IT Security Manager (Hybrid)

Kasasa•Austin, TX

1d•Hybrid

About The Position

In today’s digital environment, the role of an Information Technology Security Manager is an essential position within our organization. By developing security strategies; implementing policies and procedures; executing risk assessments and penetration testing; collaborating with colleagues to mitigate known and emerging vulnerabilities and threat and by briefing senior management on the company’s overall risk management posture, our Information Technology Security Manager plays a vital role in protecting our organization against cyber-attacks that threaten the integrity of our data, networks and information technology assets. This job description outlines the responsibilities and qualifications required for the position.

Requirements

6+ years of IT security / cybersecurity experience.
Bachelor's degree in Computer Science, Information Technology, Cybersecurity or a related field.
Proven experience in an IT security role, with a track record of successfully implementing and managing IT security programs.
Familiarity and experience with security controls for cloud-based infrastructure such as Amazon Web Services (AWS).
Hands on experience with anti-phishing; anti-malware; remote device monitoring; threat intelligence; patch management software, tools, and controls.
Strong knowledge of relevant regulations and standards, such as data privacy and protection laws.
Experience with risk management methodologies and frameworks.
Excellent written and verbal communication skills.
Strong collaboration skills.
Strong attention to detail and the ability to prioritize and manage multiple tasks simultaneously.

Nice To Haves

Professional certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), Offensive Security Certified Professional (OSCP), or CISA (Certified Information Systems Auditor) are highly desirable.
NIST framework.
Prior experience working with external auditors.
Familiarity with project management principles and practices.

Responsibilities

Infuse the Patch Values into your work ethic, every day and every interaction.
Develop and implement the organization's security strategies, policies, procedures, and remediation efforts.
Provide guidance, training, and support to ensure the effective execution of security initiatives.
Conduct regular risk assessments and vulnerability tests to identify potential security threats and develop action plans to mitigate them.
Monitor and analyze security incidents, investigating any breaches or security incidents and implementing corrective actions as necessary.
Establish client facing communication protocols.
Stay up to date with the latest industry trends, threats, and technologies to ensure that the organization's cybersecurity measures are current and effective.
Collaborate with other departments to ensure that security requirements are integrated into the design, implementation and deployment of new systems, technologies, network and devices.
Develop and implement security awareness programs to educate employees about security best practices and promote a culture of security within the organization.
Manage relationships with external vendors and partners to ensure that security controls are effectively implemented and maintained.
Ensure compliance with relevant regulatory requirements and industry standards, such as state data privacy laws, regulations, and requirements.
Prepare and present regular reports to senior management on the organization's IT security posture, including insights, recommendations, and metrics.
Annual Board reporting.
Other duties as assigned.