IT Security Manager

About the Role:
As an IT Security Manager, you will independently lead comprehensive cybersecurity efforts within the organization. Your specialized skills will ensure the highest standards of security are upheld. You’ll be pivotal in shaping our security posture, addressing advanced security challenges, and supporting team projects with your expertise across various cybersecurity strategy, governance, awareness, metrics, and training programs, projects and processes.

Responsibilities:

Training and Awareness

• Collaborating with stakeholders to define the goals and scope of the training programs.
• Coordinating with senior management, IT, HR, and marketing teams to align training objectives with organizational priorities.
• Work with software vendors and OEM’s to implement / rollout cutting edge training tools and techniques.
• Overseeing the creation or customization of training materials and organize, manage the training sessions.
• Identifying gaps based on training results and continuously updating the programs.

Demand and Intake

• Working with stakeholders to prioritize initiatives based on business value, risk, urgency, and resource availability
• Defining evaluation criteria for prioritizing projects (e.g., ROI, compliance requirements, strategic fit).
• Advocating for effective demand management practices across the organization.
• Implementing and maintaining a structured intake process to ensure consistency and efficiency.

Metrics, Dashboards and Automation

• Track project KPIs and metrics to measure success and identify areas for improvement.
• Designing dashboards that are tailored to different stakeholders
• Identifying repetitive tasks that can be automated and regularly testing automated systems to ensure they work as intended

Program Management

• Develop detailed project plans, timelines, and budgets for IT security programs.
• Identify, assess, and mitigate risks associated with IT security programs.
• Mentor less experienced security team members.
• Create and maintain comprehensive project documentation, including plans, risk assessments, and progress reports.
• Manage external vendors and consultants involved in security projects.
• Coordinate with cross-functional teams on security initiatives.
• Oversee resource allocation and ensure team members are aligned with project goals.
• Stay updated on emerging cybersecurity trends, threats, and technologies.

Skills:

• 5-7+ years of experience in IT is required and at least 3 years of experience in Cybersecurity is required.
• Team Mentorship: Ability to mentor and guide less experienced team members.
• Technology Implementation: Capability to implement and manage advanced security technologies.
• Strategic Planning and Reporting: Skills in strategic security planning and detailed reporting.
• Experience working in cloud, network, or application security environments.
• Excellent communication, leadership, and problem-solving skills.
• Skilled at demand management, forecasting,
• Nice to have experience on dashboarding tools such as  PowerBI),
• Strong skills in cybersecurity training and awareness best practices and methodologies and demonstrated success in operating / driving a firmwide cyber training and awareness function.
• Knowledge of key IT security risk and control frameworks spanning NIST CSF, NIST 800-53, ISO 27000s, DORA, FedRAMP/StateRAMP and baseline ITGC knowledge is an added advantage.