Information Security Manager

This is a fully remote position, open to applicants in Illinois, +2 more states.

📋 Description

• Lead and supervise Security Analysts responsible for the activities of the security operations center (SOC) and security administration.

• Oversee daily security monitoring, event triage, escalation management, and coordination of incident response.

• Set team priorities, assign tasks, and ensure the timely completion of operational security duties and remediation efforts.

• Develop and report on metrics, trends, and performance indicators related to security operations.

• Manage the administration of security tools, including monitoring platforms, endpoint protection, vulnerability management, and access controls.

• Handle user access administration, support privileged access reviews, and oversee periodic access validation processes.

• Ensure the effective functioning of security controls and track, escalate, and remediate any issues.

• Maintain team procedures, runbooks, and documentation pertaining to security operations and incident response.

• Assist in the implementation, tuning, and effectiveness assessment of security tools and monitoring capabilities.

• Direct incident detection and response efforts, including escalating issues to leadership when necessary.

• Collaborate with IT and system owners on containment, remediation, recovery, and lessons learned.

• Monitor emerging threats and vulnerabilities, directing team focus as needed.

• Aid in audit readiness, assessments, and operational response exercises.

• Manage, mentor, and develop Security Analysts, focusing on performance management and career growth.

• Encourage consistency in investigation, documentation, escalation, and communication practices.

• Work alongside the CISO on staffing, workload planning, and initiatives to improve operational maturity.

• Partner with Audit, Risk, Compliance, and IT teams to validate controls and address issues.

• Assist with third-party reviews and follow-up activities related to audits.

• Escalate significant risks, control deficiencies, and resource concerns to the CISO.

• Ensure compliance with organizational policies, standards, and regulatory requirements.

⛳️ Requirements

• A Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a closely related field is required, or equivalent professional experience.

• A minimum of 5 years of experience in information security, security operations, or a related technical discipline.

• At least 2 years of experience in a leadership role is required.

• Experience in the financial services sector or regulated industries is preferred.

• Previous experience leading or managing technical or security teams is preferred.

• Background in security operations, incident response, monitoring, access control, or vulnerability management is essential.

• Experience assisting with audits, control reviews, or compliance activities is preferred.

• Relevant certifications are preferred (e.g., CISSP, CISM, Security+, GIAC).

• Strong understanding of security operations processes, incident triage, escalation, and control management.

• Familiarity with security tools such as SIEM, endpoint protection, vulnerability management, firewalls, IAM, and ticketing systems.

• Knowledge of identity and access management concepts, including privileged access and access reviews.

• Working knowledge of enterprise environments (Windows, Linux, networking, cloud).

• Familiarity with frameworks such as NIST CSF and operational risk practices.

• Excellent leadership, communication, and organizational skills.

• Ability to manage competing priorities and drive operational results.

• Strong analytical and problem-solving abilities.

• Competence in communicating effectively with technical teams, leadership, auditors, and business stakeholders.

• Strong documentation skills and a keen attention to detail.

🏝️ Benefits

• Health insurance

• Training and development opportunities

• Flexible work environment