Overview
Skills
Job Details
Information Security Lead (Senior Manager, Information Security)
Overview
Our client has a global footprint delivering increasingly digital services to graduate program candidates and schools/universities around the world. They are a mission-driven organization, with a vision to be the global leader in ensuring every talented person can benefit from the best education for them. The organization s priority is to heighten its impact in promoting graduate education and attracting a qualified and diverse candidate pool from around the world. For this client, we are seeking a solid candidate to help lead their Information Security Engineering.
The Information Security Lead plays a critical role in safeguarding IT systems and applications. This role leads both internal and external resources to ensure the organization s evolving security needs are met. As a key member of the IT Operations team, the Information Security Lead helps shape architectural design by collaborating with colleagues in IT Operations to assess system risks and make recommendations to the Director, IT Operations. The role also partners closely with Legal and other stakeholders to provide strategic guidance on data governance, privacy, risk, and compliance - ensuring that systems and practices align with business goals and regulatory expectations.
Responsibilities:
- Identify requirements and manage the creation, implementation, documentation, and ongoing maintenance of IT security policies and procedures, aligning them with the strategic direction of the business.
- Coordinate security awareness program; manage communications and compliance across the organization; report results to Director, IT Operations on an annual basis.
- Manage security incident response plan and procedures; manage incident response activities in the event that a security incident is identified
- Build and oversee a threat and vulnerability management program, including network and systems security testing and reporting to management.
- Coordinate operational activities, as necessary, with other security and privacy functions, including Legal (data privacy), Operations (test security), and HR/Administration (personnel/facilities).
- Manage the selection, development, documentation, and deployment of IT security management and monitoring systems and tools.
- Evaluate and recommend IT security systems, architectures and AI practices.
- Assist in planning, testing, implementation, and review of hardware and software upgrades and modifications, including patches, Microsoft upgrades and hardware modifications.
- Act as a security consultant or lead on IT and data privacy/security projects.
- Serve as liaison with service providers and vendors on IT security related matters
- Coordinate annual 3rd party assessment of information systems.
- Develop and manage the IT asset security classification program.
- Assist in developing and implementing a formal security awareness training program for all personnel.
Minimum Requirements:
- Bachelor s degree in related field (e.g., MIS or CS); Or equivalent combination of education, skills, and experience.
- 5 years experience in the field of information technology and information security.
- CISSP certification.
- Experience with Microsoft OS and TCP/IP network security.
- In depth and demonstrated knowledge of LAN/WAN technologies, network protocol analysis, firewalls, intrusion detection systems, encryption and VPN technology, and security tools.
- Knowledge of computer viruses and computer security incident troubleshooting procedures.
- Knowledge of relevant security and compliance frameworks, standards and regulations.
- Strong project management skills and understanding how to manage the priorities of multiple stakeholders in a complex environment.
- Ability to work independently with minimal supervision and in a team setting, and across external and internal stakeholder groups.
- Ability to interact successfully with all levels of technical and non-technical staff.
- Ability to work in-office and remotely according to the company s hybrid work environment (three days per week in Reston office).
Desired Skills/Experience:
- 10+ years experience in the field of information technology and information security.
- PMP and/or Google Cloud PlatformM certification.
- SANS GIAC certified, CCNA, CCSP, MCSE: Security, MCSA: Security, and CompTIA+ Security certifications a plus.
- A motivated self-starter and strong problem solver.
- Professional demeanor with excellent customer service and team player orientation.
- Capable of working in a fast-paced, dynamically changing and team-oriented environment.
Our client offers:
- Comprehensive and locally competitive benefits (medical, dental, vision, 403b retirement program, and more!)
- Generous Paid-time Off
- Holiday Leave
- Hybrid Work Environment (3 days/week in office in Reston)
- Free parking
- Work for a mission-driven organization helping to develop the next generation of responsible leaders and change makers
- Opportunity to utilize your skills and professionally grow and develop
Envision yourself joining a team of smart thinkers that are resilient, adaptive and who take their values to heart. They work as a team and are committed to delivering high-quality products and services to work for a world where every talented person can benefit from the best education for them.
This is a full-time employee position working directly for our client. Their offices are in Reston VA, and they are looking for a Hybrid model where you would come in 3 days/week locked into Tuesday s, Wednesday s and Thursday s.
The compensation for this position is targeted from $140,000/yr. to $150,000/yr. plus great benefits.
Please do NOT APPLY if you are not willing and able to be in the office in Reston Virginia 3 days/week. REMOTE CANDIDATES WILL NOT BE CONSIDERED.
Please respond with your resume, your compensation requirements, and why you believe you would be a good fit for this position.
==
About AAJ Interactive Technologies:
AAJ Interactive Technologies, established in 1997 by cutting-edge technology executives, is a technology professional-services company supplying project-based consulting, staff augmentation, and recruiting services to leading firms throughout Metropolitan Washington, DC area.
We work differently from most of our competition. In our careers, we have been the ones doing the hiring (managing and mentoring large staffs in a corporate culture), and we have been the ones being hired (consulting in small and large roles alike). This unique perspective allows us to understand both sides of this business. We take the time to ensure our consultants/candidates will be successful where they are placed.
We believe that because of our principles we have succeeded where others have failed. The recruiting/technology space can be full of companies that are not really looking out for your interests ask around we re not one of them! We want you to succeed, and we ll do everything we can to help you do just that!