Information Security Manager
Position Type: Full-Time, Direct Hire
Location: Metairie, LA
Overview
Wheeler Staffing Partners is seeking an experienced Information Security Manager to join our client's team in Metairie, LA. The ideal candidate will serve as the process owner for all assurance activities related to the availability, integrity, and confidentiality of customer, business partner, employee, and organizational information. This role ensures compliance with the organization's information security policies and collaborates closely with executive management to define and manage acceptable risk levels. The Information Security Manager is responsible for establishing and maintaining a corporate-wide information security management program to protect the organization's information assets.
Responsibilities
Strategic Security Management:
- Develop and execute a comprehensive IT risk management program focused on information security and privacy.
- Maintain and enhance the client's Information Security Management Framework.
- Provide regular reports to organizational leaders on the status of the information security program as part of a strategic enterprise risk management initiative.
- Ensure compliance with relevant laws, regulations, and policies to mitigate risks and address audit findings.
- Collaborate with executive leadership to cultivate a cybersecurity culture throughout the enterprise.
- Provide strategic risk guidance for IT projects, including evaluating and recommending technical controls.
Policy, Training, and Compliance:
- Oversee the approval, training, and dissemination of security policies and practices to employees, contractors, and system users.
- Facilitate a metrics and reporting framework to measure program effectiveness, optimize resource allocation, and increase organizational security maturity.
- Manage the client's Cyber Hygiene Program, including employee training in the latest security awareness skills.
- Engage with external communities to benchmark and enhance information security practices and address emerging threats.
Risk Assessment and Incident Management:
- Monitor the external threat environment and advise stakeholders on appropriate responses to emerging threats.
- Identify, report, and control cyber incidents to minimize disruption and safeguard organizational data assets.
- Facilitate risk assessments and management processes in collaboration with business units.
- Develop, maintain, and test disaster recovery and business continuity plans and procedures with business lines.
Infrastructure and Program Development:
- Design and implement new information security infrastructure solutions in collaboration with other team members.
- Oversee vulnerability audits, penetration testing, and forensic IT audits to identify and address security risks.
- Manage initiatives to improve the company’s security posture, protect assets, and meet customer security requirements while balancing costs and productivity.
- Complete customer and vendor assurance risk assessments.
Collaboration and Leadership:
- Maintain strong working relationships with organizational leadership to align security practices across the enterprise.
- Participate in cross-functional committees to ensure consistent application of security policies and standards across technology projects, systems, and services.
Qualifications
Education and Experience:
- Bachelor's degree in Computer Science, Information Systems, Business Administration, or a technology-related field, or equivalent work experience.
- Minimum of seven (7) years of experience in risk management, information security, or related IT roles.
Certifications:
- CISSP, CISM, CISA, CRISC, GSEC, or similar certifications required.
- If CISSP certification is not currently held, it must be obtained within six months of hire.
Technical Expertise:
- Extensive experience in risk assessment, security monitoring, and system development lifecycles.
- Proficiency in network security principles, including firewalls, segmentation, endpoint security, access controls, vulnerability management, encryption, and cloud/vendor security management.
- Strong policy development and administration skills.
Skills and Competencies:
- Strong analytical and innovative thinking abilities.
- Effective verbal and written communication skills.
- Demonstrated ability to develop and manage security programs and initiatives.
Additional Information
Travel Requirements:
- Frequent travel to company or client locations, approximately 15% of the time.
Work Details:
- This position is full-time, exempt, and reports to the Vice President of Information Technology.
About Wheeler Staffing Partners
Wheeler Staffing Partners is a premier staffing agency dedicated to connecting talented professionals with exceptional organizations. We are committed to providing outstanding service to both our clients and candidates.