Company

SDI Presence LLC is an IT managed services provider (MSP) and consultancy that leverages its strong team presence to advance our clients to a secure digital enterprise. With a 20-year corporate resume, SDI delivers strategic managed services, IT consulting, and hybrid infrastructure solutions to optimize our clients’ technology environments. SDI is a certified Minority Business Enterprise (MBE), with a portfolio of clients that includes some of the nation’s largest airports, utilities, commercial real estate portfolios, and government agencies. SDI delivers a deep technical presence through a local delivery model to achieve customer confidence and success. Visit us at www.sdipresence.com and connect with us on Twitter and Instagram.

Summary

The Information Security Manager is responsible for safeguarding the confidentiality and availability of an organization’s assets, including its information, services, and people. Because the role of Information Security Manger encompasses a wider scope than IT services, he/she will work with stakeholders at all levels and across multiple business entities. Through investigating and reporting, the Information Security Manager will evaluate security technology products, services, and technical trends and their potential benefits to the overall hardening of the IT environment. In addition, the Information Security Manager proactively communicates and collaborates with external and internal customers to analyze security needs and functional requirements.

Through a proficiency in security management protocols; ITIL best-practices; and proven communications, analytical, and problem-solving skills, the Information Security Manager will help the client manage, oversee, and refine security policy to enforce organizational standards (legal, regulatory, operational, etc.). The Information Security Manager will manage 1-2 staff, collaborate with network and server engineers, Managed Security Operations Center and other consultants. The Information Security Manager will report to the Project Manager.

Responsibilities

The Information Security Manager’s responsibilities include, but are not limited to:

• Ensure current security policies and practices meet organizational requirements
• Report and resolve internal and external Security violations, including incidents reported by third-party vendors/agencies
• Assist in developing recommendations based on best-practices, industry standards, and government requirements (city, county, state, federal) for security incident management and improvement of organizational security policies and procedures
• Work with the client to develop, document, and maintain security requirements, standards, processes, procedures, and policies, including regulatory requirements
• Work with the client to develop policies and protocols for testing system(s) vulnerability and penetration resilience
• Ensure above policies and procedures are posted to the knowledge database/portal
• Maintain awareness of current security trends, threats, policies, procedures, and best practices
• Create and distribute organizational threat assessments and alerts as necessary using our Cyber Alert service
• Control the distribution of cryptographic keying material
• Manage Vulnerability Assessments and present findings
• Implement security awareness
• Take an active role in business continuity and disaster recovery planning and plan maintenance
• Review all security patches relevant to the IT environment, classify the need and speed in which security patches should be installed as defined by security policies and change management and install as necessary
• Maintain all documentation required for security assessments, audits, internal control, and control testing
• Provide security reporting
• Manage outsourced security operations center

Requirements

• 4-year collage degree in a relevant field
• 10+ years of experience developing and enforcing security policy in large environments
• CISSP certification and/or CISM is preferred
• Familiarity with HIPAA, PCI and CJIS standards
• Experienced in providing programs to increase security awareness
• Experience with Wombat a plus