CrawlJobs Logo

Manager- Cybersecurity & Privacy

cnmllp.com Logo

CNM LLP

Location Icon

Location:
United States , Los Angeles

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

128000.00 - 148000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

CNM is currently offering an exciting Manager opportunity to be part of our growing Los Angeles Cybersecurity team. This position will actively participate and lead growth as we continue to build our practice. You will execute challenging and complex engagements and be exposed to components of Cybersecurity & Privacy strategy for our impressive clients. This position is currently a hybrid structure (60% at client/in office, 40% remote). There is local travel throughout Los Angeles and Orange County. Projects include: Cybersecurity risk and maturity assessments using frameworks such as: ISO 270001, NIST CSF 2.0, CIS 18, PCI-DSS and MITRE ATT&CK. Developing security policies and procedures, in line with regulatory requirements and standards. Privacy projects and audits in support of CCPA/CPRA and GDPR compliance. Assisting clients with meeting PCI-DSS requirements. Security transformation programs – design & management of security solution implementations and/or remediation. Design and implementation of programs to improve capability areas such as Vulnerability Management, Incident Response, IT Disaster Recovery, Business Continuity, Threat Intelligence and Monitoring.

Job Responsibility:

  • Lead, mentor, manage and train the team of Cybersecurity Senior Associates and collaborate with other Managers
  • Oversee complex and specialized client engagements, reporting status and collaborating with Cybersecurity team members including: Associate Director, Director, Managing Director and Partner
  • Lead or assist in the development of privacy program governance components (e.g., policies, procedures, standards, frameworks, trainings, notices) for clients across industries
  • Support the Cybersecurity and Privacy practice in market expansion
  • Manage and lead project teams to review and assess IT environments, risks, and controls for companies that range from newly public high growth entities to the largest public companies
  • Deliver security technologies such as Firewalls, VPN, IDS/IPS and Endpoint security
  • Demonstrate a thorough practical and strategic understanding of complex information systems, cyber security concepts, threats, proactive defense principles, strategies and market leading solutions
  • Lead project meetings, status updates, training sessions and other events as needed
  • Provide relevant cybersecurity and IT security subject matter advice, findings, and recommendations
  • Collaborate with team members and clients on unique strategies that will enable organizations to withstand various internal and external risks
  • Foresee issues and challenges, while collaborating effectively across teams to implement creative and thoughtful solutions
  • Assess Business Continuity Plan (BCP) and Incident Response (IR) Preparedness and as needed assist in the preparation of BCP and IR Tabletop Exercises
  • Perform gap assessments of application/system disaster recovery plans
  • Assist in the development of recovery plan documents
  • Manage project delivery, customer satisfaction, and accurate timekeeping for billing purposes
  • Organize and manage multiple projects, efforts, and priorities concurrently
  • Provide advisory assessments in relation to cybersecurity breach prevention
  • Work independently on complex projects or work in a team as a project leader

Requirements:

  • Bachelor’s degree is required in a related field
  • Information Systems, Computer Science, Mathematics, Economics, Business, Finance or Accounting preferred
  • Minimum of 5 years of Big 4 experience or related consulting/professional services firm experience with hands-on knowledge in Cybersecurity consulting
  • CISSP Certification Preferred
  • Excellent project management and organizational skills
  • Demonstrated ability to successfully lead teams and projects in delivering on Cybersecurity needs
  • Ability to develop teams and provide feedback to assist in team members’ growth
  • Knowledge and experience with the following Cybersecurity frameworks such as NIST Cybersecurity Framework ISO 270001, NIST CSF 2.0, CIS 18, PCI-DSS and MITRE ATT&CK
  • Knowledge and experience with Governance and Policy Creation
  • Knowledge and experience with threat modeling methodologies such as MITRE ATT&CK
  • Delivery experience in executing Privacy projects and audits in support of CCPA/CPRA and GDPR compliance
  • Ability to manage projects and teams according to budget while balancing team and client needs
What we offer:
  • Training events to ensure CPE compliance
  • Medical, Dental, Vision Plans
  • 401(k) match
  • PTO: 15 days accrued per year
  • Company paid holidays, including company shutdown the week between Christmas and New Years
  • 3 wellness days
  • Various opportunities for peer engagement: quarterly huddles, happy hours, summer and a holiday party
  • Monthly mobile reimbursement $80
  • Reimbursement allowances: flex, technology, health and wellness and personal development
  • Fully stocked kitchen
  • Overtime bonus and Performance bonus in addition to the base pay
  • Paid maternity and parental leave
  • Flexible spending accounts for employees and dependents
  • Annual technology bonus
  • Health and wellness bonus

