Information Security Manager

Infovisa, Inc.•Cornelius, NC

About The Position

The Information Security Manager is a hands-on/ working manager position that defines, implements and monitors security policy for on-prem, cloud, and remote access deployments. The primary duty of the job is to maintain a security posture that allows the business to thrive while preventing a security breach. The IS Manager hires, retains, and trains an IS Engineer to assist with day-to-day duties. The IS team maintains on-premises firewall rules and active directory as well as overseeing vulnerability management. In the cloud, the IS Manager is responsible for designing security measures, and the IS team is responsible for their implementation and monitoring. The IS team also designs, implements, and maintains a remote access VPN for associates when working outside the corporate offices.

Requirements

10 years of information security experience required.
Three years of management experience.
Displays strong technical aptitude with IT Security, VPN, Endpoint Detection and Response, IIS, networking concepts and technologies, and other third-party and internally developed tools and technologies.
Valid driver’s license.
Four-year degree in information technology / systems, or computer science.

Nice To Haves

Prefer familiarity with Check Point technologies.
Prefer one or more applicable network security certifications.
Analytical and detailed.
Effective communicator technically, in the board room, and with customers and coworkers.
Organized.
Independent with good judgment.
Proven ability to multitask and prioritize projects.
Self-directed and takes initiative.

Responsibilities

Demonstrate an understanding of all applications deployed, and data stored within the enterprise.
Demonstrate an understanding of security measures that are in place and their role in securing the enterprise.
Assess the threat of zero-day vulnerabilities and third-party risk to the enterprise. Take action to remediate such vulnerabilities. Effectively report status to executive management in terms of the threat level and associated risk.
Assess risks related to general threat landscape. Identify, design and implement controls to mitigate those threats and prevent security breaches.
Measure, monitor, and report on vulnerabilities that have been identified within the enterprise.
Maintain on-premises firewall rules; maintain cloud security settings and restrictions; maintain remote access rules and restrictions.
Identify new security related vendors as needed and assist in evaluating new and existing vendors from a security perspective.
Participate and communicate effectively in external audits, third-party vulnerability scans, and regulatory examinations.
Maintain, comply with, and develop Infovisa’s policies, procedures, and strategies to provide a safe and efficient environment for Infovisa software to run and associates to work.
Liaison with IT-ISAC, InfraGard, and other industry groups.
Manage projects and create detailed technical documentation.
Hire, train, mentor and manage associates on the security team.