Proven track record implementing security frameworks and compliance programs
◦ Experience with incident response, forensics, and breach management
◦ Background in risk assessment, vulnerability management, and security auditing
◦ Experience managing cybersecurity budgets and vendor relationships
Technical Expertise
◦ Security Frameworks: Deep knowledge of NIST CSF, CIS Controls, ISO 27001/27002
◦ Compliance Standards: PCI DSS, SOX, GDPR, and nonprofit regulatory requirements
◦ Security Technologies: SIEM, endpoint protection, firewalls, intrusion detection, vulnerability scanners
◦ Cloud Security: Microsoft Azure security, Office 365 security, hybrid cloud architectures
◦ Identity Management: Active Directory, Azure AD, identity governance, privileged access management
◦ Network Security: Network architecture, segmentation, wireless security, remote access
Leadership & Business Skills
◦ Strong leadership and team development capabilities
◦ Excellent written and verbal communication skills with ability to present to executive leadership
◦ Project management experience with ability to manage multiple security initiatives
◦ Budget management and vendor negotiation experience
◦ Business acumen with understanding of nonprofit operations and retail environments
◦ Change management skills and ability to drive security culture transformation
◦ Crisis management and decision-making capabilities under pressure
Physical Abilities
◦ While performing the duties of this job, the employee will be required to sit for periods of time, communicate with other employees by talking and hearing, and operate computer systems
◦ Specific vision abilities required by the job include close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust focus
◦ Occasional travel to retail locations, warehouse facilities, and off-site meetings
◦ Able to communicate with others effectively both verbally and written, including those who have limited English skills. Maintain reliable attendance
◦ Availability for after-hours incident response and emergency security situations
Work Environment
◦ Exposure to computer screens and security monitoring systems
◦ The noise level in the work environment is usually moderate
◦ Required hybrid work schedule, at least 3 days/week in office
◦ Required job duties are normally performed in a climate-controlled office environment, or remotely from home
◦ Occasional visits to retail stores, warehouse facilities, and data centers
◦ On-call responsibilities for security incidents and emergencies
Everyone Is Welcome
When you join Evergreen Goodwill, you join a truly vibrant community. We value the things that make us different and unique. From diverse international and ethnic backgrounds, to languages, identities, ages, orientations, and beyond, Evergreen Goodwill celebrates individual and cultural diversity.
Why work at Evergreen Goodwill?
• A health plan that includes medical, dental, vision and prescription coverage
• 100% Employer-paid life, accidental death and dismemberment (AD&D), and long-term disability insurance (for salaried employee)
• Voluntary supplemental coverage for life, accident, illness, and short- and long-term disability
• Flexible Spending Accounts (FSA) Plan
• Roth and 403(b) Retirement Savings Plan program
• Paid vacation, (9) holiday and sick time
• Limited paid time off for Jury Duty and Bereavement Leave
• Employee discounts
• Employee Assistance Program (EAP)
• Career Advancement Opportunities
• Paid Job Training
EEO Statement: Evergreen Goodwill of Northwest Washington is an Equal Opportunity Employer. We do not discriminate on the basis of race, color, religion, creed, sex, national origin, age, disability, marital status, citizenship, military status, sexual orientation, gender identity, genetic information, veteran status, or other protected characteristics in accordance with applicable law. This policy applies to all aspects of employment, including hiring, compensation, benefits, and termination.
Everyone Is Welcome
When you join Evergreen Goodwill, you joina truly vibrant community. We value the things that make us different and unique. From diverse international and ethnic backgrounds, to languages, identities, ages, orientations, and beyond, Evergreen Goodwill celebrates individual and cultural diversity.
Why work at Evergreen Goodwill?
