Alliance/Partner Marketing, Best Practices, Budget Management, Budgeting, Business Analysis, Business Solutions, Capacity Management, Career Development, Coaching, Compensation and Benefits, Computer Science, Computer Security, Corrective Action, Enterprise Protection, Establish Priorities, Financial Management, Financial Services, Forecasting, ISO (International Organization for Standardization), Information/Data Security (InfoSec), Internet Security, Leadership, Operations, PCI, Performance Management, Product Engineering, Protective Services, Regulatory Compliance, Regulatory Requirements, Reporting Skills, Requirements Management, Resource Management, Retail, Risk, Risk Analysis, Risk Management, Sarbanes-Oxley Act (SOX), Security Analysis, Security Attacks, Security Compliance, Service Delivery, Small Business, Succession Planning, Tax Returns, Team Lead/Manager, Technical Analysis, Time Management, U.S. National Institute of Standards and Technology (NIST)
Our Company
We care about helping people. Our purpose is to provide help and inspire confidence in our clients and communities everywhere. Our associates feel a sense of belonging in an inclusive place with an amazing history and a sharp focus on our future. Our connected culture is who we are and how we work together to achieve our strategies, accelerate our transformation, and achieve extraordinary results. It's an exciting time to be a part of H&R Block!
What you'll do...
The Manager, Security leads and manages cyber risk team within the Information Security organization to protect enterprise systems, data, and third‑party relationships. This role is responsible for driving a strong security culture, assessing organizational risk, and ensuring security strategies are effectively integrated across technology and business teams. The Manager provides expert guidance to senior leaders on the organization's security posture, risks, and mitigation strategies, while overseeing the execution of security initiatives and daily operations.
What you'll do...
- Lead day‑to‑day cyber security risk program, including team structure, capacity planning, and resource allocation to ensure effective delivery of security services.
- Hire, coach, and develop security team members; manage performance, provide feedback, address corrective actions, and support career development and succession planning.
- Establish priorities and assign work to ensure security initiatives and operational objectives are delivered on time and aligned with business needs.
- Monitor the organization's security posture, including threats, vulnerabilities, and control effectiveness; assess risk and recommend appropriate mitigation strategies.
- Provide regular reporting and executive‑level updates on security risks, incidents, and initiative status to senior leadership.
- Drive awareness, adoption, and compliance with security policies, standards, and procedures across technology and business teams.
- Partner with IT, product, and business leaders to assess security requirements, document risks, and prioritize remediation and improvement initiatives.
- Oversee complex or high‑risk security projects, ensuring appropriate scope, resourcing, governance, and delivery timelines.
- Stay informed of emerging security threats, regulatory requirements, and industry best practices, and use this knowledge to inform security strategy and improvements.
- Support budget planning and forecasting for assigned security functions, as applicable.
What you'll bring to the team...
- Bachelor's degree in computer science, Information Security, or a related field, or an equivalent combination of education and experience
- Minimum of eight years of progressive experience in information security, including people leadership responsibilities
- Experience with managing Cyber Risk program
- Demonstrated expertise in information security disciplines, supported by industry‑recognized certifications such as CISSP, CISM, CRISC, GSEC, GSNA, or equivalent
- Strong working knowledge of IT controls, regulatory requirements, and compliance frameworks (e.g., SOX, PCI, NIST, ISO 27001)
- Proven experience leading and developing teams within an enterprise security environment
- Ability to assess technical and business risk, translate findings into actionable recommendations, and influence senior stakeholders
- Experience managing complex, high‑impact security initiatives or programs
It would be even better if you also had...
- Experience supporting large‑scale, consumer‑facing or highly regulated environments
- Demonstrated success partnering with product, engineering, or third‑party risk management teams
- Prior experience with budget ownership or financial management
Why work for us
Since 1955, we have been leaders in tax preparation, financial services, and small business solutions. With 70,000 associates and 9,000 retail tax locations across North America, Australia, Ireland, and India, we have helped millions of clients and countless communities. If you embrace challenges as opportunities, value winning as a team, and seek to make a meaningful difference, join us on our journey. You'll reap the rewards of helping others along with competitive compensation and benefits to support your health and well-being.
Specific benefits may vary based on your role. For detailed eligibility requirements and benefits information, visit blockbenefits.com.
Equal Opportunity Employer: H&R Block does not tolerate discrimination based on a person's race, color, religion, ancestry, age, sex/gender (including pregnancy, childbirth, related medical conditions and sex-based stereotypes and transgender status), sexual orientation, gender identity or expression, service in the Armed Forces, national origin, physical or mental disability, genetic information, citizenship status or any other status protected by law.