22 information technology infrastructure and security manager Jobs in austin, tx
SORT BY
B
U
U
S
U
S
S
G
O
D
S
I
P
F
H
G
B
B
G
M
W
Information Security Manager
$107k-130k (estimate)
Full Time
1 Day Ago
Bmtech group is Hiring an Information Security Manager Near Austin, TX
Company Description
Job Description
Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.
Translate proposed capabilities into technical requirements.
Assess and design security management functions as related to cyberspace.
Qualifications
All your information will be kept confidential according to EEO guidelines.
Job Description
- Design, build and implement enterprise-class security systems for a production environment
- Align standards, frameworks and security with overall business and technology strategy
- Identify and communicate current and emerging security threats
- Design security architecture elements to mitigate threats as they emerge
- Create solutions that balance business requirements with information and cyber security requirements
- Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
- Define and prioritize essential system capabilities or business functions required for partial or full system restoration after a catastrophic failure event.
- Define appropriate levels of system availability based on critical system functions and ensure that system requirements identify appropriate disaster recovery and continuity of operations requirements to include any appropriate fail-over/alternate site requirements, backup requirements, and material supportability requirements for system recover/restoration.
- Develop/integrate cybersecurity designs for systems and networks with multilevel security requirements or requirements for the processing of multiple classification levels of data.
- Document and address organization's information security, cybersecurity architecture, and systems security engineering requirements throughout the acquisition life cycle.
- Employ secure configuration management processes.
- Ensure that acquired or developed system(s) and architecture(s) are consistent with organization's cybersecurity architecture guidelines
- Identify and prioritize critical business functions in collaboration with organizational stakeholders.
- Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
- Provide advice on project costs, design concepts, or design changes.
- Provide input on security requirements to be included in statements of work and other appropriate procurement documents.
- Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
- Define and document how the implementation of a new system or new interfaces between systems impacts the security posture of the current environment.
- Analyze candidate architectures, allocate security services, and select security mechanisms.
- Develop a system security context, a preliminary system security Concept of Operations (CONOPS) and define baseline system security requirements in accordance with applicable cybersecurity requirements.
- Evaluate security architectures and designs to determine the adequacy of security design and architecture proposed or provided in response to requirements contained in acquisition documents.
- Write detailed functional specifications that document the architecture development process.
- Analyze user needs and requirements to plan architecture.
- Develop enterprise architecture or system components required to meet user needs.
Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.
Translate proposed capabilities into technical requirements.
Assess and design security management functions as related to cyberspace.
Qualifications
- Proven work experience in security architecture, demonstrating solutions delivery, principles and emerging technologies - designing and implementing security solutions. This includes continuous monitoring and making improvements to those solutions.
- Experience consulting and engineering in the development and design of security best practices and implementation of solid security principles across the organization, to meet business goals along with customer and regulatory requirements
- Proven expertise in security considerations of cloud computing: This includes data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DoS attacks
- Identity and access management (IAM) - the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources.
- Knowledge and experience working with relevant National Institute of Standards and Technology (NIST) standards
- Knowledge and experience working with ISO27001 - specifications for a framework of policies and procedures that include all legal, physical and technical controls involved in an organization's risk management
- Experience delivering/managing Identity and access management (IAM) solutions - the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources
- Experience working with security management tools (e.g., vulnerability scanners, file integrity monitoring, configuration monitoring, etc.) and perimeter technologies (e.g., router, firewalls, web proxies and intrusion prevention, etc.)
- Knowledge of configuration management, change control/problem management integration, risk assessment and acceptance, exception management and security baselines (e.g. CIS Baselines, NIST, vendor security technical implementation guides, etc.)
- Strong awareness of networking and internet protocols, including TCP/IP, DNS, SMTP, HTTP and distributed networks
- Knowledge of web services, API, REST and RPC
- Ability to resolve complex security issues in diverse and decentralized environments; to learn, communicate, and teach new information and security technologies; and to communicate effectively
- Excellent communication and organizational skills, and the ability to stay focused on completing tasks and meeting goals within a busy workspace
- Extensive skill in effective verbal and written communications with other computer professionals, clients, and stakeholders
- Knowledge of software development life cycle methodologies
- Ability to analyze and problem solve
- Ability to establish and always maintain effective and professional working relationships with others in the course and scope of conducting business
- CISSP-ISAAP or equivalent certification
- Ability to obtain required certification within 6 months and maintain approved baseline certification for position (i.e. CISSP-ISAAP or equivalent)
- Graduation from an accredited four-year college or university with major coursework in information technology security, computer information systems, computer science, management information systems, or a related field is generally preferred.
- GSEC, CEH, CISA, CCSP desired
- Certification as an AWS Solutions Architect, Cloud Security Certification, and/or OpenStack Administrator Certification a plus. (Other cloud-related certification also a plus)
All your information will be kept confidential according to EEO guidelines.
Job Summary
JOB TYPE
Full Time
SALARY
$107k-130k (estimate)
POST DATE
05/03/2024
EXPIRATION DATE
05/16/2024
The following is the career advancement route for Information Security Manager positions, which can be used as a reference in future career path planning. As an Information Security Manager, it can be promoted into senior positions as a Cross-Platform Security Manager that are expected to handle more key tasks, people in this role will get a higher salary paid than an ordinary Information Security Manager. You can explore the career advancement for an Information Security Manager below and select your interested title to get hiring information.
Similar Jobs
Popular Articles
Top 10 Things to Avoid Putting on a Job Application
Read Article
How to Describe Your Education in a Resume
Read Article
How to Write a Memorable Cover Letter in 5 Ways
Read Article
4 Personal Finance Tips to Make During Job Transition
Read Article
4 Best Camera Setups for Interview
Read Article
Keeping a Job Search Journal: 9 Types of Journaling You Can Do
Read Article