A health plan that includes medical, dental, vision and prescription coverage
100% Employer-paid life, accidental deathand dismemberment (AD&D), and long termdisability insurance (for salaried employee)
Voluntary supplemental coverage for life, accident, illness, and short- and long-term disability
Flexible Spending Accounts (FSA) Plan
Roth and 403(b) Retirement Savings Plan program
Paid vacation, (9) holiday and sick time
Limited paid time off for Jury Duty and Bereavement Leave
Employee discounts
Employee referral bonus
Employee Assistance Program (EAP)
Mentorship Program
Career Advancement Opportunities
Paid Job Training
EEO Statement: Evergreen Goodwill of Northwest Washington is an Equal Opportunity Employer. We do not discriminate on the basis ofrace, color, religion, creed, sex, national origin, age, disability, marital status, citizenship, military status, sexual orientation, gender identity, genetic information, veteran status, or other protected characteristics in accordance withapplicable law. This policy applies to all aspects of employment, including hiring, compensation, benefits, and termination.
This document does not representa contract of employment, and EGNW reserves the right to change this job description and/or assign tasks for the employee to perform, as EGNW may deemappropriate.
Evergreen Goodwill of Northwest Washington is a 501(c)(3) nonprofit organization founded in 1923 that helps people get jobs across Northwest Washington by offering high-quality free job training, educationand job placement. Goodwill empowers individuals to overcome barriers to working, by providing comprehensive support and connecting them with life changing job opportunities, ensuring they are career-ready and can support themselves and their families.
The organization employs over 2,000 people, operatesfive job-training centers, 23 nonprofit retail stores and more than 27 donation sites in King, Snohomish, Skagit, Whatcomand Kitsap Counties. Every day, Evergreen Goodwill connects people with the jobs, servicesand skills they need — because Jobs Change Lives. We are committed to creating and sustaining a culture of equity, diversityand inclusion (DEI) and are focused on creating a joyful, inclusiveand successful organization.
Title: Cybersecurity Manager
Department: IT (Information Technology)
Location: Admin Bldg (Hybrid: 3 days/week in Office)
Reports to: Sr Manager, IT Services
Supervises: Cybersecurity & Compliance Engineer; Security Analysts
Salary Range: $110,000–$130,000/year
Pay Type: Salary Exempt (Paid Bi-Weekly)
About Evergreen Goodwill
Evergreen Goodwill of Northwest Washington is a 501(c)(3) nonprofit organization founded in 1923 that helps people get jobs across Northwest Washington by offering high-quality free job training, education and job placement. Goodwill empowers individuals to overcome barriers to working, by providing comprehensive support and connecting them with life changing job opportunities, ensuring they are career-ready and can support themselves and their families.
The organization employs over 2,000 people, operates five job-training centers, 23 nonprofit retail stores and more than 27 donation sites in King, Snohomish, Skagit, Whatcom and Kitsap Counties. Every day, Evergreen Goodwill connects people with the jobs, services and skills they need — because Jobs Change Lives. We are committed to creating and sustaining a culture of equity, diversity and inclusion (DEI) and are focused on creating a joyful, inclusive and successful organization.
About the Position
EGNW is looking for a hands-on, growth-minded Cybersecurity Manager to build, run, and level up our organization-wide cybersecurity and compliance program; you’ll lead strategic security initiatives, manage security tools and processes, own incident response, and keep us compliant while protecting digital assets, employee data, and operational systems from evolving threats.
This role is central to our digital transformation—embedding security into every tech project, helping the org move fast without compromising safety, collaborating across teams, and shaping policies and culture. If you’re curious, proactive, and excited to make a visible impact at a mission-driven nonprofit while learning, leading, and growing in a flexible, fast-paced environment, we want you on the team.
Essential Duties and Responsibilities include the following. Other duties, responsibilities, and activities may change or be assigned at any time with or without notice.
