Information Security Manager

Obama Foundation•Chicago, IL

3d•$101,840 - $127,344•Onsite

About The Position

At The Obama Foundation, our mission is to inspire, empower, and connect people to change their world. We seek to build an active democratic culture where people are equipped and motivated to make change in the communities where they live, work, and play. Right here on the South Side of Chicago, we’re building a home for this vision, a global center for change with a range of opportunities - coordinated programming, community outreach events, educational moments, and more - that invite visitors from down the block or across the globe to turn hope into action. Achieving our ambitious goals starts with an exceptional team built on our Hope to Action Values - Courage, Empathy, Integrity, Accountability, Community, Inclusivity, Pragmatism, Resilience, Imagination, and Hope. A Framework that anyone, anywhere, can use to build trust, activate participation, and expand opportunity in their community. Purpose of the Role As the Information Security Manager, you'll be reporting directly to the Senior Director of Information Technology. You will serve as the primary technical steward for our IT security infrastructure, protecting the Foundation's digital assets. This role is responsible for actively managing our security stack, monitoring threats through our SIEM platform, leading incident response efforts, and ensuring robust access controls across all our networks and SaaS solutions.

Requirements

4-6 years of progressive experience in IT security, encompassing operations, incident response, and risk management.
Hands-on experience managing SIEM platforms (Google SecOps preferred) and leading organizational incident response efforts.
Proven ability to administer modern security stacks, specifically EDR solutions, web filtering tools, and identity/access management.
Experience developing security policies, conducting vulnerability/vendor risk assessments, and managing employee security awareness programs.
Exceptional communicator, verbal and written; track record of communicating effectively with people across teams and at all levels.

Responsibilities

Lead responses to active security incidents, investigate user-reported security events, and coordinate the technical recovery & internal/external communication.
Oversee the Google SecOps SIEM environment and review system alerts.
Maintain the broader security stack (EDR, web filters, patching) and conduct access control reviews across network infrastructure and SaaS solutions.
Conduct routine vulnerability scans, identify new log sources, and evaluate the security posture of prospective third-party vendors.
Administer the organization's security awareness program, including conducting routine phishing simulations and staff training initiatives.
Develop, maintain, and enforce core organizational information security policies (e.g., Incident Response Plan, Acceptable Use Policy).
Develop metrics and report out to leadership.
Vendor Management.
Perform other duties as assigned.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume