Information Security Manager
$115k - $125kAcumen Technology
Acumen Technology is a security-first Managed Service Provider (MSP) founded in 2016, serving financial institutions, healthcare organizations, and other businesses that take IT and cybersecurity seriously. With more than 25 years of leadership experience in financial services technology, Acumen’s deepest roots are in community banks, credit unions, and regulated financial institutions, while also supporting clients in professional services, healthcare, and construction. Acumen is SOC 2 Type II certified, FFIEC-aligned, and has been recognized on the Inc. 5000, CRN MSP 500/50 , and Nashville Business Journal’s Best Places to Work lists . Our vCISO practice provides hands‑on security leadership to organizations that need more than guidance—they need execution. Being part of the Acumen team means more than just great work. It includes weekly in‑office lunches, memorable company events, a comprehensive benefits package, and, most importantly, training in the fine art of holding entire conversations using nothing but GIFs. ROLE This is a hands‑on practitioner role. You will meet with clients, assess their security posture, and then do the work - drafting the policy, completing the risk assessment, building the remediation plan, and delivering it back to the client in a finished, usable form. The right candidate thrives on the full cycle: client meeting → assessment → heads‑down execution → polished deliverable back in the client’s hands. You will manage a portfolio of clients that is predominantly financial institutions - community banks, credit unions, and financial services firms make up approximately 80% of the practice. The remainder includes clients in professional services, healthcare, and construction. On any given week, you might: Spend a morning walking a community bank through their pre‑exam request list, then spend the afternoon drafting their written response findings. Design and facilitate a tabletop exercise for a bank's leadership team simulating a ransomware event, then write up the after‑action report and deliver it within the week. Review vendor SOC 2 reports that came in for a client, assess the findings, and produce a risk summary the bank’s risk committee can act on. Rewrite a client's outdated Acceptable Use Policy and Information Security Policy to align with current FFIEC guidance and have both ready for board approval. Lead a SOC 2 readiness check‑in with a professional services client, update their evidence tracker, and coordinate with their external auditor on outstanding items. KEY RESPONSIBILITIES Bank Exam & Audit Support Serve as the primary point of contact for clients preparing for FDIC, OCC, NCUA, and state banking regulator IT examinations, owning the preparation process from start to finish. Organize and package audit requested items, complete pre‑exam readiness checklists, and produce written summaries of control effectiveness that clients can hand directly to examiners. Review third‑party audit findings and examination results, then draft formal written responses, corrective action plans, and remediation timelines on the client’s behalf. Track open findings and recommendations to closure, producing status updates and evidence packages at each milestone. Maintain current knowledge of FFIEC IT Examination Handbook updates and translate regulatory changes into specific, actionable steps for each client. Document client check‑ins using Microsoft Planner or a similar task‑management tool, ensuring all action items, deliverables, and blockers are clearly captured, assigned, and tracked through resolution. SOC 2 Readiness Lead clients through SOC 2 Type I and Type II readiness assessments including scoping, gap analysis, control testing, and evidence collection. Produce formal gap analysis reports with prioritized remediation roadmaps in finished, client‑ready form. Build and maintain client control evidence libraries and audit packages, keeping documentation current between audit cycles. Coordinate with external auditors on the client's behalf and serve as the primary point of contact throughout the audit process. Tabletop Exercises Design, facilitate, and debrief tabletop exercises for community bank clients covering security incident response, business continuity, and disaster recovery scenarios. Develop realistic, client‑specific exercise scenarios based on current threat intelligence and regulatory expectations for financial institutions. Produce written after‑action reports documenting exercise findings, gaps identified, and recommended improvements, delivered to the client within an agreed turnaround. Update client incident response, business continuity, and disaster recovery plans based on exercise outcomes. Third‑Party & Vendor Risk Review third‑party vendor audit reports (SOC 2, penetration tests, security assessments) on behalf of clients and produce written summaries of findings and risk exposure. Draft formal vendor risk assessment responses and management memos that clients can file, present to examiners, or include in board reporting. Maintain client vendor inventories and assessment schedules, tracking due dates and ensuring assessments are completed on time. Security Policy Development Draft, update, and maintain client information security policies, standards, and procedures written in plain language, tailored to each client’s environment, and ready to adopt without further editing. Conduct periodic policy reviews against current FFIEC guidance, NIST CSF, and SOC 2 requirements and produce updated versions that reflect any gaps or regulatory changes. Manage client policy libraries to ensure all documents are versioned, reviewed on schedule, and accessible for audit purposes. Ongoing Client Engagement Meet regularly with client stakeholders to review program status, prioritize the work queue, and present completed deliverables. Manage a multi‑client portfolio with disciplined task tracking, clear timelines, and consistent follow‑through on every commitment made in a client meeting. Serve as an advisory resource during client security incidents, providing written guidance on containment, notification obligations, and regulatory reporting requirements. 