Information Security Program Manager
The Information Security Program Manager is responsible for developing and executing an enterprise IT security strategy and program plan, with oversight by the Director. The Program Manager oversees security efforts across the company, including information technology, human resources, legal, facilities management and other groups. Drawing on both business and technical acumen, the Program Manager works with key IT and business leaders to identify critical assets and business processes, and then creates appropriate protection strategies. Additionally, the Program Manager leverages the strategic partnership with the IT Corporate Director and related vendors to administer security in the context of the risks that the organization faces. The Program Manager works with corporate business units, internal and vendor information technology (IT) staff, corporate counsel, corporate privacy office, human resources, and communications, IT governance and auditing staff in carrying out these responsibilities. The Program Manager also serves as the business unit owner for corporate information security projects and initiatives and is responsible for supervising Security and Network Engineers.
The ideal candidate will have a minimum of three years of senior level information systems and information systems security experience, solid writing skills, leadership and supervisory experience. A bachelor’s degree in a computer science field, or equivalent, is required and a Masters degree in computer systems is desired.
Certified completion of a significant program of training in information systems security including legal and regulatory aspects and technical design and implementation is required. Preference will be given to candidates who have a nationally recognized information systems security certification, such as CISSP, GIAC HIPAA, CERT, or SANS certification(s), or a Masters degree in information assurance. Coursework toward a recognized certification will be considered.