Job Description :
Information Security Manager – Contract to Perm
Atlanta, GA

The Information Security Manager will responsible for ensuring proper defenses for the protection against information security incidents are in place, as well as identifying, analyzing, communicating, and containing incidents if they occur. The Information Security Manager will act as a lead technical advisor and tollgate for IT and company projects, having a broad level of technical skills in multiple areas to ensure project security protections are utilized across the company. The Information Security Manager will operate as Subject Matter Expert (SME) in all areas of information security and will utilize that knowledge to maintain and improve the state of security for the organization.

Minimum Requirements
7+ years of experience in information security and network/system security required.
5+ years of experience in other IT functional areas such as Cisco, CheckPoint, Microsoft AD required
3+ years of experience with information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc
3+ years of experience handling digital certificates, issuing, revoking, etc.

Education Requirements
BS or MA in Computer Science, Information Security, or a related field preferred, or equivalent experience.

Responsibilities
Enhance the security of infrastructure, systems, and services through advisement to IT groups and business units on best practices for security designs and configurations.
Review and approve/reject requests for system and configuration changes related to security protections.
Review and approve/reject, and audit access for third parties into company networks and systems.
Assist with the review and correlation of network and firewall activity across networks to identify trends of unauthorized use.
Advise and mentor security engineers and operators on secure design and configuration practices to new and existing systems and infrastructure.
Participate in project review meetings, ensuring standard best practice designs are utilized, advising on specific corrections where needed.
Present and drive new security improvements and activities through the IT and business units.
Assist with the development of a security capable workforce, ensuring standardized training solutions are available to employees on a routine basis.
Manage digital certificate cloud services, assisting with the issuance of digital certificates.
Maintain visibility into the management of Operations and ServiceDesk teams to ensure adherence to established procedures and protocols.
Ensure the confidentiality, integrity and availability of the data and systems residing on or transmitted to/from/through the organization''s systems.
Act as Subject Matter Expert (SME) in all areas of information security.
Identify potential processes that may require enhanced security controls & develop a remediation plan.
Assess risks to the company environment, making recommendations for improvements as needed.
Review and audit configuration changes on all infrastructure devices weekly.
Work with various IT and business unit teams to establish new processes for secure operations

Additional skills and knowledge
Technical expertise in network, security, server, directory services (MS AD) and cloud systems (Azure/AWS
Technical expertise in CheckPoint Intrusion Prevention System (IPS)/Intrusion Detection System (IDS), Cisco and CheckPoint firewalls, Cisco router and switch devices, and associated management tools.
Thorough understanding and expertise in PKI and public Certificate Authority (CA) services and operations.
Thorough understanding of security frameworks such as ISO27002 and/or NIST, as well as common security controls.
Thorough understanding of vulnerability management tools and services.
Ability to react quickly, decisively, and deliberately high-impact situations.
Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
An ability to effectively influence others to modify their opinions, plans, or behaviors.
An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business while maintaining a secure environment.