Skills

Leadership Incident Response Risk Management Decision-making Organization

Job Specifications

Manager, Security & Compliance

Torrance, CA (Hybrid – 1–2 days onsite)

We are seeking a hands-on Manager of Security & Compliance to lead and execute our organization’s security and regulatory programs. This role is ideal for someone who enjoys staying close to the technology while also providing leadership and strategic direction. You’ll own security operations, compliance initiatives, and audit readiness while managing a small but critical team.

This position reports into Technology Operations and partners closely with HR, IT, and external auditors.

What You’ll Do

Leadership & Ownership

Manage and mentor Compliance Engineers
Serve as the primary owner of security and compliance operations
Act as the main point of contact for auditors and external security partners
Hold decision-making authority during security incidents and breach containment

Security Operations (≈50%)

Own vulnerability management and incident response programs
Lead incident response and disaster recovery planning, testing, and execution
Implement, manage, and optimize security tooling (SIEM, MDR, and third-party services such as Rapid7 and eSentire)
Maintain and improve existing security controls across systems
Drive remediation efforts and vendor risk management across ~7 external vendors

Compliance & Risk (≈50%)

Provide in-depth HIPAA oversight for PHI-protected data
Ensure compliance with HIPAA, GDPR, NDA, and related regulatory requirements
Own and lead SOC 2 audits, conducted annually (March), including preparation and auditor coordination
Maintain ongoing compliance posture and documentation
Lead upcoming security and compliance initiatives and continuous improvement efforts

Must-Have Qualifications

Proven experience as a hands-on Security or Compliance Manager/Lead (approx. 60% hands-on, 40% management)
Strong, practical expertise in HIPAA compliance and PHI data protection
Ownership experience with Incident Response and Disaster Recovery
Direct experience leading SOC 2 audits and working with external auditors
Experience managing SIEM and security tools (e.g., Rapid7, eSentire, or similar)
Vendor management and remediation experience

About the Company

Robert Half, the world’s first and largest specialized talent solutions firm, connects opportunities at great companies with highly skilled job seekers. We offer contract, temporary and permanent placement solutions for roles in finance and accounting, technology, marketing and creative, legal, and administrative and customer support. Named to Fortune’s World’s Most Admired Companies and 100 Best Companies to Work For® lists and a Forbes Best Employer for Diversity, Robert Half is the parent company of Protiviti®. Robert Ha... Know more