Senior Manager, Information Security

About CDW

At CDW, we make it happen, together. Trust, connection, and commitment are at the heart of how we work together to deliver for our customers. It’s why we’re coworkers, not just employees. Coworkers who genuinely believe in supporting our customers and one another. We collectively forge our path forward with a level of commitment that speaks to who we are and where we’re headed. We’re proud to share our story and Make Amazing Happen at CDW.

Join CDW and help protect delivery of full stack technology solutions and global services for 250K+ customers—including corporate enterprise, government, education, and healthcare industries. You will be on a team dedicated to collaborative delivery of a new global information security strategy, operating model, and objectives to accelerate CDW’s business goals in a secure way.

Your role at CDW is of the utmost importance to the company’s mission, objectives, and reputation. As the Senior Manager, Information Security, you will lead a highly technical security engineering team responsible for safeguarding the enterprise through world‑class prevention, detection, and exposure management capabilities. You will collaborate with, and within, Agile teams to make the enterprise more secure by controlling who can access what, when, and where.

Your role drives platform strategy, secure-by-design control engineering, attack surface reduction, and exposure management across the enterprise. The ideal candidate is a seasoned security engineering leader with deep platform expertise, strong architectural judgment, and a bias for automation, scalability, and measurable risk reduction.

You will lead and advise across our security stack rolling up your sleeves and pitching in, should the need arise. The team you are joining works with every team in the company to advance security.

What You Will Be Doing

• Lead the Security Controls & Exposure team, including security engineers and platform owners, ensuring high performance, accountability, and technical excellence.
• Define and execute a multiyear strategy for enterprise security controls, spanning endpoint and device posture, data protection, vulnerability and exposure management, application security, and cloud security.
• Partner with leaders across global information security team and Infrastructure teams to ensure a cohesive security posture.
• Focus on continuous improvement of operational processes and designing innovative and automated functionality for added efficiency.
• Evaluate potential software solutions to meet business needs including requirements gathering, building functional specifications, timelines, adoption plans, and other artifacts to support implementation.
• Drive employee development through coaching and proactive skill-building initiatives.
• Identify and address training needs within the team, fostering a culture of learning and development.
• Continuously evaluate current-state processes and implementations, identifying opportunities for further optimization, and acting upon those opportunities, where appropriate.
• Partner with and support the Global Information Security team to drive and execute goals in a timely manner.
• Provide guidance and support to team members and colleagues as needs arise.
• Work on and prioritize multiple, concurrent projects while meeting deadlines in a fast-paced environment.

What We Expect Of You

• 10+ years in cybersecurity engineering, with at least 3+ years managing high‑performing technical teams.
• Deep hands-on experience with CrowdStrike, Microsoft Defender, Purview, Rapid7, Tenable, Prisma/Cortex, and related platforms.
• Strong background in endpoint security, DLP, EDR/XDR, application security, vulnerability management, and cloud security controls.
• Proven track record engineering scalable, automated, secure enterprise solutions.
• Strong understanding of MITRE ATT&CK, Zero Trust, exposure management, and detection engineering.
• Excellent communication skills with the ability to translate technical concepts into business value.
• Skilled at building rapport and establishing partnerships.
• Strong problem solving and collaboration skills with demonstrated ability to explain complex technical concepts to a variety of audiences for the understanding of all involved.
• Dedication to continuous improvement, security process engineering, and operational excellence.
• Stay up-to-date with the latest trends and developments in AI, EDR, platform security, vulnerability management, application security, and across our security platform ecosystem ensuring our security platforms remain agile and secure.

Success in This Role Looks Like

• High platform coverage and operational hygiene across all owned technologies.
• Reduced enterprise attack surface and measurable risk reduction.
• Strong engineering discipline, predictable delivery, and high team engagement.
• Automation-first mindset leading to fewer manual processes and faster detection/response.
• Clear, data-driven visibility into control effectiveness and exposure reduction.

Key skills/competency

• Cybersecurity Engineering
• Team Leadership
• Security Strategy
• Vulnerability Management
• Cloud Security
• Endpoint Security
• Data Protection
• Exposure Management
• Automation
• Risk Reduction