Cybersecurity Manager

About Mattson

Mattson Technology is a global company with nearly 30 years of experience delivering leading-edge technology and products in the Dry Strip, Plasma and Thermal markets to our customers. While we consider Silicon Valley our roots, we have evolved into a worldwide organization that includes manufacturing, research and development, customer support, finance and sales operations throughout Asia, Europe and North America.

Our success is a result, in large part to the highly qualified and dedicated employees at Mattson Technology. Our employees represent a diverse group of individuals, committed to working as a team to deliver on our commitments. We value the ingenuity, flexibility, passion, knowledge and “can do” attitude that our employees exemplify daily.

Job Summary:

We are seeking a highly skilled Cyber Security Manager to lead our organization's security efforts, with a strong emphasis on securing the Microsoft 365 platform and enterprise network infrastructure. This role requires a strategic thinker who can develop and implement security policies while also possessing the technical expertise to perform hands-on hardening across all IT platforms. The ideal candidate will be responsible for overseeing security initiatives, managing risks, and ensuring compliance with industry standards and best practices.

Key Responsibilities:

Microsoft 365 Security & Governance:

• Develop and implement best-in-class security policies, configurations, and governance for Microsoft 365, including Azure AD, Exchange Online, SharePoint, OneDrive, and Teams.
• Monitor and respond to security threats using various security tools.
• Enforce identity and access management (IAM), including MFA, conditional access policies, role-based access control (RBAC), and privileged identity management (PIM).
• Assess and enhance data loss prevention (DLP), email security, and endpoint protection within the Microsoft ecosystem.

Network Security & Infrastructure Hardening:

• Oversee and manage firewall configurations, VPNs, IDS/IPS, and network segmentation to enhance security posture.
• Ensure the security of on-premises and cloud network environments, including Azure, hybrid, and remote infrastructure.
• Perform vulnerability assessments and lead hardening efforts for servers, endpoints, and network devices.
• Implement and monitor architecture, endpoint detection and response (EDR), and security logging and monitoring solutions.

Cybersecurity Strategy & Risk Management:

• Develop and execute a cybersecurity roadmap that aligns with business objectives and regulatory requirements.
• Conduct risk assessments, security audits, and incident response planning to mitigate potential threats.
• Lead and collaborate with IT and executive leadership to drive a culture of security awareness across the organization.

Hands-On Security Operations & Incident Response:

• Investigate and respond to security incidents, breaches, and threats across all IT environments.
• Conduct penetration testing, log analysis, and threat intelligence to proactively identify and remediate vulnerabilities.
• Automate security tasks using PowerShell or other scripting languages for operational efficiency.
• Collaborate with third-party vendors and service providers to enhance security capabilities.

Qualifications & Requirements:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent experience).
• 5+ years of experience in cybersecurity, with at least 2 years in a managerial or leadership role.
• Strong expertise in Microsoft 365 security, Azure security, and cloud-based security frameworks.
• Hands-on experience with firewalls, endpoint security, IDS/IPS, SIEM solutions, and vulnerability management tools.
• In-depth knowledge of security best practices, compliance frameworks (e.g., NIST, CIS, ISO 27001), and risk management strategies.
• Experience in hardening IT systems, implementing security controls, and conducting security assessments.
• Strong analytical, problem-solving, and leadership skills with the ability to balance strategic planning and hands-on technical work.
• Professional certifications such as CISSP, CISM, Microsoft Security certifications (SC-200, SC-300, SC-400), or CEH are preferred.