Additional Information:

Job Posted:
December 31, 2025

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
CNM LLP - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Manager- Cybersecurity & Privacy

Cybersecurity & Data Privacy Associate

A US law firm is seeking a Cybersecurity & Data Privacy Associate to join its dy...
Location
Location
United Kingdom , London
Salary
Salary:
180000.00 - 280000.00 GBP / Year
https://www.douglas-scott.co.uk Logo
Douglas Scott
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • England & Wales-qualified lawyer or equivalent
  • strong academic background
  • experience in cybersecurity and data privacy
  • experience with GDPR and UK privacy compliance frameworks
  • understanding of NIS2, DORA, and operational resilience laws
  • knowledge of M&A due diligence and data privacy aspects of transactions
  • ability to draft privacy policies, data protection agreements, and notices
  • passion for cybersecurity, data protection, and emerging technology law
  • knowledge of AI governance and regulation.
Job Responsibility
Job Responsibility
  • Advising on cybersecurity preparedness and incident response
  • managing regulatory investigations and enforcement actions, particularly with UK/EU regulators
  • assisting clients with building GDPR and UK privacy compliance frameworks, including NIS2, DORA, and operational resilience laws
  • supporting M&A due diligence and data privacy aspects of transactions
  • drafting privacy policies, data protection agreements, and notices
  • providing counsel on AI governance and emerging tech issues.
What we offer
What we offer
  • Top of the market US market salary
  • year-end bonus
  • comprehensive benefits package, including technology allowances, gym benefits, private medical insurance, enhanced parental leave
  • hybrid working model
  • access to top-tier training, mentoring, and real-time feedback
  • dedicated support for lateral hires through the firm’s Skadden Integration+ program
  • opportunities to participate in pro bono work through the firm’s collaboration with LawWorks.
  • Fulltime
Read More
Arrow Right

Cybersecurity & Data Privacy Associate

A US law firm is seeking to hire a Cybersecurity & Data Privacy Associate (1–7 P...
Location
Location
United Kingdom , London
Salary
Salary:
180000.00 - 280000.00 GBP / Year
https://www.douglas-scott.co.uk Logo
Douglas Scott
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in privacy and cybersecurity, preferably gained at a top-tier international firm
  • Strong academic background
  • England & Wales-qualified lawyer, or equivalent
  • Strong passion for cybersecurity, data protection, and emerging technology law
  • Ability to stay ahead of developments in AI and engage with emerging trends.
Job Responsibility
Job Responsibility
  • Advising on cybersecurity preparedness and incident response
  • Managing regulatory investigations and enforcement actions, particularly with UK/EU regulators
  • Assisting clients with building GDPR and UK privacy compliance frameworks, including NIS2, DORA, and operational resilience laws
  • Supporting M&A due diligence and data privacy aspects of transactions
  • Drafting privacy policies, data protection agreements, and notices
  • Providing counsel on AI governance and emerging tech issues.
What we offer
What we offer
  • Top of the market US market salary
  • Year-end bonus
  • Comprehensive benefits package including technology allowances, gym benefits, private medical insurance, enhanced parental leave, and more
  • A hybrid working model (typically 4 days in the office for full-time lawyers)
  • Access to top-tier training, mentoring, and real-time feedback from leading experts
  • Dedicated support for lateral hires through the firm’s Skadden Integration+ program
  • Opportunities to participate in pro bono work through the firm’s collaboration with LawWorks.
  • Fulltime
Read More
Arrow Right

