Information Security Manager
$75 per hourTripleNet Technologies
Key Responsibilities and Duties:
Location: Downtown Seattle (Hybrid)
M-F: 8 AM to 5 PM
Hybrid: 3 days work onsite
Pay: $75per hour
- Guide security policy and participate in broader Information Security governance efforts.
- Develop and maintain the Information Security Management System (ISMS) in collaboration with regional information security SMEs and technical consultants.
- Oversee and manage the ISMS and recommend appropriate mitigating controls.
- Oversees Information Security Risk Management activities, including risk identification, assessment, and communication to relevant interest holders.
- Provide valuable expertise and leadership directly to the governingJoint Board executive leadership, including sharing metrics to reflect the performance of the regional security program functions, executive risk score reports, and other guidance on a variety of information security topics.
- Facilitate a committee of Information Security SMEs across the Agencies to ensure both regional compliance and concurrence on information security-related matters, recommending solutions, and working from the regionalperspective to achieve optimal solutions.
- Collaborate with the Systems Integrator, other vendors, and partner Agencies to ensure security best practices, standards, policies, and regulatory requirements are incorporated into core payment system design, implementation, and sustainment, as well as support other future phase projects.
- Conduct regular security reviews of both software and processes, advising on information security practices. Reviews and creates threat models and recommends security enhancements consistent with information security strategy and evolving threats.
- Support external IT security audits and assessments that focus onoperation.
- Develop, update, implement, and conduct information security training programs to support the ISMS objectives.
- Manage approvals for Identity and Access Management (IAM) and Access Control Administration.
- Act as Incident Commander for Security Incident Response activities, whenever the Information Security Incident Response Plan is invoked by the regional program; play an interest holder and oversight role if the plan is invoked by other partners or vendors.
- Participate in information security incident investigation and response efforts; perform root-cause analysis when incidents occur and prepare incident reports.
- Evaluate change requests to determine potential impacts to Information Security, including IT systems, processes, policies, and provide appropriate input to the Change Management process.
- Coach future RegionalOperations Team (ROOT) information security personnel as the ISMS becomes complete and mature.
- Keep up to date on latest information security trends, "best practices", threats, and countermeasures.
- Enterprise-level information security plans, policies, standards, guidelines, methods, and practices based on current industry standards, best practices, tools, and techniques.
- Information Security Management Systems, and applicable industry standards (ISO 27001/2).
- Pertinent federal, state, and local laws, codes, and regulations; particularly those that affect information security for payment systems.
- Environments subject to the Payment Card Industry Data Security Standard (PCI DSS), including compliance-related duties.
- Knowledge and understanding of developing and administering information-security standards, practices, audits, risk management, and policy compliance.
- Information Security Audit principles and practices.
- Knowledge of one or more governance frameworks such as COBIT 5, ISO, NIST, or COSO.
- Strong understanding of IT Service Delivery (ITIL) core processes and methodologies.
- Principles, methods, and techniques used in the facilitation of managing projects and leading teams.
- Relevant experience and detailed technical knowledge in security engineering, system and network security, authentication and security protocols, cryptography.
- In-depth knowledge of security software threats and vulnerability mitigation techniques.
- Working knowledge of cloud platforms such as Azure/ AWS and relevant security controls.
- Establishing and maintaining collaborative working relationships with other department staff, management, vendors, and other interest holders.
- Documenting and explaining risks, recommendations, and incident data to technical interest holders.
- Interpreting and administering information security policies, standards, and procedures sufficiently to administer, discuss, resolve, and explain them to staff and other constituencies.
- Leading or supporting an Information Security Management System.
- Generating metrics and preparing reports to facilitate decision-making on security-related activities.
- Utilizing personal computer software programs affecting assigned work and in compiling and preparing spreadsheets and reports.
- Responding to inquiries with effective oral and written communication.
- Researching, analyzing, and evaluating new security processes, products, and techniques.
- Excellent time management skills including the ability to prepare, prioritize, and complete work plans.
- Working effectively under pressure, meeting deadlines, and adjusting to changing priorities.
- Writing of technical documentation and standards, including skill in English usage, spelling, grammar, and punctuation
- At least one of the following (in valid status):
- Certified Information Systems Security Professional (CISSP).
- Certified Information Security Manager (CISM).
- Certified Information Security Auditor (CISA).
- Other industry relevant certifications in the fields of information security, project management, auditing and/ or risk management, such as the Certification in Risk and Information Systems Control (CRISC)
- Knowledge of Governance, Risk, and Compliance (GRC) tools.
- Principles of leadership, supervision, training, and performance evaluation.
- Extensive knowledge of risk-based methodologies, and one or more of the following frameworks: ISO 27001/2:2017, 27005:2011, and 31000; PCI-DSS; or NIST 800-53.
Location: Downtown Seattle (Hybrid)
M-F: 8 AM to 5 PM
Hybrid: 3 days work onsite
Pay: $75per hour
Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Information Security Manager in Seattle, WA vacancy
- Overview The Information Security Manager, working with in Corporate Information Security Team will be responsible for liaising with assigned business units on behalf of Corporate Information Security (CIS). These responsibilities will include understanding business-driven...SuggestedLocal area
$75 per hour
A technology services firm in Seattle is seeking a skilled Information Security Manager to oversee the Information Security Management System (ISMS) and ensure compliance with regional and federal standards. The role involves guiding security policy, developing training...SuggestedHourly pay$140k - $200k
Amatriot Group, LLC is seeking a skilled cyber security professional to enhance network security and manage incident response. The role involves coordinating monitoring efforts, identifying risks, and leading investigations. Qualified candidates must have at least 8 years...Suggested$113.05k - $152.95k
...Cybersecurity - Information System Security Officer (ISSO) Company: The Boeing Company Boeing Classified Cybersecurity is currently... ..., standards, guidelines and procedures Implement Risk Management Framework (RMF) processes, product development and product...SuggestedPermanent employmentRelocationVisa sponsorshipWork visaRelocation packageFlexible hoursShift work$113k - $149k
...Anduril products or software. Well versed in a combination of Information Technology, Security and government accreditation processes, ISSOs are able to... ...SSPs), POA&Ms, and other accreditation documentation. Manage the organization's security posture, ensuring compliance...SuggestedFull timeWork experience placementImmediate start$260k - $365k
A prestigious legal recruiting firm is looking for a Mid-Level Associate specializing in Data Privacy and Cybersecurity Transactions. You will provide strategic counsel in M&A and tech deals, with 3-5 years of relevant experience. This role offers a competitive base salary...$113.05k
...Cybersecurity - Information System Security Officer (ISSO) Location: Tukwila, WA. Position Responsibilities Contribute to the development and... ...policies, standards, guidelines, and procedures. Implement Risk Management Framework (RMF) processes, product development and...Permanent employmentRelocationFlexible hoursShift workDay shift$310k - $420k
A prominent law firm is seeking an associate for its Cyber/Data/Privacy practice in Seattle. The ideal candidate will have 4 to 7 years of experience in privacy compliance law, including knowledge of CCPA, CPRA, and GDPR. Responsibilities include advising clients on cybersecurity...- ...Information System Security Officer (ISSO) Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers... ...as ACAS (Tenable Nessus) and SCAP (STIG benchmark) and manage a Plan of Actions and Milestones (POA&M) for remediation...For contractors
- ...Position Title: Director, Cyber Security Ziply Fiber is a local internet service provider... ...digital assets, systems, and sensitive information against an increasingly complex threat... ...cybersecurity organization, including management of managers and senior individual contributors...Local areaFlexible hoursWeekend workAfternoon shift
$260k - $365k
...including NIST, ISO, and OECD frameworks for AI risk management and cybersecurity, the Payment Card Industry Data Security Standard, the EU‑U.S. Data Privacy Framework,... ...they work. This compensation and benefits information is based on Orrick’s estimate as of the date of...Temporary workWork at officeFlexible hours- A technology firm is seeking a Senior Information Security & Cyber Risk Analyst in Washington. This role involves planning and implementing security policies, leading security assessments, and collaborating with various teams on cyber risk initiatives. Candidates should...
- ...Come join our team! Zantech is looking for a talented Senior Information System Security Officer to be responsible for the most complex systems and... ...(SSPs) Conduct security assessments and authorize systems Manage Plans of Action and Milestones (POA&Ms) Coordinate with...Contract work
- ...Chief Information Security Officer (CISO) About the Company Trusted provider & publisher of consumer insights about car models & auto... ...analysis insights data and analytics customer experience management advisory services and advisory services Business...
