10,461 Information Security Manager jobs in the United States

Telework is available.

This position has been previously advertised. If you have already submitted an application, it is not necessary to re-apply.

Under general direction of the Security Monitoring and Intelligence (SMI) Information Technology Manager I (IT Mgr I), the Information Technology Supervisor II (IT Sup II) is a member of the Security Operations Center (SOC) working as a high-level technical security specialist. The IT Sup II will perform Tier 2/1 SOC duties as needed as part of the security detection, analysis, and response team to provide critical protection of the California Department of Technology (CDT) and State IT assets. The IT Sup II will participate in incident response activities as required as a member of the IT Security Incident Response Team.

The IT Sup II develops and maintains a working level knowledge of relevant IT infrastructure and technologies under the protection of the SOC, of applicable State/Federal and industry regulations and best practices with respect to information security, of department and information security policies and procedures, and of vulnerability and threat management technologies, products, practices and processes. In addition, the IT Sup II must develop and maintain working level knowledge of the IT threat landscape, risk management processes and technologies, multiple operating systems, network architecture and protocols, and a full picture of IT security technologies.

Telework
This position is eligible for a hybrid work schedule within California based on departmental policy and operational needs. The telework policy is subject to change depending on business needs, and/or reporting to the work site may be required with minimal notification given .

Visa Sponsorship

Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.

You will find additional information about the job in the Duty Statement .

Working Conditions

The IT Sup II works in an office environment and is required to operate a personal computer, utilizing various Microsoft (MS) tools (Word, Outlook, Excel, PowerPoint), e-mail communication, and diagramming applications); use technical software for monitoring a variety of security-related items; and copy machine, fax machine, telephone system.

Must pass a fingerprint background criminal record check completed by the Department of Justice (DOJ) and the Federal Bureau of Investigation (FBI).

CA Residency:

Candidates who reside outside of the State of California may be admitted to the job interview. However, upon a job offer, candidates must provide proof of residence in California prior to their appointment becoming effective, or the offer may be rescinded.

Minimum Requirements You will find the Minimum Requirements in the Class Specification.

• INFORMATION TECHNOLOGY SUPERVISOR II

• Job Application Package Checklist
• Duty Statement

• Current version of the State Examination/Employment Application STD Form 678 (when not applying electronically), or the Electronic State Employment Application through your Applicant Account at All Experience and Education relating to the Minimum Qualifications listed on the Classification Specification should be included to demonstrate how you meet the Minimum Qualifications for the position.
• Resume is required and must be included.
• Other - If you are using EDUCATION to meet the minimum qualifications for this classification, you MUST provide your unofficial transcripts as proof of meeting the education requirements as listed in the Classification Specification (please see the Class Specification located under "Minimum Requirements" on the left -hand side of this job posting). Applicants who completed their education outside of the United States (with foreign degrees/transcripts) must provide a foreign transcript evaluation. The transcript evaluation must state the number of units to which foreign coursework is equal. Foreign education evaluation services can be found at Official transcripts and official foreign degree transcripts will be required prior to appointment. If you are not using education to qualify for this classification, you do not need to submit transcripts. To bypass the required document, select Choose/Upload and select Bypass File.
• Statement of Qualifications -
  Required. Please see "Special Requirements" section for further information.
  

• Knowledge of applicable laws (e.g., Electronic Communications Privacy Act, Foreign Intelligence Surveillance Act, Protect America Act, search and seizure laws, civil liberties and privacy laws), U.S. Statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code).
• Knowledge of basic system administration, network, and operating system hardening techniques.
• Knowledge of common adversary tactics, techniques, and procedures (TTPs) in assigned area of responsibility (e.g., historical country-specific TTPs, emerging capabilities).
• Knowledge of common network tools (e.g., ping, traceroute, nslookup).
• Knowledge of computer network defense (CND) and vulnerability assessment tools, including open source tools, and their capabilities.
• Knowledge of computer network defense (CND) policies, procedures, and regulations
• Knowledge of different types of network communication (e.g., Local Area Network (LAN), Wide Area Network (WAN), Metropolitan Area Network (MAN), Wireless Local Area Network (WLAN), Wireless Wide Area Network (WWAN)).
• Knowledge of file extensions (e.g., .dll, .bat, .zip, .pcap, .gzip).
• Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol and Internet Protocol (TCP/IP), Open System Interconnection model (OSI), Information Technology Infrastructure Library, v3 (ITIL)).
• Knowledge of incident response and handling methodologies.
• Knowledge of information assurance (IA) principles and organizational requirements that are relevant to confidentiality, integrity, availability, authentication, and non-repudiation.
• Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language (PL/SQL) and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
• Knowledge of the common attack vectors on the network layer.
• Knowledge of Virtual Private Network (VPN) security.
• Knowledge of what constitutes a network attack and the relationship to both threats and vulnerabilities.
• Knowledge of Windows/Unix ports and services.
• Skill in collecting data from a variety of computer network defense resources.
• Skill in conducting open source research for troubleshooting novel client-level problems.
• Skill in conducting vulnerability scans and recognizing vulnerabilities in security systems.
• Skill in data reduction.
• Skill in detecting host and network-based intrusions via intrusion detection technologies (e.g., Snort).

