← Back to all jobs
S

Manager, Cyber Risk Advisor - Managed Risk

Sophos

22h ago

0$110k - $183kManagementCanadahimalayas
Cyber-Risk-AdvisoryExposure-ManagementVulnerability-ManagementManaged-Security-ServicesCybersecurity-LeadershipIT-Security-Risk-ManagerInformation-Security-Risk-ManagerCyber-Risk-ConsultantCybersecurity-ManagerIT-Risk-ManagerRisk-Management-ManagerManager

Job Description

About UsSophos is a cybersecurity leader defending 600,000 organizations globally with an AI-driven platform and expert-led services. Sophos meets organizations wherever they are in their security maturity and grows with them to defeat cyberattacks. Its solutions combine machine learning, automation, and real-time threat intelligence with frontline human expertise from Sophos X-Ops to deliver advanced, 24/7 threat monitoring, detection, and response.Sophos offers industry-leading managed detection and response (MDR) alongside a comprehensive portfolio of cybersecurity technologies — including endpoint, network, email, and cloud security, extended detection and response (XDR), identity threat detection and response (ITDR), and next-gen SIEM. Together with expert advisory services, these capabilities help organizations proactively reduce risk and respond faster, with the visibility and scalability needed to stay ahead of evolving threats.Sophos goes to market with a global partner ecosystem, including Managed Service Providers (MSPs), Managed Security Service Providers (MSSPs), resellers and distributors, marketplace integrations, and cyber risk partners, giving organizations the flexibility to choose trusted relationships when securing their business. Sophos is headquartered in Oxford, U.K. More information is available at www.sophos.com.Role SummaryThe Manager, Cyber Risk Advisor is a senior-level individual who combines deep technical expertise in exposure management with hands-on people leadership. Reporting to the Director of Operations, this role is responsible for delivering an exceptional managed service experience to a portfolio of customers while also mentoring and day-to-day managing a team of Cyber Risk Advisors.On the technical side, you will lead complex advisory engagements, interpret vulnerability and attack surface data, and provide prioritized, context-driven remediation guidance that drives measurable risk reduction. On the people side, you will coach team members, oversee workload distribution, conduct regular 1:1s, contribute to hiring, evaluate performance and act as an escalation point for both customers and colleagues. Strong communication skills are essential — you will be equally comfortable presenting to a CISO and diving into raw scan data with an IT team.What You Will DoLead, mentor, and manage a team of Cyber Risk Advisors, fostering a high-performance culture grounded in continuous learning and accountabilityConduct regular 1:1s, provide ongoing coaching and constructive feedback, and contribute to formal performance reviewsOversee day-to-day workload distribution across the team, ensuring coverage, quality, and adherence to existing service delivery processesAct as the primary escalation point for complex technical issues and customer concerns raised by team membersPartner with the Director of Operations on team hiring, onboarding, and skills development planningIdentify skill gaps within the team and drive targeted development initiatives and knowledge-sharing sessionsTrack and report on service-level and individual performance KPI metrics on a regular cadence, providing clear visibility to the Director of Operations and relevant stakeholders on team output, customer outcomes, and areas for improvementServe as a senior-level, trusted Cyber Risk Advisor for a portfolio of customers, simplifying complex vulnerabilities, explaining real-world attack scenarios, and guiding customers toward the right risk mitigation decisionsLead high-stakes Cyber Risk Advisory sessions, contextualizing and prioritizing vulnerability and exposure findings, cyber risk trends, and overall security posture with the goal of facilitating measurable security outcomesprioritized, context-driven remediation recommendations, helping customers focus on vulnerabilities most likely to be exploited by relevant threat actorsMonitor customer environments for critical vulnerabilities, exposures, and emerging threats; escalate and advise on timely remediation with precision and urgencyEnsure the Exposure Management service translates into measurable, reportable reductions in customers’ overall attack surfaceServe as a technical quality bar for the team — reviewing advisor outputs, validating recommendations, and ensuring consistency and accuracy across all customer deliverablesBuild and maintain deep, trust-based relationships with customer stakeholders, serving as their primary strategic Exposure Management point of contactIdentify customer expansion opportunities, risk posture trends, and service improvement areas; communicate these proactively to the Director of OperationsHandle escalated customer issues with professionalism and urgency, driving fast resolution while preserving the customer relationshipWhat You Will Bring5+ years of experience in cybersecurity, with at least 1–2 years in a team lead, senior advisor, or people management roleDemonstrated ability to lead, coach, and develop technical teams in a ma