Information Security Manager

Location: Northeastern United States (Hybrid)
Employment Type: Full Time

Compensation:
Pay Range: $175000-$250000K

Description:
Collaborate with technology and risk management teams to enhance security performance.
Maintain a formal information security controls framework.
Represent cybersecurity controls to internal and external stakeholders.
Develop and refine processes for testing information security controls.
Manage metrics that report on key security control performance and risk.
Enhance responses to security-related assessments, audits, and examinations.
Evaluate security controls and recommend improvements.

Key Responsibilities:
Establish and maintain an information security controls catalog.
Align security controls testing framework with industry standards.
Improve testing processes through automation.
Deliver and enhance security processes for external assessments.
Maintain standard assessment questionnaires.
Communicate recommendations for security program improvements.

Qualifications:
3 years of experience with client due diligence and audit requests.
5 years of experience in Information Security.
Experience with GRC tooling and automation.
Familiarity with common security frameworks and standards.
Knowledge of cybersecurity regulations.
Experience as a security risk assessor is a plus.
Bachelor's degree in a related field.

Core Technologies:
NIST Cybersecurity Framework (CSF) | GRC Tooling

Contact Information:
Locksey Larkins,

Benefits:
Learn more about our benefits offerings here

EEO Statement:
Learn more about our EEO policy here

#LI-LL3