CrawlJobs Logo
Robert Half Logo Robert Half · IT - Administration

Information Security Manager

United States, Portland 150000.00 - 178000.00 USD / Year · Job Posted March 01, 2026
Apply Position
Job Link Share

Job Description

ongoing development and management of our security program, responsible for establishing and executing our enterprise information security strategy, ensuring governance, risk management, compliance, and operational excellence across all offices.

Job Responsibility

  • Develop and maintain security strategy, policies, and risk governance aligned with business objectives
  • Ensure compliance with NIST 800-171, CMMC, and client-driven requirements
  • Manage identity and access governance (hybrid AD/Entra), enforcing least privilege and Zero Trust principles
  • Optimize and integrate security technology stack (Fortinet, Microsoft Defender E5, Arctic Wolf MDR/SOCaaS, Intune/MEM, KnowBe4)
  • Lead security awareness, culture, and firmwide training initiatives

Requirements

  • 8+ years in information security
  • Experience managing enterprise security programs and operational security tools
  • Demonstrated expertise with NIST 800-171, CMMC, MDR/SOC providers, and enterprise tooling
  • Excellent executive communication, collaboration and stakeholder management skills
  • Minimum of 8 years of experience in information security
  • Proven expertise in managing enterprise security programs and implementing NIST 800-171 compliance.
  • Strong knowledge of cybersecurity tools and frameworks, including Microsoft Defender and Fortinet.
  • Demonstrated experience with risk management, governance, and compliance platforms.
  • Ability to balance security needs with operational efficiency and creative design processes.
  • Effective collaboration skills to work with leadership, project teams, and external security providers.

What we offer

  • MDV
  • 401k +match
  • bonus
Robert Half - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Information Security Manager

8 matching positions

Information Security Manager

As Information Security Manager, you will lead the strategy and delivery of init...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years’ experience in senior cybersecurity or information security roles
  • Leadership experience within a complex, multinational business
  • Experience managing global teams across multiple regions
  • Strong knowledge of ISO 27001, NIST, CIS Controls or similar frameworks
  • Proven experience in security operations, risk management and compliance
  • Experience handling security incidents and crisis management
  • Strong commercial awareness and budget management experience
  • Excellent communication and stakeholder management skills, including senior leadership exposure
  • Strong understanding of IT infrastructure, cloud technologies and enterprise systems
  • Experience managing third-party vendors and technology partners
Job Responsibility
Job Responsibility
  • Lead and deliver the information security strategy aligned to business goals
  • Develop and maintain security frameworks, policies and standards
  • Oversee risk management, threat assessment and vulnerability programmes
  • Ensure compliance with ISO 27001, ISO 42001, GDPR and other relevant frameworks
  • Manage security operations including incident response, monitoring and investigations
  • Partner with IT, engineering, legal and business teams to embed security best practice
  • Lead internal/external audits, assessments and remediation plans
  • Manage third-party and vendor security risk programmes
  • Build, mentor and lead a high-performing security team
  • Provide executive reporting on security risks, metrics and improvement plans
What we offer
What we offer
  • health
  • finances
  • fitness
  • travel
  • tech
  • Fulltime
Read More
Arrow Right

