Information Security Certification Program Manager, Sr Staff

Illumina is seeking a Sr. Staff Information Security Certifications Program Manager to lead and maintain a robust security certifications program, focusing initially on cloud-based analytics products. This role involves ensuring compliance with certifications like ISO, SOC2, HIPAA, and C5, developing future strategies, managing recertification processes, and overseeing governance. The manager will liaise with various teams, communicate program status to leadership, and act as a subject matter expert during audits, contributing to Illumina's mission of expanding access to genomic technology.

Must Have

• Drive Information Security Certification Program to maintain ISO, SOC2, HIPAA, and C5 certifications
• Maintain security controls compliance within AuditBoard tool
• Develop future state strategy for Information Security Certification program
• Define, implement, and maintain annual recertification process
• Oversee security certification governance processes including audit readiness and continuous monitoring
• Liaise with security engineering, operations, and infrastructure teams to remediate control gaps
• Communicate program status to executive leaders, peers, customers, and stakeholders
• Guide the IT Organization on security certification controls, audit readiness, and training needs
• Serve as certification program SME and represent organizational controls during audits
• Review customer attestation requests or contracts for alignment with security posture
• Advise IT, Business teams, and internal GIS customers on security certifications
• Drive collaboration across teams and develop relationships with key leaders
• Strong oral and written skills to persuade, direct, and advise stakeholders
• Strong organizational skills to manage high-impact security certification programs (ISO 27001, 27701, 27017, 27018, SOC-2, C5, TxRamp)
• Extensive experience in a complete lifecycle of security certification process and ongoing maintenance
• Experience working with AuditBoard or similar industry standard GRC tools
• Multiple years of experience engaging with external certification firms and managing the process
• Audit awareness and ability to represent internal process and controls
• Strong understanding of security best practices and control requirements
• Extensive experience in building audience-based presentations, status updates, and budget proposals
• Experience and leadership in fast-paced project implementations
• Minimum of 12 years related experience with a Bachelor’s degree, or 8 years with a Master’s, or 5 years with a PhD
• Served in a role with responsibility for maintaining Information Security Certifications (SOC2, ISO, TxRamp/FedRamp/StateRamp)

Good to Have

• Experience in Medical Devices, Pharmaceutical, and/or Biotech Industries
• Understanding of latest and next generation security tools
• Understanding of common Cloud IT infrastructure and applications (virtualization, directory services, storage, DBMS)

Perks & Benefits

• Access to genomics sequencing
• Family planning
• Health insurance
• Dental insurance
• Vision insurance
• Retirement benefits
• Paid time off
• Variable cash programs (bonus or commission)
• Equity as part of the compensation package (for eligible roles)
• Inclusive environment
• Employee Resource Groups (ERG)

What if the work you did every day could impact the lives of people you know? Or all of humanity?

At Illumina, we are expanding access to genomic technology to realize health equity for billions of people around the world. Our efforts enable life-changing discoveries that are transforming human health through the early detection and diagnosis of diseases and new treatment options for patients.

Working at Illumina means being part of something bigger than yourself. Every person, in every role, has the opportunity to make a difference. Surrounded by extraordinary people, inspiring leaders, and world changing projects, you will do more and become more than you ever thought possible.

Position Summary

The Sr. Staff Information Security Certifications Program Manager, will mature and maintain a strong security certifications program. With an immediate goal to maintain multiple certifications for Illumina’s cloud-based analytics products, the Sr. Staff will bring the necessary subject matter expertise in the security certifications space and advance the program to meet future business needs. Operating within the Security GRC team, engages with Illumina’s commercial leaders and develops necessary plans and proposals for leadership review to meet customer needs within the space of security certifications. The position requires ability to operate with limited supervision, with high customer satisfaction, efficiency, and accountability towards the success of the program. This position interacts with all tiers of staff and management and must possess quality, regulatory and IT knowledge