Job Description

TwentyAI is assisting a fast-growing fintech company transforming financial services through data-driven technology. They are looking for an information security lead to drive security strategy, manage risks, and ensure compliance across the business.

Reporting to the head of IT governance, this role will lead security operations, oversee compliance, and collaborate with senior stakeholders. This is a hands-on leadership position responsible for security frameworks, incident response, and risk management.

Key Responsibilities

• Develop and manage security policies, risk frameworks, and compliance programs
• Lead cyber incident response, penetration testing, and security enhancements
• Oversee cloud security, particularly within Microsoft Azure and Zscaler environments
• Manage relationships with third-party security providers and conduct risk assessments
• Monitor emerging threats and implement proactive security measures

Key Skills & Experience

• Strong knowledge of cybersecurity frameworks such as ISO 27001, NIST, CIS, and Cyber Essentials
• Experience with cloud security solutions, particularly Azure and Zscaler
• Proven track record in security leadership and risk management
• Ability to communicate complex security concepts to technical and non-technical audiences
• Certifications
• CISM, CISSP, GDPR, or technical security certifications

What’s on Offer

• Competitive salary, bonus, and benefits package
• Flexible hybrid working options
• 25+ days holiday, pension, healthcare, and life insurance
• Career development and training opportunities

This is an excellent opportunity for an experienced security professional to take a leadership role in a fintech organisation where security is a top priority. Apply now to find out more.

Already a Kwik Trip Coworker? Follow this link to apply: myapps.kwiktrip.com
Location: Department 759
Shift: Daytime
Experience: 3-5 years
Pay Range: $109,121.22 to $163,681.96

Actual pay will be based on various factors, such as a candidate's qualifications, skills, competencies, proficiency for the role, and internal equity. In addition to base pay, Kwik Trip gives 40% of pre-tax profits back to our coworkers with bonuses ranging from 8-12% of each coworker's gross annual wage depending on company profitability and offers a comprehensive benefits package, including health insurance, 401k, paid time off, and more.

Kwik Trip is seeking a dynamic and experienced Information Security Manager to lead our Tooling team, the group responsible for managing and evolving the security technologies that protect our organization. This leader will play a critical role in ensuring our security stack is effective, scalable, and aligned with our broader security strategy.

This is more than a management role. It's a leadership opportunity. We're looking for someone who can champion their team, advocate for security initiatives, and drive operational excellence through collaboration, clarity, and courage.

What You'll Do

• Lead and support a team of security engineers and analysts responsible for managing Kwik Trip's security tooling ecosystem
• Oversee the evaluation, deployment, and lifecycle management of security technologies (e.g., SIEM, EDR, vulnerability management, identity protection, etc.)
• Collaborate with cross-functional teams to ensure security tools are integrated effectively and support business objectives
• Serve as a voice for the team by removing roadblocks, defending priorities, and ensuring alignment with strategic goals
• Drive continuous improvement in tooling processes, automation, and reporting
• Represent the Tooling team in leadership discussions, advocating for resources, initiatives, and innovation
• Foster a culture of transparency, accountability, and servant leadership

• Proven experience leading technical teams in the information security space
• Deep understanding of modern security tooling and how it supports enterprise security programs
• Strong organizational and communication skills, with the ability to influence across levels
• A collaborative mindset with the courage to challenge assumptions and speak up when it matters
• Experience managing vendor relationships and negotiating contracts is a plus
• A passion for helping others succeed and a commitment to building a resilient, empowered team

Introduction Looking to join a vibrant organization that makes a difference? As part of the Church Mutual team, you'll work with some of the most experienced and knowledgeable people in the industry and achieve your own growth and career satisfaction while finding fulfillment in serving those who serve others. We foster a workplace where all employees are treated with dignity and respect; diversity, inclusion and belonging are woven into the fabric of our company through our customers, employees, leadership, business relationships and outreach programs. Join us and Stand for Good . What you'll be doing: The Information Security Manager position manages and ensures the effective use of assigned resources to provide optimal support of the information security program, and ensures that the information assets of the CM Group are adequately protected. This position is responsible for identifying, evaluating, and reporting information security risks, ensuring CMG is maintaining compliance with regulatory requirements, operational support, service level management and budget management. Supervisor responsibilities to include staffing, training and development, performance management, and work force planning. On any given day, you'll: Supervisor/Manager responsibilities may include all of the following: Staffing needs, to include interviewing and onboarding for new employees. Training and development, as well as coaching and motivation for staff. Performance Management, goal setting, employee engagement, and salary administration. Workforce Management to include; unit equipment, software, and space needs, approving time off and overtime usage, and budget recommendations. Manage and allocate resources to IT areas to ensure the achievement of business goals. Accountable for team service delivery performance and for the impact of the results on IT and the business. Communicate strategy and develop plans to foster high level of staff engagement. Responsible for the effective acquisition, deployment, and integration of information technology solutions. Ensure effective deployment and flexibility in meeting changing business needs. Develop plans and completion criteria and coordinate efforts of team members, vendors, subcontractors, and CM Group personnel. Enable the organization's flexibility through effective leadership and direction. Ensure availability of technology resources with the appropriate knowledge and skills. Lead through collaboration, partnering, and clear decision making. Provide leadership and guidance to individual contributors. Maintain contact with senior IT management and communicate problem progress/status, risk management, and business satisfaction updates. Provide regular reporting on the current status of the information security program and significant incidents to senior IT management and the Board of Directors. Create and manage a targeted information security awareness training program for all employees, contractors, and approved system users, and establish metrics to measure the effectiveness of this security training program for the different audiences. Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services, including privacy, risk management, compliance, and business continuity management. Assist departments if fulfilling their information security requirements and assessing department-level compliance. Develop an information security vision and strategy that is aligned to organizational priorities and enables and facilitates the organization's business objectives, and ensure senior stakeholder buy-in and mandate. Oversee the approval and publication of information security policies and practices. Provide input for the IT section of the company's code of conduct. Work with the compliance staff to ensure that all information owned, collected, or controlled by or on behalf of the company is processed and stored in accordance with applicable laws and other global regulatory requirements, such as data privacy. Collaborate with Compliance for reporting and escalating security incidents, as necessary, lead security incident response efforts. Establish security metrics, tracking the progress of the Corporate Information Security Program, and coordinate with other corporate governance and risk entities. Establish and document information security standards in the PMLC and SDLC processes and provide appropriate review of projects to assess information security policies, practices, and guidelines. Oversee technology dependencies outside of direct organizational control. This includes reviewing contracts and the creation of alternatives for managing risk. Conduct vulnerability scanning, facilitate the vulnerability management process, and escalate as required for critical vulnerabilities and threats. Participate in department capital, expense, and compensation budgeting. Perform vendor negotiations, contract management, escalation, purchase request, and invoice verification. Here's what we expect Bachelor's degree in related field (e.g., business, finance, or technical) or equivalent experience required. 1+ years IT organization experience required. 1+ years leadership/management experience required. Insurance industry experience preferred. Experience with contract and vendor negotiations. Professional security management certification is desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), or other similar credentials. Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework. Knowledge of SDLC methodologies. Knowledge of insurance industry. Knowledge of insurance IT systems. Knowledge of financial management. Knowledge of management techniques. Knowledge of business risk management. Strong knowledge around creating business value. Strong knowledge of MS Office tools. Strong ability to build trust. Strong ability to deliver capabilities. Strong ability to adapt. Ability to manage resources. Ability to manage vendors. Ability to delegate. Ability to lead/mentor less experienced staff. Strategic thinking and planning skills. Negotiation skills. Strong collaboration and partnering skills. Strong communication skills. Strong problem solving skills. Strong decision making skills. Strong systemic thinking skills. Strong leadership skills. Strong teamwork skills. Ability to learn CM Group IT systems, methodologies and processes, and policies, products, etc. associated with the business. Church Mutual is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status. Exact compensation will vary based on consideration of a variety of factors including education, skills, experience, and location. Minimum Compensation USD $113,200.00/Yr. Maximum Compensation USD $169,800.00/Yr. #J-18808-Ljbffr

Job Summary The Information Security Manager is responsible for developing, implementing, and maintaining the organization's information security program aligned to FISMA and the NIST Cyber Security Framework to ensure the confidentiality, integrity, and availability of our information and information system assets. This includes the development of policies, procedures, processes, creation of Security Authorization packages, and oversight of monthly Continuous Monitoring reports, which include vulnerability scanning, interviews, and system testing. The manager supports security engineering architecture reviews of CSBS information systems, ensuring they are designed and built around protection needs with proven security architectures. They work with stakeholders, including system owners, engineers, auditors, and the security department, to develop deliverables, recommend solutions, and maintain or establish Authority to Operate (ATO) statuses for systems and platforms. Essential Functions To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made for individuals with disabilities. Other duties may be assigned to meet business needs. This role involves hands-on tasks to monitor and manage the security posture of CSBS's IT services, including analysis and evaluation of system design, architecture, and engineering practices. Security Program Management Develop security programs and projects with the CISO to address risks and security requirements. Assess threat landscapes, analyze risks, and report findings. Collaborate on budget projections, compliance monitoring, policy updates, vendor contracts, incident management, and security metrics development. Security Engineering Architecture Reviews Ensure security considerations in architecture and hardware/software evaluations. Recommend technical controls, oversee security projects, and lead deployment of new security technologies. CSF and RMF ATO Support Develop security documentation such as SSPs, SARs, risk assessments, and contingency plans. Participate in governance, manage vendor compliance, oversee risk management, and improve processes. Additional Responsibilities Monitor industry trends, contribute to forums, and implement planning and policy changes. Minimum Qualifications Bachelor's degree in relevant field or equivalent experience. Certifications such as CISSP, GIAC, or CCSP required. 12+ years of relevant experience, including 10+ in InfoSec, with expertise in risk assessments, cloud/mobile environments, and NIST standards. Knowledge, Skills, and Abilities Developing security policies, understanding network security principles, and familiarity with industry standards. Deep knowledge of security technologies, cloud security, scripting, incident response, and effective communication skills. Requirements Interaction with confidential supervisory information, disclosure of conflicts of interest, and eligibility for a U.S. Government clearance. Values and Leadership CSBS emphasizes work-life balance, collaboration, leadership at all levels, and a culture of honesty, respect, and innovation. Working Conditions Office environment, some travel required. This description is subject to revision, and employment is at-will. Compensation Offers are based on experience and market, with comprehensive benefits, flexible work arrangements, and an inclusive culture. More details are available on CSBS Careers. #J-18808-Ljbffr

