Information Security Manager

About The Position

Requirements

• Completion of an undergraduate program or equivalent experience.
• Minimum one year of management experience within security for an organization.
• Experience leading teams.
• Experience working with stakeholders, gathering feedback, and interpreting qualitative product data.
• Experience with third-party risk assessments and vendor vetting.
• Extensive hands-on knowledge of Microsoft Cloud Environment including but not limited to: Purview, Sentinel, Microsoft Defender, Microsoft Entra, Microsoft Intune, Azure Front Door, Azure Network Security Gateway.

Nice To Haves

• Exceptional analytical, decision-making, and problem-solving skills.
• Ability to work effectively with cross-functional teams and stakeholders.
• Knowledge of regulatory requirements and compliance standards.
• Maintain a calm demeanor, act decisively, and have sound decision-making abilities during challenging times.
• Able to work with internal and external customers to instill confidence in Wildfire Defense Companies security posture.
• Knowledge of network security concepts including topology, protocols, components, and principles, risk assessment, threat hunting, etc.
• Understanding of risks associated with open-source, software, sourcecode languages, packages, plug-ins, etc.
• Ability to manage stakeholders, priorities, and urgency.

Responsibilities

• Work with leadership to plan information security policies and promote a culture of information security throughout the organization.
• Develop programs to keep employees aware of security threats.
• Perform user education regarding information security.
• Responsible for other staff in a people-manager role and help their staff grow in their career.
• Responsible for productivity of their teams' roles may include but not limited to departmental administration, training, compliance, and basic security functions.
• Responsible for the budget for their team and driving cost efficiency.
• Ability to coach junior staff on information technology and be a source for accurate information of our security.
• Data and information security mindset.
• Forward-thinking approach to data and information security.
• Always looking for how to address and improve our data and information security.
• Adopt the 'service first' principle while providing exceptional customer service to all Wildfire Defense Companies.
• Think 'outside of the box' and adapt knowledge to better improve our environments.
• Stay current on industry threat vectors and vendor best practices.
• Apply learned knowledge to improve Wildfire Defense Companies technology and security posture.
• Future-ready - keep Wildfire Defense Companies on the forefront of cloud-based security with the ability to adapt to changing business challenges.
• Maintains and supports the integrity of the operating system environment and various computer systems.
• Maintains documentation of IT infrastructure and troubleshooting procedures.
• Ability to work in a fast-paced environment.
• Assist Technology teams with security awareness, implementation, and monitoring.
• Able to propose and execute planning horizons with 3-6-month duration.
• Identify potential blockers and contribute to the planning and budgeting of future projects.
• Expected to innovate and come up with innovative ideas to drive department and company technology and information security goals.
• Assist with the definition and maintenance of information security standards and policies.
• Establish metrics to ensure continuous improvement.
• Coordinate between all Technology teams and vendors.
• Contribute to company Business Continuity and Disaster Recovery plans.
• Invest in your own training and demonstrate willingness and ability to learn evolving, and complex technologies.
• Use your training and education to help enable the business and remove any potential obstacles.
• Monitor and remediate information security threats using approved solutions as identified in a quarterly active directory audit.
• Facilitate information security incident investigations, provide documentation, and follow up on mitigation.
• Ability to cover support ticket escalations after-hours, as needed or as part of a rotation.
• Other duties as assigned by leadership.