Information Security Manager Job Description

Information Security Manager is responsible for developing and managing Information Systems cyber security, including disaster recovery, database protection and software development. Manages IS security analysts to ensure that all applications are functional and secure. Being an Information Security Manager develops and delivers IS security standards, best practices, architecture and systems to ensure information system security across the enterprise. Implements procedures and methods for auditing and addressing non-compliance to information security standards. Additionally, Information Security Manager migrates non-compliant environments to compliant environments. Evaluates the organization to ensure compliance with standards and relevance with industry security norms. Requires a bachelor’s degree. Typically reports to a director. The Information Security Manager manages subordinate staff in the day-to-day performance of their jobs. True first level manager. Ensures that project/department milestones/goals are met and adhering to approved budgets. Has full authority for personnel actions. To be an Information Security Manager typically requires 5 years experience in the related area as an individual contributor. 1 – 3 years supervisory experience may be required. Extensive knowledge of the function and department processes.

View Information Security Manager jobs

Information Security Manager Job Description Template

Our company is looking for a Information Security Manager to join our team.

Responsibilities:

  • Ensure Director of Information Security is made aware of any access related risks;
  • Provide knowledge and direction on IAM reporting and analytics;
  • Identify and evaluate IAM trends to serve as a source of information to create IAM roadmaps with actionable plans;
  • Ensure IAM processes and practices are documented and auditable;
  • Review and recommend appropriate staff for promotions;
  • Oversee user access reviews and audits;
  • Lead and develop the IAM team and provide creative solutions in support of business requirements;
  • Prioritize, organize, and delegate assignments;
  • Coordinate with the business and IT partners to implement new IAM controls as required based on information security and business strategy;
  • Designs, builds, maintains and supports the companys information security program;
  • Deploys solutions and secure information assets;
  • Manages incident response and coordinate triage and remediation activities;
  • Identifies and incorporates security capability requirements into security strategy;
  • Participates in change request reviews to assess security risk and recommend solutions;
  • Directs and reviews the work of the team and provides training to enhance knowledge and skills.

Requirements:

  • Strong general technology background;
  • Proficiency in interpreting financial results and business data to identify opportunities and risks;
  • Demonstrated experience with information security frameworks;
  • Minimal physical effort such as sitting, standing, and walking;
  • Prior automation and scripting experience using Python, Ruby, or similar;
  • Ability to manage multiple, ongoing initiatives;
  • High level understanding of Information Security threats and maintenance;
  • Ability to maintain and implement best practices within field;
  • Advanced knowledge of network protocols and operating systems;
  • Strong leadership skills and the ability to lead by example;
  • Demonstrated experience in handling cyber incidents and response in similar critical environments;
  • Demonstrated ability to frame security and risk-related concepts to both technical and nontechnical audiences;
  • Capable of explaining technical concepts to a non-technical audience;
  • Ability to interface with business and technical teams and key stakeholders;
  • Knowledge of firewalls and policies.