3+ years of information security experience with a strong emphasis on hands‑on program execution — risk assessments, policy writing, audit preparation, and control documentation. Deep, working knowledge of the FFIEC IT Examination Handbook requirements, including the new tools available to replace the retired Cybersecurity Assessment Tool (CAT). Direct experience completing SOC 2 readiness assessments and producing formal gap analysis and remediation documentation. Demonstrated ability to author professional‑grade security deliverables - policies, risk assessments, remediation plans, board summaries - independently and to a high standard. Strong written communication skills; comfortable producing polished, client‑facing documents without editorial support. Proven ability to manage multiple client engagements simultaneously with discipline, reliability, and follow‑through. Active CISSP, CISM, CRISC, or equivalent certification. Direct experience preparing financial institutions for FDIC, OCC, or NCUA IT examinations and responding to regulatory findings. Familiarity with GRC platforms commonly used in financial services (e.g., Ncontracts, LogicManager, or similar). Working knowledge of HIPAA security rule requirements for healthcare clients and general compliance frameworks applicable to professional services environments. Experience with Microsoft 365 security controls as deployed in community bank and small‑to‑mid‑market business environments. Background in an MSP, consulting firm, or multi‑client security advisory practice. WHAT SUCCESS LOOKS LIKE In your first 90 days: Own and deliver at least two client engagements end‑to‑end — from intake meeting to finished deliverable — with high client satisfaction. Demonstrate consistent follow‑through: every commitment made in a client meeting has a deliverable behind it. Establish your working rhythm and task management system for managing a multi‑client portfolio. Within 12 months: Carry a full client portfolio with strong retention and client satisfaction scores. Have guided at least one client through a table top exercise, 3rd party audit, a regulatory examination, or SOC 2 audit with documented, positive outcomes. Be the person clients call not just for advice, but because they know something finished will come back to them. Annual salary between $115,000 - $125,000 depending on fit and experience. 100% employer paid health insurance (medical and dental) and first $1,000 of qualified medical expenses covered. Company Matching 401k. Flexible hybrid schedule. Fun working environment and culture with regular activities both for employees and their families. Family vacation bonus at 5th year. WHY ACUMEN TECHNOLOGY Security‑first MSP founded in 2016, led by co‑founders with 20+ years of financial services technology experience, not a feature bolted onto an IT company. Established credibility in financial services and community banking across the Nashville region and beyond. SOC 2 Type II certified, FFIEC‑aligned, Inc. 5000 and CRN MSP 100/501 recognized. A real client portfolio ready for you — not a build‑it‑from‑scratch assignment. A Leadership Team that is accessible, decisive, and invested in the success of this role. Consistently recognized as a Best Place to Work by Nashville Business Journal. #J-18808-Ljbffr
- ...The Information Security Manager position is an exciting role for the right candidate with technical know-how and leadership qualities who is eager to drive security initiatives from start to finish. This position presents opportunities to advise on our client's global...Suggested
- ...used and replenished at everyday low prices in convenient neighborhood locations. Job Details General Summary The Senior Information Security Manager, Identity & Access Management (Sr. Manager, IAM) leads the Information Security department's IAM program, including...SuggestedShift work
- A leading security solutions firm is looking for an Information Security Manager to drive security initiatives globally. The role requires a deep technical understanding of security architecture, leadership, and the ability to negotiate across competing priorities. Candidates...Suggested
$115k - $135k
...smiles.” Visit: Overview The Privacy Manager is a member of the FUJIFILM Holdings... ...using current data mapping and inventory information, collaborating with Data Governance Manager... .... Collaborate with information security team to ensure that security and privacy...SuggestedRemote workFlexible hours- ...A leading financial technology firm is seeking a Chief Information Security Officer (CISO) to establish and lead their information security... ...programs. The CISO will develop comprehensive security frameworks, manage incident response, and ensure alignment with regulatory...SuggestedRemote work
- ...Chief Information Security Officer (CISO) About the Company Trusted provider & publisher of consumer insights about car models & auto... ...insights data and analytics customer experience management advisory services and advisory services Business...
- Accenture seeks a hands-on technical leader in Nashville, TN, to lead cyber recovery efforts. Candidates should have extensive experience in IT infrastructure and cyber recovery. The role demands advising clients, developing recovery workflows, and optimizing recovery tools...
- ...Oracle in Nashville, TN is seeking a Senior Security Program Manager to align cybersecurity priorities with business goals, manage complex cross‑functional programs, and drive initiatives across products, services, operations, and risk management. You will lead security...
$65k
Position Entry Level Information Security Analyst • Nashville, TN Overview Full‑time role focused on mainframe access management within ACF2 and RACF security environments. Key Responsibilities Administer mainframe access management processes. Provision, modify, and...Full time- ...Summary: FRDA is seeking a Cyber Intelligence Analyst to enable Security Operations Center (SOC) and Incident Response (IR) teams to... ...routinely created to improve detection coverage and alert quality and inform senior stakeholders for their decision processes. This role is...
$102.17k
...transforming the way water resources are managed and protected. By combining cutting‑edge... .... Job Description Join the Trinnex Security Team as a Senior Cyber Security Analyst,... ...veteran status, citizenship status, genetic information or any other characteristic protected by...H1b- ...Trinnex is seeking a Senior Cyber Security Analyst to join their Security Team in Nashville, TN. You will focus on securing the software development lifecycle, conducting advanced security monitoring, leading incident response, and collaborating with teams to safeguard...
