Senior Manager, Cybersecurity Architecture & Engineering
Boston Scientific · Arden Hills, MN · 5 days ago
Information Technology$120k/yrFull-time
About the role
Boston Scientific is seeking a CISO organization. This role reports directly to the Director of Cybersecurity Architecture and Engineering. The Senior Manager will lead a high-performing organization of cybersecurity architects, engineers, analysts, and technical specialists responsible for driving enterprise cybersecurity architecture, engineering, and strategic security initiatives across AI, Data, Application, and Cloud Security domains.
Responsibilities
- Lead and manage globally distributed teams of cybersecurity architects, engineers, and technical specialists responsible for Cybersecurity Architecture and Engineering.
- Provide technical and organizational leadership for enterprise security architecture across AI Security, Data Security, Application Security, Cloud Security, Identity and Access Management, Network Security, and Infrastructure Security.
- Lead strategic, enterprise-wide cybersecurity programs supporting digital transformation initiatives, including AI adoption, cloud modernization, application modernization, and enterprise data platforms.
- Develop and execute the Cybersecurity Architecture & Engineering strategy, roadmap, and multi-year technology investment plans aligned with business and security objectives.
- Establish architecture standards, engineering practices, security patterns, and reference architectures that enable secure-by-design principles across enterprise technology platforms.
- Partner with Enterprise Architecture, Digital Enablement, Infrastructure, Application Development, Data & Analytics, AI teams, and business stakeholders to integrate cybersecurity throughout the technology lifecycle.
- Lead Architecture Assurance activities including Security by Design, Threat Modeling, Architecture Reviews, Technical Review Boards (TRBs), and secure solution design.
- Drive innovation by evaluating emerging technologies and cybersecurity capabilities, particularly within AI Security, Cloud Security, Data Security, and Application Security.
- Develop and maintain strategic cybersecurity roadmaps and support annual cybersecurity strategy development and Annual Operating Plan (AOP) submissions.
- Manage vendor relationships, strategic partnerships, support agreements, and technology investments within areas of responsibility.
- Manage organizational budgets including personnel (BSC and consultants), technology investments, maintenance, travel, education, and operational expenditures.
- Establish governance, metrics, and key performance indicators (KPIs) to measure the effectiveness and maturity of cybersecurity architecture and engineering capabilities.
- Mentor, coach, and develop managers, architects, engineers, and technical leaders while fostering a collaborative, innovative, and high-performing engineering culture.
- Foster a diverse and inclusive workplace that enables team members to contribute to their full potential while supporting organizational objectives.
- Ensure compliance with company policies, regulatory requirements, and industry security standards.
Requirements
- Bachelor’s degree in Security or IT related field.
- A minimum of 12+ years of experience in IT industry.
- A minimum of 5+ years of strong people and project management experience.
- A minimum of 3+ years of strong experience of working knowledge in cybersecurity domains like IAM, Data security, Encryption, and Application security.
- Knowledge of good industry practice in tiered security architecture design.
- Strong analytical skills for interpreting business requirements and translating them into technical specifications.
- Strong communication skills, including the ability to write security documentation, standards, and guidelines.
- Understanding architectural implications of meeting industry standards such as PCI DSS, ISO 27001, HIPAA, and NIST/DoD frameworks.
Preferred Qualifications
- MBA or other advanced degree.
- Experience with multi-tier architectures and frameworks such as, TOGAF, NIST 207 - Zero Trust.
- Professional certifications such as CISSP, CISM, CCSP, SABSA, TOGAF, CCSK, AWS Security Specialty, Azure Security Engineer, or equivalent.
- Experience within regulated industries such as healthcare, medical devices, pharmaceuticals, or life sciences.
- Demonstrated ability to influence executive leadership and drive enterprise-wide security transformation initiatives.
- Strong strategic thinking, organizational leadership, and people development skills with a passion for building high-performing engineering organizations.