Senior Manager, Cybersecurity and Operations

Company: Accela

Location: Remote

About Accela

Accela is a leading provider of cloud-based government software, dedicated to improving efficiency, citizen engagement, and community development. We empower government agencies to serve their communities effectively with a robust SaaS platform that accelerates growth, efficiency, and transparency.

About the Role

The Senior Manager, Cybersecurity and Operations is responsible for leading Accela's cybersecurity operations, security engineering, monitoring, detection, incident response, and infrastructure security. This role protects corporate, cloud, hybrid, and production environments through effective security tooling, operational processes, incident readiness, and measurable risk reduction. It combines technical leadership, operational ownership, and people management.

Specific Responsibilities

• Lead cybersecurity operations and security engineering across corporate, cloud, hybrid, and production environments.
• Manage and develop security engineers and analysts responsible for monitoring, detection, response, infrastructure security, vulnerability management, and operational security controls.
• Own monitoring, detection, and response capabilities, including SIEM, EDR/XDR, DLP, vulnerability management, firewall, WAF, email security, identity security, and cloud security tooling.
• Serve as the operational control point during significant cybersecurity incidents, coordinating response across Security, IT, Engineering, Legal, Communications, GRC, and executive stakeholders.
• Develop, maintain, and test incident response playbooks, escalation paths, tabletop exercises, on-call procedures, and post-incident review processes.
• Lead post-incident reviews, ensuring root-cause remediation, lessons learned, and control improvements.
• Evaluate, implement, and optimize security solutions across endpoint, identity, network, email, cloud, logging, detection, and response platforms.
• Partner with IT and Engineering to strengthen cloud, hybrid, and corporate security controls.
• Support GovRAMP and PCI DSS control requirements.
• Drive measurable risk reduction across infrastructure, endpoints, cloud environments, identity systems, and business-critical services.
• Own operational vulnerability management processes.
• Support business continuity, disaster recovery, and resilience planning from a cybersecurity perspective.
• Manage cybersecurity operations budget inputs, including vendor evaluation, renewals, and investment recommendations.
• Develop operational security metrics and reporting for executive leadership.
• Stay ahead of evolving threats, including cloud-native attacks, identity compromise, ransomware, and AI-enabled threats.
• Participate in or manage the security on-call rotation.

Required Qualifications

• 8+ years of experience in cybersecurity, security operations, security engineering, infrastructure security, cloud security, or incident response.
• 3+ years of experience leading cybersecurity teams, security operations programs, or technical security initiatives.
• Strong working knowledge of SIEM, EDR/XDR, DLP, WAF, vulnerability management, firewalls, email security, identity security, and cloud security tooling.
• Experience securing cloud, hybrid, and corporate environments across AWS, Azure, or GCP.
• Experience leading or coordinating incident response for material cybersecurity events.
• Strong understanding of identity security, network segmentation, endpoint security, logging, detection engineering, vulnerability management, and key/secret management.
• Demonstrated ability to deliver security initiatives that produce measurable risk reduction.
• Experience managing vendors, evaluating security tools, and making build/buy recommendations.
• Strong communication skills with the ability to explain operational security risk to technical and executive audiences.

Desired Qualifications

• Experience with Microsoft Defender for Cloud, Azure-native security tooling, or equivalent AWS/GCP security tooling.
• Experience supporting SaaS environments with public-sector, regulated, payment, or customer-trust-driven requirements.
• Experience operating in environments governed by SOC 2, ISO 27001, GovRAMP, PCI DSS, NIST CSF, or NIST 800-53 control requirements.
• Familiarity with zero-trust architectures, SSO, MFA, conditional access, SSPM, identity threat detection, and privileged access management.
• Experience securing Kubernetes, containers, cloud workloads, and CI/CD infrastructure.
• Relevant certifications such as CISSP, CISM, CCSP, GIAC, GCIH, GCIA, or similar.

Other

• Expected to participate in or lead the security incident response rotation.
• Very light travel may be expected.

Compensation and Well-being

• Annual Base Salary Range: $170,000 - $190,000 (less applicable taxes).
• Actual base salary will be adjusted based on factors including location, education, skills, training, and experience.
• This position is eligible for an annual bonus target based on company and individual goal achievement.
• Benefits: Flexible time off, comprehensive medical, dental, and vision plans, family planning benefits, 401(k) retirement savings plan with company match, health savings account with company contributions, flexible spending account, life, accident, and disability coverage, business travel insurance, employee assistance programs, and other well-being benefits.

Accela is an Equal Opportunity Employer/Affirmative Action Employer. We are committed to diversity, equity, and inclusion and support reasonable accommodations.