$40 per hour
...for experienced cybersecurity professionals to join our team to help train AI models. In this role, you will evaluate AI-generated security content, solve technical cybersecurity problems, and provide feedback to improve how AI systems reason about real-world threats...Hourly payFull timePart timeRemote work$20 per hour
...Title: Temporary - Cyber Security Analyst Position Summary Under the directive of the Information Security Officer, the cyber security analyst will implement security strategies and best practices in accordance with regulatory standards. Essential Job Functions / Job...Hourly payTemporary workFlexible hours- BDO USA in Nashville is seeking an Experienced Manager, Cyber to lead AI security consulting engagements at the intersection of AI and cybersecurity... ...and client outcomes. The role requires deep information security experience, hands-on guidance on AI security with...
$60k - $100k
...Operations Specialist in Nashville, TN. This role involves providing advanced support for cybersecurity operations, incident response, and managing compliance activities across enterprise environments. The ideal candidate will have at least 4 years of experience in similar...$98.86k - $138.98k
...Guide clients on design, configuration management, DevSecOps, and other program initiatives... ...) or higher in Computer Science, Information Systems, Systems Engineering, or related... ...to obtain and maintain a Secret level security clearance (US Citizenship required). Preference...Local areaImmediate startFlexible hours- Groundswell is seeking experienced Appian Consultants to provide leadership on delivery teams and guide clients in implementing robust Appian solutions. You will play a vital role in mentoring teams and improving internal processes. The ideal candidate will have 5+ years...Flexible hours
$97k - $164.9k
...platforms supporting mission-critical systems. The role involves administering middleware technologies, ensuring compliance with security standards, and collaborating with various technical teams. Candidates should have a Bachelor's degree in Computer Science or IT and...$78k - $95k
...The Role This is a hands‑on security position working within the Information Security group and with the internal IT department at large. This position’s core focus is to manage and coordinate the day‑to‑day functions of identity and access management operations. This...Permanent employmentWork at officeLocal area$104k - $156k
...Advanced Security Engineer The Advanced Security Engineer is a technically deep, hands... ...This role works closely with the Senior Manager of Enterprise Security and cross-functional... ...~ Bachelor's in Computer Science, Information Security, or equivalent experience. ~5...- Regions Bank is seeking a Cyber Security Manager in Nashville, TN, responsible for leading a team focused on protecting the bank's assets and customers. The role involves developing security architecture and incident response protocols while collaborating across departments...
- Palo Alto Networks is seeking a Solutions Consultant to drive customer success in cybersecurity transformation. This role involves providing technical leadership, developing customer relationships, and delivering presentations to influence key stakeholders. Applicants should...Remote job
- Job Overview We are seeking an experienced IAM Engineer specializing in API Security & Identity Management to design, develop, and secure API services. The ideal candidate will have expertise in Layer7 API Gateway (Broadcom) , Java RESTful Services Development , and CI...
- ...Extrity Services, we redefine security by placing a premium on... ...Supervisor, and/or Regional Manager, you will implement security... ...necessary, providing support and information. ● Adhere to the...Shift work
- ...Job Description Shift options are Monday - Sunday 6pm-6am (3rd Shift) **IMMEDIATE HIRE** We are looking for a competent Security Officer to undertake the surveillance of our premises and protection of the residents and guests of an apartment complex. You will...Weekly payImmediate startFlexible hoursShift workNight shift
$19 - $21.5 per hour
...must be in possession of an active armed security license for the state of TN to be... ...national origin, age, pregnancy, genetic information, disability, status as a protected veteran... ...We offer every employee — from executive managers to administrative support to security professionals...Local areaFlexible hoursShift workWeekend work- ...Job Description Job Description OBJECTIVES Provides armed security protection for patrons and employees involved with events and occurrences associated with TPAC. This includes building security and event security for Andrew Jackson Hall, James K. Polk Theater,...
- ...Job Description Job Description Description: Armed Security Officer Department: Serva Security, Serva LLC CHN Reports To: Security Supervisor Employment Type: Part-Time Recurring - Hourly (Non-Exempt) Job Summary: The Security Officer is responsible...Hourly payPart timeSummer workMonday to Friday
$87k - $104k
...sponsorship opportunities. Role Overview This hands‑on security position works within the Information Security group and with the internal IT department to... .... Responsibilities Support a Technology Vendor Management program, ensuring technology risk reviews across multiple...Work at officeLocal area
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Information Security Manager. Be the first to apply!
- entry level information security analyst Nashville, TN
- information technology security engineer Nashville, TN
- information security compliance analyst Nashville, TN
- information security analyst Nashville, TN
- information security Nashville, TN
- information security lead Nashville, TN
- senior information security analyst Nashville, TN
- director information security Nashville, TN
- data center security officer Nashville, TN
- sr information security engineer Nashville, TN