Join to apply for the Information Security Manager role at Jobs via Dice 2 days ago Be among the first 25 applicants Join to apply for the Information Security Manager role at Jobs via Dice Dice is the leading career destination for tech experts at every stage of their careers. Our client, Mitchell Martin, Inc., is seeking the following. Apply via Dice today! Title: Information Security Manager Location: Northeastern United States (Hybrid) Employment Type: Full Time Compensation: Pay Range: $175000-$5000K Description: Collaborate with technology and risk management teams to enhance security performance. Maintain a formal information security controls framework. Represent cybersecurity controls to internal and external stakeholders. Develop and refine processes for testing information security controls. Manage metrics that report on key security control performance and risk. Enhance responses to security-related assessments, audits, and examinations. Evaluate security controls and recommend improvements. Key Responsibilities: Establish and maintain an information security controls catalog. Align security controls testing framework with industry standards. Improve testing processes through automation. Deliver and enhance security processes for external assessments. Maintain standard assessment questionnaires. Communicate recommendations for security program improvements. Qualifications: 3 years of experience with client due diligence and audit requests. 5 years of experience in Information Security. Experience with GRC tooling and automation. Familiarity with common security frameworks and standards. Knowledge of cybersecurity regulations. Experience as a security risk assessor is a plus. Bachelor's degree in a related field. Core Technologies: NIST Cybersecurity Framework (CSF) | GRC Tooling Contact Information: Locksey Larkins, Benefits: Learn More About Our Benefits Offerings Here EEO Statement: Learn more about our EEO policy here Seniority level Seniority level Mid-Senior level Employment type Employment type Full-time Job function Job function Information Technology Industries Software Development Referrals increase your chances of interviewing at Jobs via Dice by 2x Get notified about new Information Security Manager jobs in Greenwich, CT . Senior Director, Information Security - Governance, Risk and Compliance (GRC) Cybersecurity & Privacy - Cybersecurity Engineering Operational Technology - Senior - Consulting Cybersecurity & Privacy - Cybersecurity Engineering Operational Technology - Senior - Consulting Program Director, Fulton Reentry Community Center Luxury Fashion & Timepiece Manager - Jared - Outlets at Bergen Town Center Greenwich, CT 175,000.00- 250,000.00 2 days ago Westport, CT 225,000.00- 375,000.00 1 week ago Manager, Information Security Innovation Engineer (Automation and Innovation) Cyber Identity - CyberArk Senior Consultant Stamford, CT 118,700.00- 218,600.00 2 days ago Manager, Information Security Innovation Engineer (Automation and Innovation) Manager, Information Security Innovation Engineer (Automation and Innovation) Stamford, CT 128,000.00- 160,000.00 4 days ago Bethpage, NY 103,846.00- 145,386.00 2 months ago Cyber Identity - CyberArk Senior Consultant IT R&D US Applications Engineering Team Lead Yonkers, NY 150,000.00- 200,000.00 2 weeks ago Englewood Cliffs, NJ 20.00- 23.00 2 weeks ago Tax Legal Business Associate Manager TTC Director, Senior Cloud Security Architect Director, Senior Cloud Security Architect Director, Senior Cloud Security Architect Senior Specialist, Identity and Access Management Bethpage, NY 64,260.00- 105,570.00 1 week ago We're unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr

Headquartered in St. Augustine, FL, with offices and manufacturing facilities all around the globe, Amphenol CIT is one of the world's leading designers and manufacturers of high-performance wire, cable, and medical devices. We provide complete interconnect solutions to industries like Aerospace, Military & Defense Electronics, Space, Medical, Test & Measurement, and Industrial. Our talented team of employees worldwide helps bring movies to your seat on airplanes, deliver mission-critical information from drones to the command office, transfer heart rhythm to paper, route communications from space, connect power to downhill oil drills, and get planes back in the air faster. At Amphenol CIT, we make the amazing possible. Take the next step to become an integral part of our team by applying today and kickstart your journey with us. SUMMARY The Information Security Manager is responsible for safeguarding all IT infrastructure by monitoring security operations, responding to threats, remediating issues, and maintaining security applications and technologies. This role collaborates with the compliance team to ensure information security policies align with customer requirements and regulatory standards. The Information Security Manager continuously evaluates threats and risks to maintain a strong security posture, implements appropriate preventative controls and protocols, and partners with internal and external auditors to assess and enhance the security program. Additionally, this role is responsible for employee security training and the overall management of information security operations. ESSENTIAL JOB FUNCTIONS Partner with senior management, infrastructure managers, engineers, technicians, business stakeholders, customers, and vendors to develop, implement and maintain the enterprise information security strategy and roadmap. Continuously analyze all risk vectors on the attack surface to create a risk response plan, security posture, and help business understand and co-manage risks appropriately. Ensure the protection and operation of IT infrastructure and applications. Manage day-to-day security operations (threat detection, response, remediation, digital forensics, incident management, problem management, change management, vulnerability management, monitoring, and compliance). Lead and support continuous improvement projects to deploy, consolidate, enhance, and/or secure enterprise IT systems and services. Provide security expertise during daily infrastructure standup meetings to address emerging threats and operational security concerns. Ensure proper configuration of servers and endpoints, ensuring that they are maintained, monitored, updated, patched, secured; maintain uptime as close as possible to 99.90%. Manage the security of LAN, WAN, networking equipment (i.e. switches, routers, firewalls, access points, SDWAN) to ensure they are properly configured, maintained, monitored, updated, patched, secured, with uptime as close as possible to 99.90%. Ensure cloud infrastructure, including Microsoft tenant, Azure Active Directory (now Microsoft Entra ID), Teams, SharePoint, UCaaS (Fusion Connect, Net2Phone), and all other Microsoft productivity applications, maintaining uptime targets of 99.90%. Proactively monitor the infrastructure ecosystem to properly scale, grow, and secure in concert with business growth and new program development. Ensure proper backup and disaster recovery are in place and proactively monitored to achieve service level agreements (SLAs) for Recovery Point Objective (RPO) and Recovery Time Objective (RTO). Ensure the protection of data privacy. Manage and maintain controls in compliance with NIST 800 171 and CMMC 2.0 requirements. Support licensing compliance and licensing annual true-up activities. Support customer and regulatory compliance audits. Assist and adhere to ITGC compliance requirements. Oversee end-user access management throughout the organization. Conduct and assist with regularly scheduled user access reviews in Active Directory and other applications as needed. Collaborate with IT project managers on strategic and important projects. Maintain current and accurate documentation for the following: SOP (standard operating procedures), processes, contracts, software licensing, managed services, systems, and networks. Stay informed on emerging trends and technologies in IT, ensuring that the organization remains competitive and protective. *Other duties as required in support of the department and the company* SUPERVISOR RESPONSIBILITIES No direct report at this time but will have strong dotted line to supporting resources. QUALIFICATIONS To perform this job successfully, an individual must be able to perform each essential job function satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. EDUCATION and EXPERIENCE Bachelor's degree in Information Technology field or related field preferred, or a minimum of five (5) years of experience in information Security or IT. Five (5) years of progressive experience in professional IT position(s) required. Minimum of two (2) years of experience managing information security program is required. A strong technical background in a variety of IT areas is required. Experience with IT Service Management (ITSM) systems is strongly preferred. Industry experience in manufacturing, aerospace, military, and defense, or cable assembly is preferred. CERTIFICATES, LICENSES, REGISTRATIONS Strongly Preferred: CompTIA Security +, CISSP (Certified Information System Security Professional), CISM (Certified Information Security Manager), CEH (Certified Ethical Hacker), CompTIA A+, CompTIA Server+, CompTIA Network+, CompTIA PenTest+, CCSP (Certified Cloud Security Professional). JOB SKILLS Strong proficiency with network and cloud security management. Incident response, perform digital forensics, create, execute, and maintain incident response plan. Programming and scripting in PowerShell and SQL. Risk assessment and risk response plan. Penetration testing. User training. Critical thinking, technical curiosity, deliver results, and cross-functional collaboration. Proficient in Microsoft 365, Microsoft Azure, Microsoft Entra, Windows Remote Desktop, Active Directory administration, VMware vCenter, Cisco networking, server administration, LAN/WAN administration, UCaaS. Familiar with planning, purchasing, and sourcing. An energetic, forward-thinking, proactive, and creative individual with high ethical standards. Ability to be flexible and able to function comfortably in a fast-paced, constantly changing, and ambiguous environment. Strong Business Acumen with the ability to understand the business and be able to align IT strategies with business objectives, as well as communicate the value of IT initiatives to business leaders. Positive attitude with a strong sense of urgency and ownership of quality work deliverables. PHYSICAL DEMANDS While performing the duties of this job, the employee must be able to be stationary for prolonged periods working on a computer. The employee regularly required to use hands to finger, handle or feel, and talk or hear. The employee frequently required to reach with hands and arms. The employee required to stand and walk. The employee must occasionally lift and/or move up to 20 pounds. Specific vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception, and the ability to adjust focus. WORK ENVIRONMENT The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Work performed in a normal office environment with minimal physical risks involved. The noise level in the work environment is low to moderate. ENVIRONMENTAL POLICY Carlisle Interconnect Technologies is dedicated to identifying and reducing the environmental impact of its operations, activities, and products. It is our commitment to comply with all applicable laws and other regulatory requirements concerning the environment. We are committed to preventing pollution and continually improving our environmental performance in all our global operations. This will be achieved through a comprehensive Environmental Management System that provides the framework for setting and reviewing environmental objectives and targets of Carlisle Interconnect Technologies. PERSONAL PROTECTIVE EQUIPMENT REQUIREMENTS ASTM F-2412-2005, ANSI Z41-1999, or ANSI Z41-1991 rated safety toe shoes in specific areas. Clear ANSI Z87.1 safety-rated glasses in specific areas. Hearing protection, in specific locations. Ability to comply with JSA in specific areas. EXPORT COMPLIANCE DISCLAIMER This position includes access or potential access to ITAR and/or EAR technical data. Therefore, candidates will need to qualify as a US Person which is defined as a US Citizen, or a Permanent Resident (Green Card Holder). TRAVEL 5% - 25% AMPHENOL CIT RESERVES THE RIGHT TO MODIFY, INTERPRET, OR APPLY THIS JOB DESCRIPTION IN ANY WAY THE COMPANY DESIRES. THIS JOB DESCRIPTION IN NO WAY IMPLIES THAT THESE ARE THE ONLY DUTIES, INCLUDING ESSENTIAL DUTIES, TO BE PERFORMED BY THE EMPLOYEE OCCUPYING THIS POSITION. THIS JOB DESCRIPTION IS NOT AN EMPLOYMENT CONTRACT, IMPLIED OR OTHERWISE. THE EMPLOYMENT RELATIONSHIP REMAINS "AT-WILL." THE AFOREMENTIONED JOB REQUIREMENTS ARE SUBJECT TO CHANGE TO REASONABLY ACCOMMODATE QUALIFIED DISABLED INDIVIDUALS. #J-18808-Ljbffr

Information Security Manager Austin, TX 6+ Months Job Description Our Direct Client is seeking an experienced, full-time, on-site, dedicated Candidate, with skills and expertise as described in below requirement. Responsibilities: Client is seeking an Information Security Manager that serves as a liaison between IT architects and information security teams and also coordinates with information system owners and common control providers on the allocation of security controls as system-specific, hybrid, or common controls. In addition, the Candidate, in close coordination with information security officers, advise authorizing officials, the chief information officer, senior IT and security staff, on a range of security-related issues including establishing information system boundaries, assessing the severity of weaknesses and deficiencies in the information system, plans of action and milestones, risk mitigation approaches, security alerts, and potential adverse effects of identified vulnerabilities. Required Skills and Experience: Required 5 years - Proven work experience in security architecture, demonstrating solutions delivery, principles and emerging technologies - designing and implementing security solutions. This includes continuous monitoring and making improvements to those solutions Required 5 years - Experience consulting and engineering in the development and design of security best practices and implementation of solid security principles across the organization, to meet business goals along with customer and regulatory requirements Required 5 years - Proven expertise in security considerations of cloud computing: This includes data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DoS attacks Required 5 years - Identity and access management (IAM) - the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources. Required 5 years - Knowledge and experience working with relevant National Institute of Standards and Technology (NIST) standards Required 5 years - Knowledge and experience working with ISO27001 - specifications for a framework of policies and procedures that include all legal, physical and technical controls involved in an organization's risk management Required 5 years - Experience delivering/managing Identity and access management (IAM) solutions - the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources Required 5 years - Experience working with security management tools (e.g., vulnerability scanners, file integrity monitoring, configuration monitoring, etc.) and perimeter technologies (e.g., router, firewalls, web proxies and intrusion prevention, etc.) Required 5 years - Knowledge of configuration management, change control/problem management integration, risk assessment and acceptance, exception management and security baselines (e.g. CIS Baselines, NIST, vendor security technical implementation guides, etc.) Required 5 years - Strong awareness of networking and internet protocols, including TCP/IP, DNS, SMTP, HTTP and distributed networks Required 5 years - Knowledge of web services, API, REST and RPC Required 5 years - Ability to resolve complex security issues in diverse and decentralized environments; to learn, communicate, and teach new information and security technologies; and to communicate effectively Required 5 years - Excellent communication and organizational skills, and the ability to stay focused on completing tasks and meeting goals within a busy workspace Required 5 years - Extensive skill in effective verbal and written communications with other computer professionals, clients, and stakeholders Required 5 years - Knowledge of software development life cycle methodologies Required 5 years - Ability to analyze and problem solve Required 5 years - Ability to establish and always maintain effective and professional working relationships with others in the course and scope of conducting business Required 5 years - CISSP-ISAAP or equivalent certification Required 5 years - Ability to obtain required certification within 6 months and maintain approved baseline certification for position (i.e. CISSP-ISAAP or equivalent) Required 4 years - Graduation from an accredited four-year college or university with major coursework in information technology security, computer information systems, computer science, management information systems, or a related field is generally preferred. Preferred 1 years - GSEC, CEH, CISA, CCSP desired Preferred 1 years - Certification as an AWS Solutions Architect, Cloud Security Certification, and/or OpenStack Administrator Certification a plus. (Other cloud-related certification also a plus) 800 Corporate Drive, Suite 301-500 Stafford, VA, 22554 Phone - 1 ( Fax - 1 ( #J-18808-Ljbffr

1. Client Data Protection & Compliance
   
   
   • Design and enforce policies, procedures, and technical safeguards that secure client information from unauthorized access, disclosure, or misuse.
   • Stay current on data privacy regulations (e.g., GDPR, CCPA) and industry standards (e.g., ISO 27001, SOC 2), incorporating them into organizational processes.
   • Oversee and maintain data classification protocols, ensuring appropriate access controls and encryption methods are applied.
2. Threat Intelligence & Vulnerability Management
   
   
   • Establish a comprehensive threat intelligence program, monitoring emerging risks and industry trends that could impact clients' or the organization's security posture.
   • Conduct routine vulnerability assessments, penetration tests, and security audits, prioritizing remediation efforts based on criticality.
   • Collaborate with cross-functional teams (e.g., DevOps, Network Engineering) to implement and validate fixes or security upgrades.
3. Incident Response & Crisis Management
   
   
   • Develop and continuously refine the Incident Response Plan (IRP), outlining clear processes for detecting, containing, and remediating security breaches.
   • Coordinate tabletop exercises and real-world simulations to test the IRP, training staff to respond effectively in high-stress scenarios.
   • Serve as the primary point of contact during security incidents, liaising with external agencies (law enforcement, regulatory bodies) as necessary.
4. Security Architecture & Best Practices
   
   
   • Work with solution architects and system administrators to integrate robust security controls into infrastructure, software, and cloud environments.
   • Evaluate and recommend new security products, tools, and services that enhance the organization's threat detection and prevention capabilities.
   • Enforce secure coding practices, hardening standards, and network segmentation protocols that align with evolving threats.
5. Governance, Risk & Compliance (GRC)
   
   
   • Lead security risk assessments, identifying and documenting vulnerabilities, threats, and overall risk exposure to client data.
   • Define and track security metrics (KPIs), reporting progress, gaps, and action plans to executive leadership.
   • Oversee internal and external security audits, ensuring timely completion of any required corrective measures.
6. Team Leadership & Collaboration
   
   
   • Manage a team of security analysts, engineers, and incident responders, providing coaching, mentorship, and clear performance objectives.
   • Foster a culture of security awareness and accountability throughout the organization, conducting regular training sessions for all staff.
   • Coordinate with third-party vendors, managed security service providers, and consultants to strengthen the organization's security ecosystem.

• Education & Experience
  
  
  • Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or related field (or equivalent experience).
  • 5+ years of hands-on experience in information security, including roles in threat intelligence, GRC, and/or incident response.
  • Experience working within heavily regulated industries (e.g., finance, healthcare, government) is highly desirable.
• Technical Skills
  
  
  • Proficiency with SIEM platforms (e.g., Splunk, QRadar), endpoint protection suites, and vulnerability management tools (e.g., Nessus, Qualys).
  • In-depth knowledge of security frameworks (NIST CSF, ISO 27001, COBIT) and compliance standards (PCI-DSS, HIPAA, SOC 2).
  • Hands-on expertise in cloud security (AWS, Azure, GCP) and containerization platforms (Kubernetes, Docker) is a plus.
• Certifications
  
  
  • Relevant certifications such as CISSP, CISM, CRISC, or GIAC (GSEC, GCIA, GCIH) strongly preferred.
• Soft Skills
  
  
  • Exceptional problem-solving and analytical abilities, with a keen eye for detail.
  • Excellent communication and presentation skills for both technical and executive audiences.
  • Proven track record of managing diverse teams and collaborating effectively across departments.

• Integrity : Upholds the highest ethical standards in protecting sensitive client data.
• Leadership : Inspires trust and confidence, fostering a culture of teamwork, accountability, and continual learning.
• Adaptability : Stays agile in a dynamic threat landscape, quickly pivoting security strategies as new risks emerge.
• Strategic Mindset : Balances day-to-day operational demands with long-term security vision and innovation.

• Competitive Compensation : Commensurate with experience, plus potential bonus structures.
• Comprehensive Benefits : Medical, dental, vision, and retirement plan options.
• Professional Growth : Training allowances, continuing education support, and clear career advancement paths.
• Impactful Work : Play a pivotal role in safeguarding clients' data and reputations, contributing to the organization's broader mission of secure service delivery.