At NiCE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.
Manager, Information Security, CX
Position Summary
The Manager, Security Operations, is responsible for leading operational security and compliance activities supporting regulated environments, including FedRAMP-authorized systems and PCI-regulated environments. This role oversees vulnerability management, continuous monitoring, audit support, security readiness activities, and compliance operations across infrastructure and product environments.
This position leads the Security Operations team and works cross-functionally with Security, Infrastructure, Product Engineering, Platform Operations, Compliance, and external assessors to ensure security risks, compliance obligations, and operational control requirements are identified, communicated, tracked, and remediated appropriately.
The role requires a combination of technical security knowledge, operational leadership, organizational discipline, and strong cross-functional coordination skills.
Job Functions & Responsibilities
• Lead the Security Operations team responsible for vulnerability management, continuous monitoring, and compliance support activities.
• Oversee vulnerability scanning, reporting, tracking, prioritization, and remediation coordination across infrastructure and product teams.
• Support and maintain FedRAMP continuous monitoring activities, including recurring reporting, inventory management, and audit evidence collection.
• Support operational security and compliance activities related to PCI DSS and other regulatory frameworks.
• Coordinate and oversee STIG/CIS benchmark validation activities and remediation efforts.
• Support internal and external audits including FedRAMP, PCI DSS, SOC 2, ISO 27001, and customer assessments.
• Ensure recurring compliance deliverables, operational reporting, and audit artifacts are completed accurately and on schedule.
• Coordinate cross-functional remediation efforts with Security, Engineering, Infrastructure, and Product teams.
• Support incident response readiness activities including tabletop exercises, training coordination, and operational documentation maintenance.
• Maintain and improve operational security processes, procedures, and workflows.
• Support resiliency and disaster recovery validation activities and associated compliance reporting.
• Communicate operational risk, remediation status, and compliance concerns to leadership and stakeholders.
• Drive continuous improvement initiatives focused on operational maturity, automation, audit readiness, and vulnerability management effectiveness.
• Follow all company policies, security standards, and applicable compliance requirements.
This job description is not intended to be all-inclusive, and employees may perform other related duties as assigned.
Education, Experience, & Skills
• 3+ years of leadership or team lead experience in cybersecurity or security operations environments.
• 5+ years of experience in cybersecurity, vulnerability management, compliance operations, or related technical security fields.
• Experience supporting security or compliance programs in regulated environments.
• Familiarity with vulnerability management processes, remediation coordination, and security assessment activities.
• Experience working with vulnerability scanning and reporting platforms such as Rapid7, Tenable, Qualys, or similar tools.
• Familiarity with security frameworks and compliance standards such as FedRAMP, PCI DSS, NIST 800-53, SOC 2, ISO 27001, or CIS benchmarks.
• Strong organizational, communication, and cross-functional coordination skills.
• Ability to manage recurring operational responsibilities and audit-driven deliverables in a fast-paced environment.
• Experience supporting incident response activities, resiliency exercises, or audit evidence collection preferred.
• Experience with public cloud environments such as AWS or Azure preferred.
• Bachelor’s degree in cybersecurity, information systems, or related field preferred, or equivalent combination of education and experience.
• Security certifications such as Security+, CySA+, CASP+, CISSP, or similar certifications preferred.
About NiCE
NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NiCE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions.