Cybersecurity & Data Privacy Associate

A US law firm is seeking to hire a Cybersecurity & Data Privacy Associate (1–7 P...
Location
Location
United Kingdom , London
Salary
Salary:
180000.00 - 280000.00 GBP / Year
https://www.douglas-scott.co.uk Logo
Douglas Scott
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • England & Wales-qualified lawyer or equivalent
  • strong academic background
  • experience in cybersecurity and data privacy
  • preferably gained at a top-tier international firm
  • strong passion for cybersecurity, data protection, and emerging technology law
Job Responsibility
Job Responsibility
  • Advising on cybersecurity preparedness and incident response
  • Managing regulatory investigations and enforcement actions
  • Assisting clients with building GDPR and UK privacy compliance frameworks
  • Supporting M&A due diligence and data privacy aspects of transactions
  • Drafting privacy policies, data protection agreements, and notices
  • Providing counsel on AI governance and emerging tech issues
What we offer
What we offer
  • Year-end bonus
  • Comprehensive benefits package, including technology allowances, gym benefits, private medical insurance, enhanced parental leave
  • Access to top-tier training, mentoring, and real-time feedback from leading experts
  • Dedicated support for lateral hires through the firm’s Skadden Integration+ program
  • Opportunities to participate in pro bono work through the firm’s collaboration with LawWorks
  • Fulltime
Read More
Arrow Right

Cybersecurity & Data Privacy Associate

A US law firm is seeking to hire a Cybersecurity & Data Privacy Associate (1–7 P...
Location
Location
United Kingdom , London
Salary
Salary:
180000.00 - 280000.00 GBP / Year
https://www.douglas-scott.co.uk Logo
Douglas Scott
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • England & Wales-qualified lawyer, or equivalent
  • strong academic background
  • experience in cybersecurity and data privacy
  • preferably gained at a top-tier international firm
  • strong passion for cybersecurity, data protection, and emerging technology law
Job Responsibility
Job Responsibility
  • Advising on cybersecurity preparedness and incident response
  • Managing regulatory investigations and enforcement actions, particularly with UK/EU regulators
  • Assisting clients with building GDPR and UK privacy compliance frameworks, including NIS2, DORA, and operational resilience laws
  • Supporting M&A due diligence and data privacy aspects of transactions
  • Drafting privacy policies, data protection agreements, and notices
  • Providing counsel on AI governance and emerging tech issues
What we offer
What we offer
  • Year-end bonus
  • Comprehensive benefits package, including technology allowances, gym benefits, private medical insurance, enhanced parental leave, and more
  • Access to top-tier training, mentoring, and real-time feedback from leading experts
  • Dedicated support for lateral hires through the firm’s Skadden Integration+ program
  • Opportunities to participate in pro bono work through the firm’s collaboration with LawWorks
  • Fulltime
Read More
Arrow Right

Director, GRC, Privacy, & Trust

We’re looking for an experienced security leader to grow and mature the Governan...
Location
Location
United States; Canada
Salary
Salary:
258000.00 - 350000.00 USD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years leading GRC and privacy programs, including experience with international audits, risk management frameworks, and privacy regulations
  • 5+ years experience managing individual contributors as well as experience managing other managers
  • Proven expertise in policy development, risk assessment, compliance monitoring, and privacy program management
  • Passion for fostering psychological safety and stability in complex compliance environments
  • Hands-on experience with various information security and privacy compliance frameworks such as SOC 2 Type II, ISO 27001, FedRAMP, CMMC, GDPR, and CPRA
  • Experience with security and privacy automation tools for compliance monitoring and knowledge management
  • Experience leading company-wide compliance initiatives, securing buy-in for security and privacy policies, and leading cross functional programs
  • Experience partnering on customer contracts, including security addendums and compliance terms, balancing customer expectations and business needs
  • Exceptional written and verbal communication skills with ability to communicate effectively with executives, legal counsel, and stakeholders
  • Experience managing third-party risk, vendor assessments, and external auditors
Job Responsibility
Job Responsibility
  • Lead and mentor the GRC and Privacy Engineering team, fostering career growth and high performance
  • Drive the organization's risk management strategy and oversee the implementation of risk assessment frameworks
  • Develop and maintain information security and privacy policies, ensuring regular reviews and updates
  • Establish strong partnerships across departments to align on security and compliance initiatives
  • Engaging with customers, in partnership with Sales and Legal, to represent security in RFPs, due diligence, and security assessments
  • Oversee 1Password’s various information security and privacy certification processes ensuring compliance with relevant frameworks and regulations
  • Monitor and report on compliance metrics and program effectiveness
  • Partner with legal and security teams to assess and mitigate business, technical, and regulatory risks
  • Oversee relationships with external auditors and consultants
What we offer
What we offer
  • Maternity and parental leave top-up programs
  • Generous PTO policy
  • Four company-wide wellness days
  • Company equity for all full-time employees
  • Retirement matching program
  • Free 1Password account
  • Paid volunteer days
  • Employee-led inclusion and belonging programs and ERGs
  • Peer-to-peer recognition through Bonusly
  • Fulltime
Read More
Arrow Right