Responsibilities

• Drives Information Security Certification Program to maintain ISO, SOC2, HIPAA and C5 certifications for cloud-based Illumina Analytics products
• Maintains security controls compliance within AuditBoard tool to ensure process and policy adherence
• Develops future state strategy to meet changing business needs around Information Security Certification program
• Defines, implements, and maintains annual recertification process for multiple security certifications
• Oversees the security certification governance processes including audit readiness, continuous monitoring, periodic review and management reporting
• Liaises with security engineering, operations and infrastructure teams to remediate control gaps.
• Communicates the status and accomplishments of overall certification program to executive leaders, peers in the IT organization, customers, and stakeholders.
• Responsible for guiding the IT Organization on security certification controls, audit readiness and training needs
• Serves as certification program SME and represents organizational controls during internal and external audits.
• Ability to review customer attestation request or contracts for alignment with Illumina’s security posture
• Aligns and contributes towards maturing Illumina’s security certification program
• Advises IT, Business teams and internal GIS customers on security certifications scope, controls management and monitoring approach.
• Drive collaboration across teams, developing relationships with key leaders inside and outside of information Security to ensure ongoing success of Information Security Certifications Program.

Requirements

• Strong oral and written skills to persuade, direct and advise stakeholders on security certification processes.
• Strong organizational skills to maintain and manage high impact security certification programs such as ISO 27001, 27701, 27017 27018, SOC-2, C5 and TxRamp
• Extensive experience in taking through a complete lifecycle of security certification process and ongoing maintenance
• Experience working with AuditBoard or similar industry standard GRC tools and managing audit evidence.
• Multiple years of experience in engaging with external certification firms and directly managing the certification process
• Audit awareness and ability to represent internal process and controls to support self-audits and external audits
• Strong understanding of security best practices and ability to interpret applicability of control requirements.
• Extensive experience in building audience-based presentations, status updates, budget proposals and compliance score cards.
• Experience and leadership in fast-paced project implementations.
• Excellent customer service and communication skills.
• Understanding of latest and next generation security tools along with common Cloud IT infrastructure and applications, e.g., virtualization, directory services, storage, DBMS.

Experience/Education

• Typically requires a minimum of 12 years of related experience with a Bachelor’s degree in Technology, Science, Business or related field; or 8 years and a Master’s degree; or a PhD with 5 years experience; or equivalent experience.
• Must have served in a role that had responsibility and accountability for maintaining Information Security Certifications, preferably SOC2, ISO, TxRamp/FedRamp/StateRamp.
• Experience in Medical Devices, Pharmaceutical and/or Biotech Industries desired.

The estimated base salary range for the Information Security Certification Program Manager, Sr Staff role based in the United States of America is: $152,600 - $228,800. Should the level or location of the role change during the hiring process, the applicable base pay range may be updated accordingly. Compensation decisions are dependent on several factors including, but not limited to, an individual’s qualifications, location where the role is to be performed, internal equity, and alignment with market data. Additionally, all employees are eligible for one of our variable cash programs (bonus or commission) and eligible roles may receive equity as part of the compensation package. We offer a wide range of benefits as innovative as our work, including access to genomics sequencing, family planning, health/dental/vision, retirement benefits, and paid time off.

We are a company deeply rooted in belonging, promoting an inclusive environment where employees feel valued and empowered to contribute to our mission. Built on a strong foundation, Illumina has always prioritized openness, collaboration, and seeking alternative perspectives to propel innovation in genomics. We are proud to confirm a zero-net gap in pay, regardless of gender, ethnicity, or race. We also have several Employee Resource Groups (ERG) that deliver career development experiences, increase cultural awareness, and offer opportunities to engage in social responsibility. We are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information. Illumina conducts background checks on applicants for whom a conditional offer of employment has been made. Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable local, state, and federal laws. Background check results may potentially result in the withdrawal of a conditional offer of employment. The background check process and any decisions made as a result shall be made in accordance with all applicable local, state, and federal laws. Illumina prohibits the use of generative artificial intelligence (AI) in the application and interview process. If you require accommodation to complete the application or interview process, please contact accommodations@illumina.com. To learn more, visit: https://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf. The position will be posted until a final candidate is selected or the requisition has a sufficient number of qualified applicants. This role is not eligible for visa sponsorship.