Senior Manager, Cybersecurity

HASI

Senior Manager, Cybersecurity at HASI overseeing cybersecurity strategy, engineering, and operations. Engaging in hands-on security leadership with a focus on Microsoft 365 and cloud security.

Posted 6/12/2026full-timeAnnapolis • 🇺🇸 United StatesSenior💰 $165,000 - $185,000 per yearWebsite

Tech Stack

Tools & technologies

AWSAzureCloudCyber Security

About the role

Key responsibilities & impact

Define, execute, and maintain HASI’s enterprise cybersecurity strategy, roadmap, and target security architecture.
Establish and enforce cybersecurity policies, standards, and technical controls aligned to NIST CSF, CIS Controls, and regulatory requirements.
Ensure cybersecurity is embedded into enterprise architecture, infrastructure design, cloud platforms, and technology initiatives from inception.
Provide regular, risk-based reporting on cybersecurity posture, control maturity, and emerging threats to executive leadership.
Serve as a hands-on security leader, actively configuring, implementing, and tuning security technologies and controls.
Lead the implementation and ongoing management of security platforms including SASE, DLP, IAM, PAM, endpoint protection, SIEM, and network security solutions.
Perform and oversee vulnerability identification, remediation, and validation across infrastructure, cloud, endpoints, and applications.
Actively participate in threat detection, security monitoring, incident response, root cause analysis, and post-incident remediation.
Manage and enhance SOC capabilities, including direct oversight of MSSPs and validation of alerts, detections, and response quality.
Own and manage security across the Microsoft 365 ecosystem, including Entra ID (Azure AD), Exchange Online, SharePoint, OneDrive, Teams, and Defender platforms.
Design, implement, and maintain Conditional Access policies, identity protection controls, and Zero Trust access models.
Lead Mobile Device Management (MDM/MAM) strategy and implementation using Microsoft Intune, including device compliance, application protection, and data loss prevention controls.
Develop, implement, and maintain CIS hardening baselines, security GPOs, and standardized secure workstation and server images.
Ensure secure configuration and continuous hardening of Microsoft and endpoint environments in alignment with CIS benchmarks.
Lead secure design and configuration of cloud environments (Azure, AWS), with a strong focus on defense-in-depth and least privilege.
Implement identity-centric security controls, secure networking, logging, and monitoring across hybrid and cloud-native environments.
Ensure security controls are integrated into automation, infrastructure-as-code, and modern IT delivery practices.
Lead, mentor, and develop a team of cybersecurity professionals, while remaining technically engaged and hands-on.
Establish clear expectations that balance strategic ownership with operational execution.
Foster a culture of accountability, continuous improvement, and strong security engineering discipline.
Partner with IT, risk, compliance, legal, and business teams to design solutions that are secure, scalable, and compliant
Act as a trusted technical advisor on cybersecurity risks, control design, and mitigation strategies.
Drive organization-wide security awareness and training programs to improve cyber hygiene and reduce human risk.

Requirements

What you’ll need

Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
10+ years of progressive experience in cybersecurity or information security, with significant hands-on technical responsibility
Demonstrated experience personally implementing and configuring security technologies, not solely managing teams or vendors
Deep expertise in Microsoft 365 security, including Conditional Access, Intune (MDM/MAM), Defender, identity protection, and tenant hardening
Strong experience implementing SASE, DLP, IAM, PAM, endpoint security, SIEM, vulnerability management, and Zero Trust architectures
Proven experience developing and enforcing CIS hardening standards, security baselines, GPOs, and secure images.
Experience with regulatory and compliance requirements (e.g., SOX, SOC 2)
Ability to lead teams while remaining technically hands-on and execution-focused
Excellent communication skills with the ability to translate technical risk into business impact
Relevant certifications preferred: CISSP, CISM, CISA, CIS Controls Practitioner, Microsoft Security certifications, or equivalent.