Cybersecurity Program Leadership
◦ Develop and implement comprehensive cybersecurity strategy aligned with EGNW's risk tolerance and operational requirements
◦ Establish and maintain cybersecurity policies, procedures, and standards across all locations and systems
◦ Lead cybersecurity risk assessments and vulnerability management programs
◦ Design and oversee incident response procedures and coordinate breach response activities
◦ Manage cybersecurity budget, vendor relationships, and technology investments
Compliance & Risk Management
◦ Ensure compliance with relevant regulations including PCI DSS (payment processing), SOX controls, and nonprofit data protection requirements
◦ Implement and maintain security frameworks (NIST Cybersecurity Framework, CIS Controls)
◦ Conduct regular security audits and assessments across retail, warehouse, and administrative environments
◦ Manage third-party security assessments and vendor risk evaluations
◦ Coordinate with legal and executive teams on regulatory compliance and reporting
Security Technology Management
◦ Oversee security technology stack including firewalls, endpoint protection, SIEM, backup systems, and monitoring tools
◦ Manage identity and access management systems, ensuring appropriate controls for 2,000+ employees
◦ Design and implement security controls for cloud environments (Azure, Microsoft 365, D365)
◦ Evaluate, select, and implement new security technologies and solutions
◦ Ensure integration of security tools with existing IT infrastructure and business applications
Team Leadership & Development
◦ Lead and mentor cybersecurity team members including Cybersecurity & Compliance Engineer
◦ Develop security training programs for IT staff and end users organization-wide
◦ Build cybersecurity awareness programs tailored to retail, warehouse, and administrative staff
◦ Coordinate with HR on security-related hiring, onboarding, and termination procedures
◦ Foster a culture of security awareness and responsibility across the organization
Strategic Security Integration
◦ Partner with IT leadership on security considerations for digital transformation initiatives
◦ Provide security guidance for production automation, AI implementation, and new technology rollouts
◦ Ensure security requirements are integrated into retail POS systems, warehouse management, and e-commerce platforms
◦ Support business continuity planning and disaster recovery procedures
◦ Collaborate with facilities and operations teams on physical security integration
Monitoring & Incident Response
◦ Establish and maintain 24/7 security monitoring and alerting capabilities
◦ Lead incident response team and coordinate response to security events
◦ Conduct post-incident analysis and implement lessons learned
◦ Maintain relationships with external security resources, law enforcement, and incident response partners
◦ Ensure timely communication of security issues to executive leadership and stakeholders
Position Requirements Qualifications under the Americans with Disabilities Act (ADA)
To successfully perform this job, individuals must be able to complete each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform these essential functions.
Education
◦ Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
◦ Advanced degree (MBA, MS in Cybersecurity) preferred
◦ Industry certifications required: CISSP, CISM, or CISA
◦ Additional certifications preferred: Security+, GCIH, GSEC, or equivalent
Experience
◦ 7+ years of progressive experience in cybersecurity, with at least 3 years in management roles
◦ Experience managing cybersecurity programs in multi-location retail or nonprofit environments
◦ Proven track record implementing security frameworks and compliance programs
◦ Experience with incident response, forensics, and breach management
◦ Background in risk assessment, vulnerability management, and security auditing
◦ Experience managing cybersecurity budgets and vendor relationships
Technical Expertise
◦ Security Frameworks: Deep knowledge of NIST CSF, CIS Controls, ISO 27001/27002
◦ Compliance Standards: PCI DSS, SOX, GDPR, and nonprofit regulatory requirements
◦ Security Technologies: SIEM, endpoint protection, firewalls, intrusion detection, vulnerability scanners
◦ Cloud Security: Microsoft Azure security, Office 365 security, hybrid cloud architectures
◦ Identity Management: Active Directory, Azure AD, identity governance, privileged access management
◦ Network Security: Network architecture, segmentation, wireless security, remote access
Leadership & Business Skills
◦ Strong leadership and team development capabilities
◦ Excellent written and verbal communication skills with ability to present to executive leadership
