Mid Level Security Manager Jobs
Mid level security manager jobs go to professionals ready to own security programs end to end, lead incident response efforts, and guide junior staff with limited oversight. Roles run heavily on-site and hybrid across Technology & Software, Consulting & Professional Services, and Banking & Financial Services, with employers like Amazon, CVS Health, and Google hiring at this level now.
Find JobsOverview
Showing 5 of 1,741+ Mid Level Security Manager jobs
Cyber Security Engineer
Location: Larkin Bldg @ Exchange Street
Location of Job: US:NY:Buffalo
Work Type: Full-Time
Shift 1
Job Description
The Cyber Security Engineer is responsible for engineering, optimizing, and evolving the organization’s security platform stack across endpoint, email, identity, cloud, and network security controls. This role focuses on building and tuning security tooling, implementing best‑practice configurations, advancing zero trust enforcement, and integrating security capabilities across a multi‑site healthcare enterprise. The engineer works closely with application owners, project managers, infrastructure teams, and vendors to deliver secure, reliable, and compliant solutions.
In addition to platform engineering responsibilities, this role includes day‑to‑day operational and analyst duties such as handling security‑related tickets, investigating alerts and incidents, and participating in on‑call support. As security platforms, automation, and processes mature, the position is expected to shift toward a greater emphasis on engineering, optimization, and strategic initiatives. The engineer supports alignment with HIPAA and NIST CSF 2.0 and contributes to the ongoing maturity of programs such as DLP, endpoint hardening, secure remote access, and firewall and zero‑trust application onboarding.
Education And Credentials
BA/BS in Computer Sciences, Information, Cybersecurity, or a related field, or equivalent practical experience (typically 5-7 plus years of hands-on experience in IT, cybersecurity, or related technical roles.) required. Master's degree in computer science, information technology, cybersecurity, or a related field preferred.
Experience
3 plus years of experience in cybersecurity roles that include a combination of security engineering, security operations, and analyst responsibilities, including experience in several of the following areas required. 3 years of experience in managed firewall and network‑security workflows—including rule creation, application onboarding, access provisioning, and posture enforcement—across Firewall, VPN, proxy, IAM, and NIPS/WIPS platforms while partnering with PMs, application owners, and infrastructure teams to support secure builds and updates required. 3 years of experience in implemented and enforced zero‑trust controls, including NAC, endpoint firewall policies, network segmentation, and secure remote access, with continuous refinement as organizational needs evolved required. . 3 years of experience in engineered and optimized SIEM, EDR, DLP, MDM, and endpoint‑hardening platforms, applying best‑practice configurations to maintain a strong enterprise security posture required. 3 years of experience in developed and tuned detection logic, correlation rules, and alerting to improve signal fidelity and reduce noise across large, modern network environments required. 3 years of experience in built automation using scripting languages and developed SOAR playbooks to streamline response workflows and reduce manual effort required. 3 years of experience in secured Windows and Linux platforms through hardening, monitoring, and alignment with HIPAA, NIST CSF 2.0, and internal compliance requirements required. 3 years of experience in advanced cloud‑security initiatives and evaluated emerging technologies to ensure secure adoption and integration into existing controls required. 3 years of experience in participated in on‑call rotations for security incidents and fulfilled security‑centric service requests including access reviews, secure remote access setup, and network share provisioning required. 3 years of experience in maintained documentation of security controls, configurations, and procedures; identified opportunities to enhance the organization’s overall security posture.
Working Conditions
- Weight Requirement - Light (up to 20 lbs)
Job Details
Department: KH Cyber Security
Standard Hours Bi-Weekly: 75.00
Weekend/Holiday Requirement: Yes
On Call Required: Yes
With Rotation:
Scheduled Work Hours: 8a-5p
Work Arrangement: Hybrid
Union Code: N00 - Non Union KH
Requisition ID#: 21307
Grade: EX216
Pay Frequency: Bi-Weekly
Salary Range: $94,490.57 - $129,926.94
Wage will be determined based on factors such as candidate's experience, qualifications, internal equity, and any applicable collective bargaining agreement.
Kaleida Health’s mission is to advance the health of our community, and we believe our diversity, equity, and inclusion (DEI) strategic work is mission- critical for the good of our workforce and the community who need and depend on our care and services. We understand that racism and health inequities stand firmly in the way of advancing the health of our community, and Kaleida Health envisions DEI as the pursuit of equity and restorative justice for every person. We will exemplify courage and accountability through both the professing and practice of our core values for our friends, colleagues, and community. Kaleida Health is committed to creating a culture of equity and inclusion where diversity is valued and celebrated!
See All 1,741+ Mid Level Security Manager Jobs
Find roles that match your experience and apply in just a few clicks.
Find JobsMid Level Security Manager Job Market
Who's Hiring
- Amazon64
- CVS Health47
- Google45
- Booz Allen Hamilton30
- Amazon Web Services23
Top Industries Hiring
- Technology & Software449
- Consulting & Professional Services188
- Banking & Financial Services110
- Healthcare & Medical Services108
- Retail85
Mid Level Security Manager Jobs: Frequently Asked Questions
How do I get a mid level security manager job?
Position your experience around ownership, not task completion. Highlight programs you led, risks you identified independently, and decisions you made without constant supervision. Tailor your resume to show scope: team coordination, vendor management, or compliance ownership. Certifications like CISSP, CISM, or CPP signal readiness for mid level responsibility and help your application clear early screening.
Which companies hire mid level security managers?
Companies hiring mid level security managers right now include Amazon, CVS Health, and Google, based on current listings on Migrate Mate as of July 2026. Healthcare systems, financial institutions, government contractors, and large retailers are among the most active employer types seeking security managers with demonstrated program ownership at this experience level.
Are there remote mid level security manager jobs?
Yes, though most security manager roles require at least some on-site presence given the operational nature of the work. About 33% of mid level security manager openings are remote or hybrid as of July 2026, with fully remote positions most common in roles focused on policy, compliance, or vendor risk rather than physical security operations.
How do I move up to a mid level security manager role?
Moving from entry level into a mid level security manager role takes deliberate skill-building over time. Focus on taking ownership of discrete projects, whether that means running a site audit, coordinating an incident response, or managing a small team. Document measurable impact, pursue a recognized certification, and volunteer for cross-functional work that shows you can operate beyond your immediate scope.
Which industries hire the most mid level security managers?
Mid Level security manager roles concentrate in Technology & Software, Consulting & Professional Services, and Banking & Financial Services, based on current listings on Migrate Mate as of July 2026. These sectors drive hiring at this level because they operate large physical footprints, handle sensitive assets, or face regulatory requirements that demand experienced security oversight rather than purely entry level staffing.