IT Security Manager

About The Lisinski Law Firm

Firm Mission Statement

Our mission is to change as many lives as possible by offering immigration solutions even in the most difficult cases. We look at all possible options to keep our clients in the United States with their families where they belong. We stand ready to fight even when success seems unsure because we understand how much better life can be with the dignity and peace of mind that comes with having documents.

About the role

The IT Security Manager performs two core functions for the enterprise. The first is overseeing the operations of the enterprise’s security solutions through management of the managed security partner. The second is establishing an enterprise security stance through policy, architecture, and training processes. Secondary tasks will include the selection of appropriate security solutions, oversight of any vulnerability audits and assessments through the management of a security Managed Service Provider (MSP). The IT Security Manager is expected to interface with leaders of the business units to both share the corporate security vision with those individuals and to solicit their involvement in achieving higher levels of enterprise security through information sharing and cooperation. This position will report to the Director of IT Infrastructure and Operations

What you'll do

Strategy & Planning

• Create and maintain the enterprise’s security architecture design.
• Create and maintain the enterprise’s security awareness training program.
• Create and maintain the enterprise’s security documents (policies, standards, baselines, guidelines, and procedures).
• Create and maintain the enterprise’s Business Continuity Plan and Disaster Recovery Plan, where appropriate.
• Develop and oversee the implementation of a three-year security strategy roadmap.
• Collaborate with the security MSP to implement security recommendations and improvements.

Acquisition & Deployment

• Maintain up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
• Select and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security as part of a three-year plan.
• Oversee the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions.
• Coordinate with the security MSP for the deployment and integration of security solutions.

Operational Management

• Supervise all investigations into problematic activity and provide ongoing communication with senior management.
• Supervise the design and execution of vulnerability assessments, penetration tests, tabletop testing, and security audits.
• Perform regular security awareness training for all employees to ensure consistently high levels of compliance with enterprise security documents.
• Manage the relationship with the security MSP, ensuring effective oversight and implementation of security measures.

Qualifications

• College diploma or university degree in the field of computer science and/or 5 years equivalent work experience.
• Extensive experience in security architecture relating to Microsoft 365 tenants (Intune, Exchange, Defender, Azure)
• Extensive experience in enterprise security architecture design.
• Extensive experience in enterprise security document creation.
• Experience in designing and delivering employee security awareness training.
• Experience in developing Business Continuity Plans and Disaster Recovery Plans.
• Experience in managing/coordinating with outsourced security teams.
• Working technical knowledge of Sentinel One
• Strong understanding of IP, TCP/IP, and other network administration protocols.
• Familiarity with Windows 10/11, limited iOS and Mobile Device Management

Personal Attributes

• Proven analytical and problem-solving abilities.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Good written, oral, and interpersonal communication skills.
• Ability to conduct research into IT security issues and products as required.
• Ability to present ideas in business-friendly and user-friendly language.
• Highly self-motivated and directed.
• Keen attention to detail.
• Team-oriented and skilled in working within a collaborative environment.

Work Conditions

• 40-hour on-site work week with on-call for emergency situations.
• Travel required as necessary.
• Sitting for extended periods of time.
• Sufficient dexterity of hands and fingers to efficiently operate a computer keyboard, mouse, power tools, and other computer components.