Information Security Manager

About The Position

Requirements

• 5+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 2+ years of Leadership experience
• Experience working within or alongside cyber defense functions such as SOC, threat intelligence, incident response, or detection engineering
• Strong knowledge of Agile delivery frameworks (Scrum, Kanban) and product management practices
• Ability to communicate effectively with senior leadership, technical teams, and business partners

Nice To Haves

• Experience in a regulated industry such as financial services, government, or utilities
• Information security certifications such as CISSP, CISM, or equivalent
• Agile or product certifications (e.g., CSPO, Scrum Master, SAFe)
• Familiarity with SIEM, SOAR, endpoint security, DLP, or cloud security platforms
• Demonstrated ability to tie delivery outcomes to cyber risk reduction and operational efficiency

Responsibilities

• Manage and develop a team of Product Owners and Scrum Masters aligned to Cyber Defense product areas
• Translate cyber defense strategy and priorities into executable roadmaps, epics, and delivery plans
• Partner with Cyber Defense domain leaders to prioritize work based on risk reduction, detection efficacy, and operational resilience
• Ensure effective Agile delivery practices (Scrum / Kanban), including backlog health, sprint execution, dependency management, and capacity planning
• Establish delivery transparency through metrics, KPIs, and OKRs across supported cyber defense domains
• Drive consistency in product lifecycle management, intake, prioritization, and delivery reporting
• Act as a liaison between cybersecurity operators, engineering teams, and enterprise stakeholders
• Identify and escalate delivery risks, constraints, and dependencies with clear mitigation strategies
• Support compliance with enterprise cybersecurity policies, risk management expectations, and regulatory requirements
• Foster a culture of accountability, continuous improvement, and outcome-focused execution
• Manage and develop a team of individual contributors with low to moderate complexity and risk
• Provide support and drive strategic initiatives for the business
• Maintain an advanced awareness of bank security policies and government regulations pertaining to information security
• Identify security risks and solutions for networks and virtual private network applications, security tools, public key infrastructures, authentication and directory services, and access management services
• Address vulnerability detection, threat data, network intrusion, development, and implementation of vulnerability mitigation strategies
• Formulate and implement information security solutions and controls
• Make decisions and resolve issues regarding changes to information security policy, standards, and procedures as needed for systems, applications, and tools
• Recommend compliance and risk management requirements for supported area and work with other stakeholders to implement key risk initiatives
• Lead complex projects and initiatives impacting one or more business lines
• Collaborate and influence all levels of professionals including more experienced managers
• Lead team to achieve objectives
• Manage allocation of people and financial resources for Information Security Analysis
• Mentor and guide talent development of direct reports and assist in hiring talent

Benefits

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement