Duration: Direct Hire - FTE
Location: 5x/week onsite in Eighty Four, PA
Salary Range: $150,000-180,000
Exact compensation may vary based on several factors, including skills, experience, and education.
Must Haves:
- 8+ years of experience managing the technical execution of a cybersecurity program, including the utilization of Security Information and Event Management (SIEM), Security Orchestration and Automated Response (SOAR), eDiscovery, Forensics, or Active Directory
- Experience supporting and managing international IT/IS teams
- Experience in developing information security programs, policies, and procedures, including successful implementations in large enterprise environments
Plusses:
- Experience with Payment Card Industry (PCI), Personally Identifiable Information (PII), COBIT/ISO
- CISSP certification
Day to Day -
Insight Global is looking for a Senior Manager of Information Security who is responsible for designing, creating, implementing, and overseeing strategies and programs to mitigate information security risks across the company. This role involves leading the enterprise-wide information security and assurance function, ensuring that the confidentiality, integrity, and availability of information systems and assets are appropriately identified and managed. This role will establish and implement strategies that have a impact on business results, aligning with the organization's strategic objectives.
Key Responsibilities:
- Provide strategic leadership while interacting with business leaders (including Legal and other business leaders) to ensure that Information Security programs address business needs for protection and proactively identify threats.
- Develop, implement, and operate relevant strategies to protect, detect, and respond to cyber threats within the enterprise.
- Maintain an effective information security awareness training program, a broad threat protection portfolio, intrusion detection capability, and incident response processes for proactive reaction to information security breaches.
- Develop and implement information security standards, processes, procedures, and guidelines for the enterprise.
- Manage data outputs of security monitoring tools and proactively drive appropriate security measures to protect the enterprise and end users.
- Serve as a subject matter advisor and point of escalation, becoming actively involved as required to meet schedules and resolve highly complex security problems.
- Proactively manage issues, including timely resolution and identification of remediation opportunities. Identify and resolve systemic issues to prevent recurrence.
- Work with system administrators and application developers to audit, monitor, and validate their environment's security, including conducting gap analysis and other comprehensive internal assessments of existing systems to improve the security infrastructure and mitigate risks.
- Have direct responsibility for PCI security deliverables.
- Establish, document, and distribute security incident response and escalation procedures to ensure timely and effective handling of all situations.