Benefits

Comp & perks

🌐 Worldwide ❌ Jobs You've Hidden ⭐️ Saved Jobs ✅ Applied Jobs ✉️ Email Alerts 👤 Account HASI Website LinkedIn All Job Openings 51 - 200 employees HASI is a leading climate positive investment firm that actively partners with clients to deploy real assets that facilitate the energy transition. With more than $12 billion in managed assets, our vision is that every investment improves our climate future. Senior Manager, Cybersecurity Job not on LinkedIn 🔥 52 minutes ago 🏢🏡 Annapolis – Hybrid 💵 $165k - $185k / year ⏰ Full Time 🟠 Senior 👮‍♂️ Cybersecurity / Security Engineer AWS Azure Cloud Cyber Security Apply Now Find Hiring Managers Customize resume + cover letter Report problem ☆ Save ☑️ Mark as applied ❌ Hide 📋 Description
Define, execute, and maintain HASI’s enterprise cybersecurity strategy, roadmap, and target security architecture.
Establish and enforce cybersecurity policies, standards, and technical controls aligned to NIST CSF, CIS Controls, and regulatory requirements.
Ensure cybersecurity is embedded into enterprise architecture, infrastructure design, cloud platforms, and technology initiatives from inception.
Provide regular, risk-based reporting on cybersecurity posture, control maturity, and emerging threats to executive leadership.
Serve as a hands-on security leader, actively configuring, implementing, and tuning security technologies and controls.
Lead the implementation and ongoing management of security platforms including SASE, DLP, IAM, PAM, endpoint protection, SIEM, and network security solutions.
Perform and oversee vulnerability identification, remediation, and validation across infrastructure, cloud, endpoints, and applications.
Actively participate in threat detection, security monitoring, incident response, root cause analysis, and post-incident remediation.
Manage and enhance SOC capabilities, including direct oversight of MSSPs and validation of alerts, detections, and response quality.
Own and manage security across the Microsoft 365 ecosystem, including Entra ID (Azure AD), Exchange Online, SharePoint, OneDrive, Teams, and Defender platforms.
Design, implement, and maintain Conditional Access policies, identity protection controls, and Zero Trust access models.
Lead Mobile Device Management (MDM/MAM) strategy and implementation using Microsoft Intune, including device compliance, application protection, and data loss prevention controls.
Develop, implement, and maintain CIS hardening baselines, security GPOs, and standardized secure workstation and server images.
Ensure secure configuration and continuous hardening of Microsoft and endpoint environments in alignment with CIS benchmarks.
Lead secure design and configuration of cloud environments (Azure, AWS), with a strong focus on defense-in-depth and least privilege.
Implement identity-centric security controls, secure networking, logging, and monitoring across hybrid and cloud-native environments.
Ensure security controls are integrated into automation, infrastructure-as-code, and modern IT delivery practices.
Lead, mentor, and develop a team of cybersecurity professionals, while remaining technically engaged and hands-on.
Establish clear expectations that balance strategic ownership with operational execution.
Foster a culture of accountability, continuous improvement, and strong security engineering discipline.
Partner with IT, risk, compliance, legal, and business teams to design solutions that are secure, scalable, and compliant
Act as a trusted technical advisor on cybersecurity risks, control design, and mitigation strategies.
Drive organization-wide security awareness and training programs to improve cyber hygiene and reduce human risk. 🎯 Requirements
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
10+ years of progressive experience in cybersecurity or information security, with significant hands-on technical responsibility
Demonstrated experience personally implementing and configuring security technologies, not solely managing teams or vendors
Deep expertise in Microsoft 365 security, including Conditional Access, Intune (MDM/MAM), Defender, identity protection, and tenant hardening
Strong experience implementing SASE, DLP, IAM, PAM, endpoint security, SIEM, vulnerability management, and Zero Trust architectures
Proven experience developing and enforcing CIS hardening standards, security baselines, GPOs, and secure images.
Experience with regulatory and compliance requirements (e.g., SOX, SOC 2)
Ability to lead teams while remaining technically hands-on and execution-focused
Excellent communication skills with the ability to translate technical risk into business impact
Relevant certifications preferred: CISSP, CISM, CISA, CIS Controls Practitioner, Microsoft Security certifications, or equivalent. Apply Now 📊 Check your resume score for this job Improve your chances of getting an interview by checking your resume score before you apply. Check Resume Score 🌐 Worldwide Built by Lior Neu-ner. I'd love to hear your feedback — Get in touch via DM or support@remoterocketship.com Search Search Jobs by country Search jobs by city Search jobs by job title Search entry-level jobs Search junior-level jobs Search senior-level jobs Search jobs by tech stack Search jobs by contract type Search remote internships Search remote part-time jobs Remote jobs Anywhere in the World Companies Hiring Anywhere in the World Companies Hiring Sales People Anywhere in the World Companies Hiring Software Engineers Anywhere in the World Resources Advice Tips for finding remote jobs Interview questions and answers Resume examples Cover letter examples Post a job Affiliates Privacy policy Terms of service Job board SEO course AI Apply Copilot OpenClaw job finder Jobs by Country Remote jobs anywhere in the world (Worldwide remote jobs) Remote jobs United States Remote jobs Australia Remote jobs Brazil Remote jobs Canada Remote jobs France Remote jobs Ireland Remote jobs Germany Remote jobs Netherlands Remote jobs Spain Remote jobs UK Popular Jobs Remote data analyst jobs Remote customer support jobs Remote executive assistant jobs Remote marketing jobs Remote product designer jobs Remote product manager jobs Remote project manager jobs Remote recruiter jobs Remote sales jobs Remote software engineer jobs Jobs by Type Remote full-time jobs Remote part-time jobs Remote contract jobs Remote internship jobs Remote entry-level jobs Remote jobs with no experience required Remote junior jobs (1-3 years of experience) Digital nomad jobs Remote jobs with no degree required Freelance remote jobs Temporary remote jobs Remote jobs hiring now Stay at home mom jobs

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cybersecurity strategysecurity architecturevulnerability managementidentity protectionZero Trust architectureSASEDLPIAMPAMSIEM

Soft Skills

leadershipcommunicationteam developmentstrategic ownershipoperational executionaccountabilitycontinuous improvementtechnical advisoryrisk translationculture fostering

Certifications

CISSPCISMCISACIS Controls PractitionerMicrosoft Security certifications