Information Security Manager

The Information Security Manager at NTT DATA is responsible for optimizing cyber...
Location
Location
Romania , Sibiu
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity or related field
  • Minimum 5-7 years of experience in IT Cybersecurity
  • Proficient handling of specific tools like EDRs, SIEMs and network devices such as firewalls, IDS/IPS
  • Very good knowledge of Cloud Security solutions in Azure. Other Cloud variants can be a plus
  • Knowledge of security models, industry best practices and generally accepted information security principles
  • Hands-on experience with SIEM systems like Microsoft Sentinel- Palo Alto XSIAM, Splunk and other are an advantage
  • Technical understanding of common Cloud IT systems such as EntraID, O365, AD, Exchange
  • Understanding of cybersecurity domains such as network security, EDR, anomaly detection
  • Understanding of MITRE ATT&CK Framework
  • Ability to perform network traffic analysis and design use cases based on the findings
Job Responsibility
Job Responsibility
  • Building strong, meaningful “trusted advisor” relationships with clients on behalf of NTT
  • Client-facing and internal communication
  • Support in optimizing detection, response, mitigation, and reporting of cybersecurity threats within customer environment
  • Develop and optimize detections and automations in Cybersecurity MDR (MS Sentinel) solutions
  • Design and improve Cybersecurity processes, procedures, and training programs aligned with organizational risk and industry standards.
  • Act as Subject Matter Expert (SME) in Cybersecurity, with a strong operational focus on MDR solutions
  • Act as main Trusted Cybersecurity Advisor for one or more customers
  • Confer expertise in areas of Network/Perimeter/Cloud Sercurity, SecOps, Threat Intelligence and Detection capabilities
  • Propose recommendations for enhancing the customer’s IT security posture and reducing identified risks
  • Staying updated with the latest security trends and technologies to adapt strategies accordingly
What we offer
What we offer
  • Private Health Insurance
  • Sponsored certifications, trainings and top e-learning platforms
  • Individual coaching sessions
  • Accredited Coaching School
  • Epic parties or themed events
Read More
Arrow Right

Information Security Manager

This is a Senior-level Security Manager position. We are seeking an experienced ...
Location
Location
United States
Salary
Salary:
130000.00 - 160000.00 USD / Year
profocustechnology.com Logo
ProFocus Technology
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in information security
  • 3+ years of people leadership or technical lead experience
  • Strong knowledge of cybersecurity frameworks, governance, and security architecture
  • Hands-on experience with enterprise security tools in cloud, on-prem, and hybrid environments
  • CISSP, CISM, or similar certifications strongly preferred
  • Authorization to work in the US is a precondition of employment - we do not sponsor work visas
Job Responsibility
Job Responsibility
  • Oversee enterprise-wide cybersecurity and information risk management initiatives
  • Develop and execute security strategies, policies, and programs that protect corporate systems, data, and customer information across cloud, on-prem, and hybrid environments
  • Manage and mentor the Information Security team, vendors, and contractors
  • Design and implement enterprise-wide security strategies, frameworks, and policies
  • Ensure compliance with regulatory and security frameworks, including NIST, ISO, PCI, SOC 2, GDPR, and SOX
What we offer
What we offer
  • medical
  • dental
  • vision
  • 401k
  • education reimbursement
  • sick leave
  • employer-paid short-term disability and life insurance
  • Fulltime
Read More
Arrow Right

Information Security Manager

As Information Assurance / Security Manager, you will play a key role in deliver...
Location
Location
United Kingdom , Wigan
Salary
Salary:
Not provided
blenheimchalcot.com Logo
Blenheim Chalcot
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Knowledge and experience of information security management and risk management
  • Understanding of technical security controls in an IT environment
  • Awareness of data protection principles and compliance
  • Incident response experience for security incidents and events
  • Strong written and oral communication skills
  • Experience within the UK public sector (central/local government, healthcare, blue light services) is a strong plus
  • Familiarity with frameworks and technology stacks such as Azure, Microsoft Security solutions, SASE platforms
  • Relevant certifications (e.g., CISM, CISSP, CCSP, CRISC, CISA)
  • Knowledge of GDPR / DPA 2018 and DPIAs
Job Responsibility
Job Responsibility
  • Assessing, approving, and advising on all information assurance and security matters for Agilisys and our clients
  • Implementing and maintaining information security management processes aligned to ISO 27001, supporting audits and continuous improvement
  • Managing compliance with multiple security standards and frameworks applicable to the UK public sector, including Cyber Essentials Plus, NHS DSPT, PCI DSS, NCSC CAF, PSN CoCo
  • Performing risk management activities and supporting security incident response
  • Collaborating with project and programme teams to identify solutions to security challenges
  • Overseeing vulnerability management efforts and ensuring security service delivery remains compliant
Read More
Arrow Right

Information Security Manager

As a leading professional services firm, we are seeking a highly skilled Informa...
Location
Location
Salary
Salary:
Not provided
ogier.com Logo
Ogier
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in information security management, business continuity planning and risk management, ideally within a professional services or legal firm environment
  • Experience supporting and/or maintaining ISO 27001 certification and managing an ISMS
  • Strong knowledge of business impact assessments, disaster recovery, RTOs/RPOs, and system criticality mapping
  • Excellent communication and interpersonal skills, with the ability to deliver effective training and collaborate across global teams
  • Analytical and detail-oriented, with a proactive approach to risk identification and mitigation
  • Professional certifications such as CISSP, CISM, ISO 27001 Lead Implementer/Auditor, CBCP, or equivalent are desirable
Job Responsibility
Job Responsibility
  • Lead the development, update and ongoing management of the firm’s Business Continuity Plans (BCP), ensuring it remains current and effective across all jurisdictions
  • Organise and conduct BCP tests with local business continuity groups, including documentation, reporting and follow-up of test outcomes
  • Provide business continuity training and run targeted group business continuity sessions for employees
  • Undertake Business Impact Assessments (BIAs) with various teams to ensure understanding and documentation of Recovery Time Objectives (RTOs), Recovery Point Objectives (RPOs), system criticality and dependencies, supporting disaster recovery planning
  • Manage and complete information security assessments and Due Diligence Questionnaires (DDQs) received from clients
  • Support outgoing third party assessments, onboarding and risk reviews, including working directly with third parties to address security requirements
  • Oversee third party risk management from a security perspective, ensuring risks are documented, reported and mitigated as appropriate
  • Support the firm’s ongoing ISO 27001 certification and framework, including continuous improvement of the ISMS (Information Security Management System)
  • Develop and maintain the firm’s information security policies and procedures in line with industry best practice and regulatory requirements across all jurisdictions
  • Undertake clause-based auditing, policy reviews and control monitoring as part of the ISO 27001 role
Read More
Arrow Right

Information Security Manager

As a leading professional services firm, we are seeking a highly skilled Informa...
Location
Location
Hong Kong , Hong Kong
Salary
Salary:
Not provided
ogier.com Logo
Ogier
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in information security management, business continuity planning and risk management, ideally within a professional services or legal firm environment
  • Experience supporting and/or maintaining ISO 27001 certification and managing an ISMS
  • Strong knowledge of business impact assessments, disaster recovery, RTOs/RPOs, and system criticality mapping
  • Excellent communication and interpersonal skills, with the ability to deliver effective training and collaborate across global teams
  • Analytical and detail-oriented, with a proactive approach to risk identification and mitigation
  • Professional certifications such as CISSP, CISM, ISO 27001 Lead Implementer/Auditor, CBCP, or equivalent are desirable
Job Responsibility
Job Responsibility
  • Lead the development, update and ongoing management of the firm’s Business Continuity Plans (BCP), ensuring it remains current and effective across all jurisdictions
  • Organise and conduct BCP tests with local business continuity groups, including documentation, reporting and follow-up of test outcomes
  • Provide business continuity training and run targeted group business continuity sessions for employees
  • Undertake Business Impact Assessments (BIAs) with various teams to ensure understanding and documentation of Recovery Time Objectives (RTOs), Recovery Point Objectives (RPOs), system criticality and dependencies, supporting disaster recovery planning
  • Manage and complete information security assessments and Due Diligence Questionnaires (DDQs) received from clients
  • Support outgoing third party assessments, onboarding and risk reviews, including working directly with third parties to address security requirements
  • Oversee third party risk management from a security perspective, ensuring risks are documented, reported and mitigated as appropriate
  • Support the firm’s ongoing ISO 27001 certification and framework, including continuous improvement of the ISMS (Information Security Management System)
  • Develop and maintain the firm’s information security policies and procedures in line with industry best practice and regulatory requirements across all jurisdictions
  • Undertake clause-based auditing, policy reviews and control monitoring as part of the ISO 27001 role
  • Fulltime
Read More
Arrow Right

Information Security Manager

The Information Security Manager will lead a team to develop and implement secur...
Location
Location
Romania , Cluj
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Cybersecurity, Computer Science, or related field
  • Minimum 5-10 years of experience in a similar role
  • Proven experience managing cybersecurity teams, with strong people leadership, coaching, and performance management skills
  • Deep understanding of security technologies including SIEM, firewalls, IDPS, antivirus, encryption, and vulnerability management tools
  • Ability to align security initiatives with business goals and translate complex technical risks into actionable business decisions
  • Excellent ability to communicate security concepts to technical and non-technical audiences, including senior leadership
  • Strong analytical and decision-making skills to address complex security challenges and incidents
  • Familiarity with security frameworks and regulations such as ISO 27001, GDPR, NIST, and CIS
  • Experience in managing security projects and initiatives across cross-functional teams
  • Demonstrated experience in information security leadership roles within global IT environments
Job Responsibility
Job Responsibility
  • Leadership & Team Management: Manage, mentor, and develop a team of Information Security Analysts, ensuring high performance, continuous learning, and alignment with organizational goals
  • Security Strategy & Governance: Define and implement the information security strategy, policies, and standards in alignment with business objectives and regulatory requirements
  • Risk Management: Oversee risk assessments, vulnerability management, and threat analysis to proactively identify and mitigate security risks
  • Incident Response Oversight: Lead the incident response process, ensuring timely investigation, containment, and remediation of security incidents
  • Compliance & Audit: Ensure adherence to relevant frameworks and regulations (e.g., ISO 27001, GDPR, NIST), and support internal and external audits
  • Security Architecture & Operations: Collaborate with IT and other departments to integrate security controls into systems, networks, and applications
  • Reporting & Metrics: Develop and present security metrics, risk dashboards, and incident reports to senior leadership and stakeholders
  • Continuous Improvement: Stay current with emerging threats, technologies, and best practices, and drive continuous improvement in security posture
  • Stakeholder Engagement: Act as a key point of contact for internal and external stakeholders on security matters, providing guidance and expertise
What we offer
What we offer
  • Smooth integration and a supportive mentor
  • Pick your working style: choose from Remote, Hybrid or Office work opportunities
  • Projects have different working hours to suit your needs
  • Sponsored certifications, trainings and top e-learning platforms
  • Private Health Insurance
  • Individual coaching sessions or accredited Coaching School
  • Epic parties or themed events
Read More
Arrow Right

Sr. Manager, Information Technology and Information Security Risk

Sr. Manager, Information Technology and Information Security Risk Hybrid Work Sc...
Location
Location
United States , Reston
Salary
Salary:
Not provided
tier4group.com Logo
Tier4 Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Cybersecurity, Risk Management, or related fields (or equivalent work experience) preferred
  • 8–10 years of relevant experience in information security or risk management roles with experience in financial services, banking, payments, fintech, or related regulatory environments preferred
  • Experience with data analytics and visualization tools (e.g., Power BI, Tableau, or Python)
  • Experience working in a regulated financial services or technology environment
  • CRISC, CISSP, CISM, Security+ or CGEIT or similar certifications
Job Responsibility
Job Responsibility
  • Evaluate and provide independent challenge regarding the alignments of the organization’s IT and IS strategy with enterprise business objectives, risk appetite, and regulatory expectations
  • Review and assess the adequacy of information technology and security risk assessments across applications, infrastructure, and business processes
  • Partner with IT project teams to influence decisions related to technology architecture, cybersecurity controls, system implementations, and operational risk mitigation strategies
  • Evaluate new and existing systems, platforms, and SAAS integrations for cybersecurity risks and regulatory compliance impacts
  • Conduct third party and vendor security risk assessments, including review of SOC 1/SOC 2 reports, SIG questionnaires, penetration testing results, and remediation plans to ensure vendor information security practices align with OF expectations
  • Provide effective second-line oversight and credible challenge related to cybersecurity incidents, operational disruptions, and emerging technology risks, including analysis of potential impacts to customer data, financial systems, and regulatory obligations
  • Collaborate with business units and technology teams to identify, document, and monitor risks, ensuring remediation activities meet regulatory timelines and internal risk appetite
  • Oversee the implementation of information technology and security risk management policies and the Cyber-Security Incident Response Plan
  • Conduct cyber security awareness training and education through periodic email phishing tests, in-person and computer-based training, presentations to employees, and security related tabletop exercises
  • Monitor the status of remediation for IT and IS related issues and ensure that the remediation documentation is complete and adequate
  • Fulltime
Read More
Arrow Right