Job Description

As a IT Security Services Manager, your main duty will be to oversee and enhance the information security measures of our clients. You will serve as a strategic consultant, providing expert advice on cybersecurity threats, regulatory compliance, and security best practices. This role includes developing, implementing, and managing customized security programs for each client.

Your role:

• Security Strategy and Leadership: Assist with development and implement comprehensive security strategies for clients, aligned with their business objectives and risk tolerance.
• Provide executive-level guidance and reporting to clients' leadership teams on cybersecurity matters.
• Stay current with emerging cybersecurity trends, threats, and regulatory changes to inform strategic decisions.
• Risk Management: Conduct risk assessments and vulnerability analyses to identify and prioritize security risks.
• Assist with the development and maintain risk management frameworks and processes.
• Advise clients on risk mitigation strategies and assist in the development of risk treatment plans.
• Compliance and Governance: Ensure clients comply with relevant regulatory requirements, industry standards, and internal policies.
• Assist with the development and maintain security policies, procedures, and guidelines.
• Conduct routine security audits and assessments to ensure compliance and identify areas for improvement.
• Incident Response and Management: Assist with the development and implementation of incident response plans and procedures.
• Provide leadership during security incidents, coordinating response efforts and communicating with stakeholders.
• Conduct post-incident analysis to identify root causes and implement preventive measures.
• Security Awareness and Training: Leverage best in class solutions to deliver security awareness programs and training sessions for clients' employees.
• Promote a culture of security awareness and best practices across client organizations.
• Technical Oversight: Oversee the implementation and management of security technologies and tools.
• Collaborate with IT teams to ensure security controls are integrated into clients' infrastructure and applications.
• Conduct security assessments of third-party vendors and partners.
• Client Relationship Management: Build and maintain strong relationships with clients, acting as a trusted advisor on cybersecurity matters.
• Regularly update clients on security posture, emerging threats, and ongoing initiatives.
• Understand clients' business goals and customize security programs to meet their specific needs.

What you’ve got:

• At least 5 years of experience in information security, with a minimum of 2 years in a leadership role.
• Preferred certifications such as CISSP, CISM, CISA, or equivalent.
• Familiarity with cybersecurity frameworks, standards, and regulations (e.g., NIST, ISO 27001, GDPR, HIPAA).
• Demonstrated experience in developing and implementing security strategies and programs.
• Strong grasp of risk management principles and methodologies.
• Excellent communication and presentation skills, able to convey complex security concepts to non-technical stakeholders.
• Ability to work independently and manage multiple client engagements simultaneously.
• Strong problem-solving and analytical abilities.
• Experience with security technologies such as IDS/IPS, MDR, SIEM, firewalls, and endpoint protection solutions.

To find more great tech-centric jobs, please visit www.phoenixstaff.com.