Information Security Manager

About the job

Job Title: Information Security Manager - Managed Security Services Provider (MSSP)

What We Do:

Network Right is on a mission to create a human-centric, innovative, next-generation world of IT. We are disrupting the IT service industry by offering custom solutions to each individual client. At Network Right, we’re bridging the gap between IT and People by offering unique support based on the needs of growing businesses, and making employee lives easier through technology. As we continue to grow, we are seeking a highly skilled and experienced Information Security Officer to join our team and provide strategic cybersecurity guidance to our clients.

Why Join Network Right:

You’ll get exposure to a multitude of IT systems, build networks and connections, and test and implement the latest and greatest technology. You’ll also be involved in strategic tech stack and project planning. In addition, you’ll be part of a passionate team supporting businesses with offices all around the world. And of course, you’ll be helping companies of all sizes work more efficiently by solving real world IT problems with flexible solutions.

We’re an organization that really cares about its clients and its people, and we demonstrate this every day! We’re a close-knit team working together to build something exceptional/extraordinary. And of course, we’re all technology nerds who love interacting with people!

About This Job:

As an Information Security Manager, you will play a critical role in shaping our clients' cybersecurity strategy and ensuring the effectiveness of their security programs. You will act as a trusted advisor, working closely with our clients to understand their unique business needs, identify potential risks, and develop robust security measures to mitigate those risks. This is a remote position, offering flexibility and the opportunity to work with a diverse range of clients.

Responsibilities:

• Serve as the primary point of contact and subject matter expert for cybersecurity matters, providing services to multiple clients.

• Collaborate with clients to assess their current security posture, identify vulnerabilities, and develop comprehensive cybersecurity strategies.

• Conduct risk assessments, threat modeling, and gap analysis to identify potential security weaknesses and recommend appropriate remediation measures.

• Develop and implement Information Security policies, procedures, and standards tailored to each client's specific requirements and regulatory compliance needs.

• Advise clients on security best practices, industry standards, and emerging technologies to enhance their security posture.

• Provide guidance and recommendations on the selection, deployment, and management of security technologies and solutions.

• Conduct incident response planning and lead response efforts in the event of a security incident or breach.

• Stay up to date with the latest cybersecurity trends, threats, and regulatory requirements to ensure proactive and effective risk management.

Qualifications:

• Extensive experience (10+ years) in cybersecurity, including experience in a senior-level security role.

• Degree in Information Technology or CS (Advanced Degree Preferred)

• Relevant certifications such as CISSP, CISM, CRISC, or similar are highly desirable.

• Strong knowledge of cybersecurity frameworks, such as NIST, ISO 27001, or CIS Controls, and their practical implementation.

• In-depth understanding of security technologies, including firewalls, intrusion detection/prevention systems, SIEM, endpoint protection, etc.

• Familiarity with cloud security concepts and technologies (AWS, Azure, etc.).

• Proven track record of successfully developing and implementing cybersecurity strategies, policies, and procedures.

• Experience conducting risk assessments, vulnerability assessments, and penetration testing.

• Excellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to both technical and non-technical stakeholders.

• Experience implementing controls and mitigating risks related to GDPR, PCI, HIPAA and other Information Security and data privacy standards.

Benefits:

• The opportunity to work with some of the fastest growing technology companies

• Aggressive bonus and profit sharing program

• Company 100% covered rich insurance plans (health, dental, vision)

• 401(k) + 4% company matching available from your first day

• Flexible time off policy

• Home internet and mobile phone reimbursement

• Meal stipend

• Commuter benefits

• Annual Mid-Year and End of Year Events (in various locations such as Vegas, Lake Tahoe, etc.)