◦ Project management experience with ability to manage multiple security initiatives
◦ Budget management and vendor negotiation experience
◦ Business acumen with understanding of nonprofit operations and retail environments
◦ Change management skills and ability to drive security culture transformation
◦ Crisis management and decision-making capabilities under pressure
Physical Abilities
◦ While performing the duties of this job, the employee will be required to sit for periods of time, communicate with other employees by talking and hearing, and operate computer systems
◦ Specific vision abilities required by the job include close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust focus
◦ Occasional travel to retail locations, warehouse facilities, and off-site meetings
◦ Able to communicate with others effectively both verbally and written, including those who have limited English skills. Maintain reliable attendance
◦ Availability for after-hours incident response and emergency security situations
Work Environment
◦ Exposure to computer screens and security monitoring systems
◦ The noise level in the work environment is usually moderate
◦ Required hybrid work schedule, at least 3 days/week in office
◦ Required job duties are normally performed in a climate-controlled office environment, or remotely from home
◦ Occasional visits to retail stores, warehouse facilities, and data centers
◦ On-call responsibilities for security incidents and emergencies
Everyone Is Welcome
When you join Evergreen Goodwill, you join a truly vibrant community. We value the things that make us different and unique. From diverse international and ethnic backgrounds, to languages, identities, ages, orientations, and beyond, Evergreen Goodwill celebrates individual and cultural diversity.
Why work at Evergreen Goodwill?
• A health plan that includes medical, dental, vision and prescription coverage
• 100% Employer-paid life, accidental death and dismemberment (AD&D), and long-term disability insurance (for salaried employee)
• Voluntary supplemental coverage for life, accident, illness, and short- and long-term disability
• Flexible Spending Accounts (FSA) Plan
• Roth and 403(b) Retirement Savings Plan program
• Paid vacation, (9) holiday and sick time
• Limited paid time off for Jury Duty and Bereavement Leave
• Employee discounts
• Employee Assistance Program (EAP)
• Career Advancement Opportunities
• Paid Job Training
EEO Statement: Evergreen Goodwill of Northwest Washington is an Equal Opportunity Employer. We do not discriminate on the basis of race, color, religion, creed, sex, national origin, age, disability, marital status, citizenship, military status, sexual orientation, gender identity, genetic information, veteran status, or other protected characteristics in accordance with applicable law. This policy applies to all aspects of employment, including hiring, compensation, benefits, and termination.
Everyone Is Welcome
When you join Evergreen Goodwill, you joina truly vibrant community. We value the things that make us different and unique. From diverse international and ethnic backgrounds, to languages, identities, ages, orientations, and beyond, Evergreen Goodwill celebrates individual and cultural diversity.
Why work at Evergreen Goodwill?
A health plan that includes medical, dental, vision and prescription coverage
100% Employer-paid life, accidental deathand dismemberment (AD&D), and long termdisability insurance (for salaried employee)
Voluntary supplemental coverage for life, accident, illness, and short- and long-term disability
Flexible Spending Accounts (FSA) Plan
Roth and 403(b) Retirement Savings Plan program
Paid vacation, (9) holiday and sick time
Limited paid time off for Jury Duty and Bereavement Leave
Employee discounts
Employee referral bonus
Employee Assistance Program (EAP)
Mentorship Program
Career Advancement Opportunities
Paid Job Training
EEO Statement: Evergreen Goodwill of Northwest Washington is an Equal Opportunity Employer. We do not discriminate on the basis ofrace, color, religion, creed, sex, national origin, age, disability, marital status, citizenship, military status, sexual orientation, gender identity, genetic information, veteran status, or other protected characteristics in accordance withapplicable law. This policy applies to all aspects of employment, including hiring, compensation, benefits, and termination.
This document does not representa contract of employment, and EGNW reserves the right to change this job description and/or assign tasks for the employee to perform, as EGNW may deemappropriate.
Cybersecurity Manager
Office
Seattle, WA, 98144, USA
Full Time
110k - 130k USD/year
September 12, 2025