Global Data Privacy Counsel

We are looking for a senior attorney with extensive experience in global data pr...
Location
Location
United States , Atlanta
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor degree from a reputable, accredited U.S. law school
  • Active license in good standing with one or more U.S. state bars (Georgia preferred)
  • 10+ years of progressive experience in data privacy and cybersecurity legal matters, with significant in-house experience at a high-growth, technology-driven company
  • Deep expertise and knowledge of and hands-on experience with U.S. and international data privacy, cybersecurity, and compliance laws and frameworks (including GDPR, CCPA/CPRA, PCI-DSS, ISO certifications, and other relevant global standards) and leading-edge AI regulations and frameworks
  • Demonstrated success in providing strategic legal counsel that balances risk management with enabling innovation and business growth, particularly in payments and data-driven initiatives
  • Proven experience leading global privacy and data protection programs, including managing privacy and data protection risk frameworks and governance
  • Experience managing external counsel, auditors, and regulators
  • Proven ability to lead, develop, and inspire diverse, global teams, including direct leadership experience with Data Protection Officers and other privacy professionals
  • Strong business acumen with the ability to translate complex legal concepts into clear, actionable advice that aligns with business objectives and supports deal-making and sales acceleration
  • Excellent communication and interpersonal skills, with the ability to influence stakeholders at all levels, including senior executives and cross-functional teams globally
Job Responsibility
Job Responsibility
  • Serve as a trusted strategic legal advisor to executive leadership, business unit and function heads, and the governance committees on global privacy, data protection, and cybersecurity risks, as well as opportunities aligned with rapid business growth and innovation
  • Design, lead, and continuously evolve the global privacy and data protection program, ensuring it not only meets regulatory requirements but also supports scalable growth and competitive advantage in a fast-paced, high-growth environment
  • Partner closely with product, technology, payments, data, software and hardware sales, marketing, and strategy teams to embed privacy-by-design and data governance principles into all data-driven and payment-related initiatives
  • Advise on privacy, data protection, cross-border data processing, and emerging technologies (AI and machine learning), in connection with parking, public transport and other urban mobility technologies and data services (B2B, B2C), to help the company navigate these complex regulatory environments while accelerating innovation
  • Balance risk management with enabling agility—help business units achieve their ambitious growth objectives without compromising compliance or customer trust
  • Lead and manage a global, unified privacy and data protection team, including the EU Data Protection Officer and EU Privacy Program Manager, and serve as the global privacy and data protection leader responsible for harmonizing privacy and data protection practices across all regions
  • Act as the company’s U.S. and Canada Privacy Officer, overseeing all U.S.-specific and Canada-specific aspects of the global privacy and data protection program
  • Own enterprise-wide development, implementation, and continuous improvement of privacy and data protection policies, standards, and frameworks aligned with relevant global privacy and data protection-related regulations
  • Develop and maintain a privacy and data protection risk management framework and a dashboard of key privacy metrics to inform leadership decision making and monitor program effectiveness in a high-growth environment
  • Lead privacy and data protection audits and program assessments to ensure compliance and identify areas for improvement aligned with rapid company growth
Read More
Arrow Right

