Information Security Manager

SUMMARY Responsible for managing the day to day operations and strategic direction of the district's Information Security (InfoSec) team, with the goal of protecting district users, data, and systems. Oversee incident response, security monitoring, and operational risk management while developing scalable processes aligned with district security goals. Monitor emerging threats, analyze vulnerabilities, and establish measurable security strategies that emphasize real-world threat mitigation and transparent communication. Strengthen the district's overall security posture through collaborative partnerships and proactive risk management to ensure safe, reliable, and uninterrupted delivery of educational services.

ESSENTIAL DUTIES AND RESPONSIBILITIES

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Manage day to day incident response operations, ensuring consistency, scalability, and effective delegation across the InfoSec team. Oversee ticket intake and prioritization, balancing timely response with deliberate skill development across the team.

Develop, maintain, and continuously improve a district wide incident response playbook, including procedures and escalation plans for common incidents such as phishing, student and staff technology misuse, malware, and targeted attacks.

Lead the secure design, implementation, and operation of district wide enterprise platforms, including identity and directory services, access controls, and secure code review practices.

Partner with Enterprise Architecture to define and document IT security policies, and to guide secure systems integration and application development practices that support confidentiality, integrity, and availability.

Train and mentor security personnel in threat detection, event correlation, malware analysis, and vulnerability management.

Define security requirements and oversee periodic third party security assessments to detect, evaluate, and report current risks to the district.

Monitor emerging security vulnerabilities and exploits; oversee risk analysis to evaluate threats and vulnerabilities, recommend mitigation strategies; and define measurable protection goals aligned with the district's strategic plan.

Maintain current knowledge of security technologies, industry standards, best practices, and applicable federal and state privacy laws related to education and student data protection. Provide informed recommendations that support district security and operational goals.

Advise and collaborate with other district divisions (e.g., Food Service, Human Resources, Assessment) on secure software purchasing, implementation, and development practices.

Partner with peer K-12 districts and state and federal organizations to share cybersecurity intelligence and adapt district processes to mitigate emerging threats.

Support InfoSec director in developing a strategy and measurements for the InfoSec team which manage risk associated with the business and educational functions of the District's complex networks, leveraging automation and cross departmental collaboration, to maximize limited financial and budget resources.

Provide leadership and guidance to other technical teams related to InfoSec strategic projects focusing on cloud technologies, identity management, and system integrations.

Partner with Infrastructure Services team regarding the configuration and maintenance of the District's log management system. Define system logging requirements based on best practices and PCI, HIPAA compliances. Correlate log files to ensure connected systems are collecting the appropriate events. Monitor the events for system performance and possible security vulnerabilities. Provide dashboards and metrics to show value to IT teams and District leadership.

Other duties as assigned.

EXPERIENCE Minimum 5 years of experience in information security or a related IT field, including incident response and enterprise security operations, with a demonstrated ability to successfully lead teams, work efforts, and projects of a technical nature.

EDUCATION & TRAINING Bachelor's degree required. Preferred field of study of computer science, engineering or business. Additional years of experience may be considered in lieu of degree.

CERTIFICATES, LICENSES, REGISTRATIONS None required. Industry standard certifications (e.g. Security , GIAC Security Essentials (GSEC), GIAC Certified Incident Handler (GCIH)) preferred.

KNOWLEDGE, SKILLS AND ABILITIES Knowledge of securing computers, networks, and managed information systems, including enterprise platforms such as identity management, access controls, and secure system integrations. Knowledge of industry standards, privacy laws, and emerging threats. Knowledge of software development and scripting (e.g., Python, C#, PowerShell, Bash), HTTP/web technologies, and OWASP methodologies. Skill in managing incident response operations, developing and maintaining incident response playbooks, analyzing vulnerabilities, and using tools such as vulnerability scanners, EDR/XDR platforms, and email security systems to detect and mitigate risks. Ability to lead and mentor security personnel, manage workload delegation, and guide cross-functional teams. Ability to analyze complex security events, correlate logs, oversee risk assessments, and implement scalable solutions that protect district infrastructure, optimize resources, and ensure operational continuity.

SPAN OF CONTROL Directly manage a team of up to 5 information security staff. Responsible for hiring, performance management, coaching, and professional development of assigned employees. Serves as a collaborative partner with other IT managers and external vendors, service providers, and peer organizations to coordinate security initiatives, incident response activities, and risk mitigation efforts across the district.

The physical demands, mental functions, and work environment characteristics described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

PHYSICAL DEMANDS Ability to focus on objects at varying distances and distinguish between colors (with corrective lenses). Perform tasks that require manual dexterity, including operation of computers & small office equipment. Basic mobility and the ability to navigate the office environment safely. Ability to speak clearly, listen attentively (with assistance devices), and convey information accurately. May be required to give presentations to groups.

MENTAL FUNCTIONS Ability to analyze complex situations, identify potential risks, and devise effective solutions. Ability to remain flexible in dynamic environments, adjusting plans and strategies as necessary to accommodate changing requirements or circumstances. Ability to effectively communicate and collaborate with other teams. Ability to manage time and priorities to meet deadlines.

WORK ENVIRONMENT Work is performed in a semi-secured office building with a typical office environment and risk factors.