Information Security Manager for a contract position in downtown Chicago. Due to COVID, this position will start off remotely, but will eventually transition to onsite in Chicago later this year. Responsibilities:
Manage IT security policies and procedures
Manage, document, and communicate compliance requirements, timelines, and roadmap to supporting teams and leadership
Develop metrics and reporting to demonstrate compliance status and engagement
Review and enforce IT security policies and procedures
Conduct annual security check-ups, tests, audits (up to 20 a year), and write new security policies
Drive IT security policy, procedures, and disaster recovery (DR) plans
Manage an outsourced SOC provider
Incident response and data loss prevention
Enforce third party vendor policies
Qualifications:
10+ years of experience within Information Security & Compliance
5+ years of security audit experience
Expertise in IT security systems and processes
Strong understanding of NIST, ISO 27001, SOC2, etc.
SIEM (Security Information and Event Management)
Expert understanding of cloud controls and environments (AWS preferred)
BS or MS in Computer Science or related field
CISSP (Certified Information Systems Security Professional) is a plus