Pavion
IT Security Manager
Pavion, Syosset, New York, United States, 11791
Pavion and our family of companies are seeking a talented and motivated IT Security Manager to join our corporate team. We are seeking an experienced IT Security Audit & Compliance Manager to join our team. This individual will oversee IT security audits, respond to cybersecurity questionnaires, and maintain compliance documentation. Additionally, they will manage the entire ISO 27001 certification process and ensure ongoing compliance with industry standards. The role requires close collaboration with internal teams and third-party vendors to maintain and enhance our cybersecurity measures.
Primary Responsibilities:
Lead and manage IT security audits and assessments across the organizationPrepare and respond to security questionnaires from clients and stakeholdersTrack cybersecurity regulatory forms, compliance deadlines, and monitor industry-related updatesManage ISO 27001 certification, including audits, corrective actions, and continuous updatesCollaborate with internal teams and external vendors to ensure security protocols are maintained and up to dateStay informed on the latest cybersecurity protocols, software, and solutionsProvide regular compliance updates to management and identify potential risksAssist in developing and maintaining security policies, procedures, and supporting documentationBasic Qualifications:
Bachelor’s degree in Cybersecurity, Information Technology, or a related field (or equivalent experience)Strong understanding of ISO 27001 and its implementation processesFamiliarity with popular cybersecurity protocols, software, and solutions (e.g., SIEM, IDS/IPS, firewalls, encryption standards)Proven experience conducting IT security audits and assessmentsExcellent organizational skills to handle compliance documentation and regulatory formsStrong communication skills with the ability to work in a collaborative team environmentExperience managing third-party vendor relationships related to securityPreferred Qualifications:
Certifications such as CISA, CISSP, CISM, or ISO 27001 Lead AuditorKnowledge of other cybersecurity frameworks such as NIST, SOC 2, or GDPRFamiliarity with incident response processes and risk management
Salary Range: $100,00-$130,000
Disclaimer: This job description should not be construed to imply that these requirements are the exclusive standards of the position. Incumbents will follow any other instructions, and perform any other related duties, as may be required. The employer has the right to revise this job description at any time. The job description is not be construed as a contract for employment.
Pavion is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)
Primary Responsibilities:
Lead and manage IT security audits and assessments across the organizationPrepare and respond to security questionnaires from clients and stakeholdersTrack cybersecurity regulatory forms, compliance deadlines, and monitor industry-related updatesManage ISO 27001 certification, including audits, corrective actions, and continuous updatesCollaborate with internal teams and external vendors to ensure security protocols are maintained and up to dateStay informed on the latest cybersecurity protocols, software, and solutionsProvide regular compliance updates to management and identify potential risksAssist in developing and maintaining security policies, procedures, and supporting documentationBasic Qualifications:
Bachelor’s degree in Cybersecurity, Information Technology, or a related field (or equivalent experience)Strong understanding of ISO 27001 and its implementation processesFamiliarity with popular cybersecurity protocols, software, and solutions (e.g., SIEM, IDS/IPS, firewalls, encryption standards)Proven experience conducting IT security audits and assessmentsExcellent organizational skills to handle compliance documentation and regulatory formsStrong communication skills with the ability to work in a collaborative team environmentExperience managing third-party vendor relationships related to securityPreferred Qualifications:
Certifications such as CISA, CISSP, CISM, or ISO 27001 Lead AuditorKnowledge of other cybersecurity frameworks such as NIST, SOC 2, or GDPRFamiliarity with incident response processes and risk management
Salary Range: $100,00-$130,000
Disclaimer: This job description should not be construed to imply that these requirements are the exclusive standards of the position. Incumbents will follow any other instructions, and perform any other related duties, as may be required. The employer has the right to revise this job description at any time. The job description is not be construed as a contract for employment.
Pavion is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)