Manager of Data Security, Cybersecurity InfoSec

Our cyber security and information security teams at IDEXX contribute to a more resilient, adaptable, and security-aware enterprise prepared to navigate today's evolving threat landscape. We have complex, multi-dimensional programs across the organization that support all the technology needed to deliver products and solutions to customers - enabling them to focus on delivering high quality patient care. The Manager of Data Security leads enterprise data protection across IDEXX's global platforms, overseeing Data Security Posture Management (DSPM) and Data Defense & Operations. This role combines strategic leadership with technical depth—developing cloud-first security strategies, implementing advanced controls, and ensuring compliance with global regulations. You'll own DSPM operations and partner across engineering, IT, and business teams to embed secure data practices into IDEXX's systems and workflows. In this role, you will be responsible for… Enterprise Data Security Posture Management (DSPM) Own and optimize IDEXX's DSPM platform, including configuration, integrations, operations, and continuous improvement, ensuring comprehensive data discovery and monitoring across cloud, on-prem, SaaS, and critical business systems. Establish visibility into sensitive and regulated data—where it resides, how it flows, and how it's protected—while driving systematic risk identification, alert triage, and remediation to reduce exposure, duplication, and over-privileged access. Partner with IT, Data Engineering, and Infrastructure teams to maintain DSPM integrations and deliver actionable insights aligned with IDEXX's data use cases and global compliance requirements. Enterprise Data Defense & Operations Lead the strategy, design, and execution of global data protection across cloud, on-premises, and hybrid environments, establishing standards, classification models, and secure design patterns. Implement advanced technologies—DLP, CSPM, DAG, tokenization, encryption key management, and AI-driven detection—while ensuring compliance with GDPR, HIPAA, SOX, and global privacy laws. Oversee secure data-sharing models, lineage mapping, and technical controls for sovereignty requirements; provide guidance on secure data flows, minimization, and sensitive data handling. Drive reduction of over-privileged access across Snowflake, databases, applications, and SaaS environments through enforceable controls and continuous improvement. Strategic Leadership & Cross-Functional Partnership Build and mentor high-performing Data Security and DSPM teams while defining a clear roadmap, operating model, and maturity plan for IDEXX's data security functions. Drive deep partnerships across engineering, product, and business teams—including Data Engineering, Vet Software/PIMS, HRIS, Finance, Manufacturing, Commercial, and Cloud—aligning security outcomes with governance, compliance, and regulatory requirements. Serve as senior advisor and enterprise advocate for secure design, data protection, and risk management; represent Data Security in advisory councils and cross-functional initiatives. Lead proactive strategy and response efforts, integrating DSPM insights into governance workflows and anticipating emerging technologies, threats, and regulatory trends. Strategy, Roadmap & Continuous Improvement Define and communicate IDEXX's multi-year data security strategy and architecture direction, incorporating emerging capabilities like DSPM, AI-driven detection, automated remediation, and sensitive data mapping. Scale global data risk reduction through automation, clear processes, metrics, and stakeholder engagement, while fostering a collaborative, customer-first culture. Drive education and enablement to promote secure data practices across teams and establish a predictable operating rhythm supported by automation and continuous improvement. What You Will Need to

Succeed:

Expertise in enterprise-class data protection, DSPM operations 7-10 years of experience in cybersecurity, cloud security, data security, data protection, or data engineering 3-5+ years of leadership or people-management experience building and managing technical security teams and incident response Experience orchestrating risk reduction programs, automated remediation, or integrating security signals into operational workflows Track record of establishing security programs, standards, and operating models in complex, global environments Bachelor's degree in Computer Science, Cybersecurity, Engineering, or related technical field; or equivalent professional experience

Location:

We are fine with 100% remote/virtual for this role , with a preference for EST and CST time zones. Preferred is local/driving distance to Westbrook, Maine or being open to relocation. Technical Expertise Deep expertise in data protection technologies , lifecycle management, and modern cloud-native security architectures Working knowledge of cloud platforms (AWS preferred) and modern data architectures including Snowflake, pipeline orchestration, structured/semi-structured storage, and SaaS data ecosystems Experience with enterprise DSPM platforms or data discovery/classification tooling (Cyera, BigID, Dig, Laminar, OneTrust, etc.) Knowledge of encryption standards, CASB/DLP/CSPM/DAG platforms, AI-driven detection, and microservices/API security Familiarity with regulatory frameworks relevant to IDEXX (HIPAA, GDPR, SOX, global privacy laws, contractual data obligations) Understanding of data governance, cataloging, and classification programs Leadership & Professional Skills Exceptional communicator with ability to influence executives, technical teams, and cross-functional stakeholders. Proven success leading global technical teams, scaling security functions, and partnering across business and technical domains. Strong analytical and problem-solving skills; adept at operating in complex global environments. Skilled at translating technical risk into business context with integrity, professionalism, and sound judgment. Ability to build trust and foster collaboration with engineering, application owners, cloud teams, and business partners. It would be a plus if you had any of this: Advanced certifications such as CISSP, CISSP-ISSAP, CISM, CCSP, or equivalent Experience working in life sciences, medical diagnostics, healthcare, or other regulated data environments Background in data governance, cataloging, classification programs, or enterprise data management Proficiency with programming or scripting languages (Python, Java, Go, etc.) Strong SQL/data analytics capabilities Experience leveraging AI/ML in cybersecurity operations or anomaly detection Experience integrating DSPM signals into downstream tools and decision-making workflows What you can expect from us:

• Base annual salary target: $160000 - $180000 (yes, we do have flexibility if needed)
• Opportunity for annual cash bonus and yearly equity award
• Health / Dental / Vision Benefits Day-One
• 5% matching 401k
• Additional benefits including but not limited to financial support, pet insurance, mental health resources, volunteer paid days off, employee stock program, foundation donation matching, and much more!

Why IDEXX? We're proud of the work we do, because our work matters. An innovation leader in every industry we serve, we follow our Purpose and Guiding Principles to help pet owners worldwide keep their companion animals healthy and happy, to ensure safe drinking water for billions, and to help farmers protect livestock and poultry from diseases. We have customers in over 175 countries and a global workforce of over 10,000 talented people. So, what does that mean for you? We enrich the livelihoods of our employees with a positive and respectful work culture that embraces challenges and encourages learning and discovery. At IDEXX, you will be supported by competitive compensation, incentives, and benefits while enjoying purposeful work that drives improvement. Let's pursue what matters together. IDEXX values a diverse workforce and workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply. IDEXX is an equal opportunity employer. Applicants will not be discriminated against because of race, color, creed, sex, sexual orientation, gender identity or expression, age, religion, national origin, citizenship status, disability, ancestry, marital status, veteran status, medical condition, or any protected category prohibited by local, state, or federal laws. #LI-REMOTE