United States  |  International

FOCUS Brands Careers

Careers

JOB TITLE: IT Security Manager

BRAND: FOCUS Brands

LOCATION: Atlanta, GA

POSITION:  IT Security Manager       

REPORTS TO:  IT Infrastructure Director

LOCATION:  Atlanta, GA

PURPOSE OF POSITION

The responsibility of the Information Security Manager is to protect Focus Brands enterprise infrastructure, information and business systems through strong and effective security practices, and proactively participate in the planning and installation of networks, systems and applications. This role includes interacting with both IT support staff and business users to understand business requirements, evaluate solutions, resolve issues, communicate status and document system changes. The successful candidate will ensure that adequate and effective security processes and controls are followed and aligned to deliver compliance with security policy and regulatory requirements. The Information Security Manager serves as a key point of contact and technical expert supporting the security compliance program, establishing appropriate assessments, managing and tracking risk mitigation and remediation activities, and communicating compliance program results to Senior Management.

 DUTIES AND RESPONSIBILITIES

  • Evaluate the current security infrastructure/architecture and develop a strategic plan and roadmap
  • Establish security processes and controls in the overall goal to oversee the performance of periodic security reviews/risk assessments to identify current and future vulnerabilities
  • Provide leadership and strategic direction for the function of planning and budgeting to motivational and promotional activities expounding the value of information security
  • Ensures adequate and effective IT controls exist to meet current and future security compliance requirements (e.g., Sarbanes-Oxley, SSAE 16 SOC I & II, Payment Card Industry Security Standards)
  • Identify/recommend tools, processes, software, and hardware to improve or replace current security infrastructure practices, services, or technologies to meet future requirements
  • Manage and drive remediation efforts related to information security; remediation may be from incidents, penetration tests, vulnerability scans, or internal/external audits
  • Liaise with and offer strategic direction to related governance functions (such as Physical Security/Facilities, Risk Management, IT, HR, Legal and Compliance) plus Senior Management throughout the organization as necessary, on information security matters such as routine security activities plus emerging security risks and control technologies
  • Lead and  commission suitable information security awareness, training and educational activities
  • Lead and commission information security risk assessments and controls selection activities
  • Lead and commission activities relating to contingency planning, business continuity management and IT disaster recovery in conjunction with relevant functions and third parties

 POSITION REQUIREMENTS

  • Four year degree, preferably in Computer Science, Electrical Engineering or Information Technology.
  • Minimum of 3 to 5 years’ experience leading and developing technical teams in a security/management function
  • Minimum of 3 to 5 years implementing It security best practices

DESIRED KNOWLEDGE, SKILLS & ABILITIES

  • Minimum of 7 years of experience in an IT security/management role
  • Certified Information Systems Security Professional (CISSP)  or Certified Information Security Manager (CISM) preferred
  • Excellent verbal and written communication skill

 Disclaimer

The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities from time to time, as needed.

 

Apply Now