- MANTECH seeks a motivated, career and customer-oriented Senior Information System Security Officer (ISSO) to join our team in Washington, DC.... ...vulnerability scans according to risk assessment parameters Manage the risks to ISs and other FBI assets by coordinating appropriate...Work at office
- MANTECH seeks a motivated, career and customer-oriented Senior Information Systems Security Officer (ISSO) to join our team in Washington, D.C. This... ...WebInspect, and Network Mapper (NMAP). Proven experience managing complex network documentation, inventorying networks, and...Work at officeRemote work
- ...Chief Information Security Officer (CISO), Growth About the Company Accomplished provider of top-tier security services Industry... ...include developing and maintaining a robust security program, managing security incidents, and ensuring compliance with relevant regulations...
- Job Title: Senior Information Systems Security Officer Location: Ft. Washington, MD Clearance: TS Required Travel: Minimal Description: Senior... ...systems and data. Responsibilities Design, deploy, and manage security solutions (Scanning, IDS/IPS, NIDS/NIPS, SIEM) in...
$102.17k
...transforming the way water resources are managed and protected. By combining cutting‑edge... .... Job Description Join the Trinnex Security Team as a Senior Cyber Security Analyst,... ...veteran status, citizenship status, genetic information or any other characteristic protected by...H1b$144.9k - $265.8k
...Entra, Okta, Ping, Saviynt Design cloud security and IAM architectures for Azure, AWS,... ...authentication, authorization, identity management) Design and re‑engineer processes for centralized... .../expression, pregnancy, genetic information, national origin, protected veteran...Work experience placementSummer holidayFlexible hours- ...Trinnex in Seattle is seeking a Senior Cyber Security Analyst to safeguard critical software systems for water utilities. This role emphasizes securing the software development lifecycle and addressing vulnerabilities, ensuring resilience against evolving threats. You...
$140k - $200k
...other position specific requirements which may impact salary. Responsibilities Coordinate across the enterprise to ensure network security devices are being monitored and are receiving or generating alerts. Identify security risks and exposures, determine causes of security...$83k - $124.8k
Alternate Information Systems Security Manager (AISSM)/Assistant Contractor Special Security Officer (ACSSO) Special Programs Hiring Department: Applied Research Laboratories Position Open To: All Applicants Weekly Scheduled Hours: 40 FLSA Status: Exempt from FLSA...For contractorsWork at officeImmediate startAfternoon shift$87.7k - $164k
...Today’s world is fuelled by vast amounts of information. Data is more valuable than ever before.... ..., and everyone in EY Information Security has a critical role to play. Join a global... ...perceived security threats Maintain, manage, improve and update security incident process...Summer holidayLocal areaFlexible hours- ...consulting firm in Washington is looking for a skilled professional to conduct customer outreach, manage IT services, and provide strategic recommendations on cyber security tools. Candidates should have at least 2 years of experience with FireEye tools, familiarity with...
- ...to join our Cyber Defense program. You will be responsible for leading incident command efforts and ensuring the effective management of security incidents across the organization. This role demands strong organizational skills and the ability to communicate effectively...
$142.5k - $190k
JPMorgan Chase in Seattle is seeking a Technology Support Lead to provide critical support within the Cybersecurity Incident Management team. This role involves managing cybersecurity incidents, executing firm-wide strategies, and enhancing technological resilience. Ideal...- CGI Technologies and Solutions, Inc. is seeking a Project Manager to oversee cybersecurity services for a pivotal US Government customer. This position involves leading a team to modernize IT cybersecurity efforts across federal systems. You'll coordinate with multiple...
$147.3k - $193.3k
...our people. About this team The Security Operations Center (SOC) is responsible for... ...risk, and generate insights that inform both strategic and operational decision-... ...efforts and establishing vulnerability management approaches integrating threat intelligence...Permanent employmentPart timeWork visa$100k - $145k
...Dark Wolf is seeking Cybersecurity Analysts to join a collaborative team to develop, manage, and maintain the security posture of information systems with a focus on Assessment and Authorization (A&A), continuous monitoring and compliance with NIST & RMF. The successful...Full timeFor contractorsWork at officeLocal area
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Information Security Manager. Be the first to apply!
Related searches
- information technology security engineer Seattle, WA
- information security compliance analyst Seattle, WA
- senior information security analyst Seattle, WA
- data center security officer Seattle, WA
- entry level information security analyst Seattle, WA
- director information security Seattle, WA
- sr information security engineer Seattle, WA
- senior director information security Seattle, WA
- information security Seattle, WA
- information security analyst Seattle, WA

