Cyber Security Manager

Description

Our Client is looking for a hands‑on Cybersecurity Manager. This role is ideal for a security professional who thrives in building internal security programs and enjoys bringing structure, visibility, and accountability to outsourced security operations.

Today, the majority of security functions are delivered through a managed security provider (MSP/MSSP). This role serves as the internal security control pillar, connecting vendors, IT, and the business, while helping move the organization from a reactive posture to a more controlled, risk‑based security model.

This is not a GRC‑heavy or strategy‑only role. The Cybersecurity Manager will actively triage alerts, manage incidents, validate vendor outputs, and provide technically grounded security advice as the company scales its cloud, AI, and data‑driven capabilities.

What You’ll Be Responsible For

Managed Security Provider Oversight (Primary Focus)

• Own and manage the relationship with the organization’s MSP/MSSP

• Review, validate, and contextualize security alerts and notifications (rather than simply forwarding them)

• Ensure timely follow‑up, remediation, and accountability from vendors

• Perform technical validation of vendor assessments and findings

• Act as the primary coordination point between the MSSP, infrastructure teams, internal security resources, and the Service Desk Manager

Incident Management, Alerting & Investigation

• Oversee MDR incidents, escalations, and notifications

• Triage alerts, assess impact, determine business risk, and escalate appropriately

• Conduct hands‑on investigation of alerts across tools such as:

○ Microsoft security tooling (M365)

○ Azure Sentinel

○ Rapid7 (via MSSP)

○ DLP, monitoring, and endpoint telemetry

• Support incident response through containment guidance, validation of remediation, and post‑incident follow‑up

• Bring clarity and decision‑making to ambiguous or incomplete alerts

Vendor Security & Risk Due Diligence

• Support vendor onboarding with technical security due diligence (no formal GRC platform today)

• Validate vendor security controls, architectures, and practices—especially for:

○ AI platforms and vendors

○ AWS‑based systems and components

○ Emerging and third‑party technologies

• Partner with life sciences, data privacy, and UK‑based teams already performing assessments—this role provides the technical validation layer

• Help translate vendor risk into practical, risk‑based recommendations for the business

Controls, Advisory & Program Development

• Contribute to security SOPs and policies (lightweight governance, not heavy compliance bureaucracy)

• Advise and validate IAM controls as access requirements and systems continue to expand

• Support security‑related audits, IT SOX activities, and penetration testing efforts (planned later in the year)

• Act as a trusted security advisor to IT and business stakeholders, balancing risk, speed, and business needs

Technology Environment

• Microsoft‑first security stack (M365)

• Azure Sentinel (SIEM)

• Rapid7 (via MSSP)

• KnowBe4 (security awareness training already in place)

• AWS components being introduced

• AI platforms and vendors in scope

• No formal GRC platform

Skills

Cyber security, Risk management, Incident response, M365 Security, pharma

Top Skills Details

Cyber security,Risk management,Incident response,M365 Security

Additional Skills & Qualifications

Life sciences exp preferred

Experience Level

Expert Level

This is a Contract position based out of Charlestown, MA.

The pay range for this position is $70.00 - $80.00/hr.

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
• Medical, dental & vision
• Critical Illness, Accident, and Hospital
• 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
• Life Insurance (Voluntary Life & AD&D for the employee and dependents)
• Short and long-term disability
• Health Spending Account (HSA)
• Transportation benefits
• Employee Assistance Program
• Time Off/Leave (PTO, Vacation or Sick Leave)

This is a hybrid position in Charlestown,MA.

This position is anticipated to close on May 8, 2026.

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

We’re a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We’re a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We’re strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We’re building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.