Information Technology Manager

The purpose of the IT manager is to ensure that technology works seamlessly acro...
Location
Location
Morocco , Casablanca
Salary
Salary:
Not provided
https://www.ikea.com Logo
IKEA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor/Master degree in IT formation/Computer Science
  • Experienced in IT/digital field for more than 10 years
  • Experience in managing ERP systems (Preferably Microsoft Dynamics)
  • Demonstrated ability to effectively organize, prioritize and manage a high-volume of assignments
  • Proven ability to influence stakeholders and promote the business benefits of Data Privacy and effective security controls
  • Excellent communication skills
  • English, French and Arabic business-level proficiency
  • Mandatory 5 year or more leadership experience
  • Capable to understand how security and data privacy controls can mitigate business and information risks
  • Ability to demonstrate a risk-based approach to decisions
Job Responsibility
Job Responsibility
  • IT budgets are streamlined with stakeholders and aligned with business strategies
  • Manage local suppliers in the full lifecycle of activity from a Data Privacy and Information Security perspective
  • IT team competence development and resource planning
  • Coordinate with SO IT team to streamline technology architecture and IT strategies and solutions
  • Ensure that digital product rollouts are supported from a technology perspective and runs according to plan
  • Responsible for all Vendor SLA and negotiations
  • Responsible to develop and manage the performance of internal SLAs for all IT services provided to the market organization
  • Overall accountability for the ERP (MS NAV), Data Bases, IT Infrastructure, IT security and communications
  • Accountable for the overall successful coordination of global deployments, local projects, products and capacity within the market
  • Fulltime
Read More
Arrow Right

Compliance Analyst

insightsoftware is seeking a detail-oriented and proactive Compliance Analyst to...
Location
Location
United States , Remote
Salary
Salary:
Not provided
insightsoftware.com Logo
insightsoftware
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information security, Cybersecurity, Computer Science, Risk Management, Legal Studies, Business Administration, or related field
  • Minimum 3+ years of experience in compliance program management, risk management, or information security roles, preferably in regulated industries or technology companies
  • Demonstrated experience responding to third-party risk assessments, security audits, customer security questionnaires, RFPs, and compliance due diligence requests
  • Working knowledge of regulatory frameworks and standards (e.g., ISO 27001, SOC 2 (Type II), NIST, FedRAMP, CMMC, PCI DSS, GDPR, CCPA), trade control regulations (EAR, ITAR), anti-bribery/corruption laws (FCPA, UK Bribery Act), and data privacy principles
  • A strong knowledge of at least one regulatory framework governing matters pertaining to data privacy, cybersecurity, trade compliance, or third-party risk management
  • Experience with third-party screening tools and vendor risk management platforms
  • Familiarity with GRC or data protection management platforms (e.g., OneTrust, ServiceNowMetricStream)
Job Responsibility
Job Responsibility
  • Support the development, implementation, and maintenance of a global compliance program, including trade compliance, anti-bribery/corruption, anti-trust, and business ethics
  • Conduct secondary screening of third parties (vendors, partners, customers) , and assess potential matches against government watchlists of denied, debarred, sanctioned, or restricted parties to ensure compliance with applicable trade compliance, export control and sanctions regulations (e.g., U.S. Department of the Treasury Office of Foreign Assets Control ("OFAC"), U.S. Department of Commerce Bureau of Industry and Security ("BIS"), U.K. Office of Financial Sanctions Implementation ("OFSI"), European Union, and United Nations)
  • Assist with export classification determinations and licensing requirements for software products and services, including evaluation of Export Control Classification Numbers ("ECCNs")
  • Support the company's compliance with applicable data protection regulatory frameworks (e.g., GDPR, CCPA)
  • Support the Corporate Counsel, Data Privacy, AI, Cybersecurity with data protection initiatives and obligations including data mapping exercises, processing activity records, and privacy impact assessments, and coordinate responses to data subject access requests ("DSARs") and privacy-related inquiries
  • Support privacy management tools and platforms for consent management and privacy workflow automation
  • Partner with company counsel, InfoSec, and other stakeholders with compliance audits, data privacy questionnaires, and third-party risk assessment processes including vendor due diligence and ongoing monitoring
  • Support risk and control self-assessments ("RCSA"), audit management, and remediation tracking
  • Collaborate with stakeholders including the Chief Information Security Officer ("CISO") and the team to quantify, monitor, and report on security and compliance performance
  • Maintain GRC platforms (e.g., ServiceNow, Archer, MetricStream) to track compliance activities, risks, and controls
Read More
Arrow Right
Welcome to CrawlJobs.com
Your Global Job Discovery Platform
At CrawlJobs.com, we simplify finding your next career opportunity by bringing job listings directly to you from all corners of the web. Using cutting-edge AI and web-crawling technologies, we gather and curate job offers from various sources across the globe, ensuring you have access to the most up-to-date job listings in one place.
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Poland Jobs Ireland Jobs Germany Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy