Talent Mingle
InfoSec Manager
Talent Mingle, Boston, MA, United States
Information Security Manager Boston, MA
The Information Security Manager will oversee the Information Security and work with the Director of Information Security as well as the Desktop and Server teams to help protect the information assets of the company. You will also oversee and assist with implementing and supporting information security policies, security operations, and audit/risk. The Information Security Manager is responsible for coordinating analyst deliverables and is expected to stay up-to-date with current and emerging trends to help reduce the Firm’s exposure to new and existing threats.
Responsibilities:
Qualifications:
The Information Security Manager will oversee the Information Security and work with the Director of Information Security as well as the Desktop and Server teams to help protect the information assets of the company. You will also oversee and assist with implementing and supporting information security policies, security operations, and audit/risk. The Information Security Manager is responsible for coordinating analyst deliverables and is expected to stay up-to-date with current and emerging trends to help reduce the Firm’s exposure to new and existing threats.
Responsibilities:
- Coordinate scheduled phishing campaigns for content, delivery, follow-up, and reporting.
- Communicate with helpdesk for phishing-related issues as well as respond to user inquiries.
- Actively take steps to reduce phishing risk.
- Work with outside security vendors to monitor systems events and ensure coverage. Oversee first-level response incoming events for MDR vendor and Defender.
- Triage alerts and follow appropriate procedures to determine severity. Maintain and ensure the confidentiality of client and firm data.
- Coordinate the company's vulnerability scanning software to identify, classify, prioritize, mitigate, and remediate software vulnerabilities.
- Track overall progress on reducing vulnerability risk.
Qualifications:
- Bachelor’s degree in Cybersecurity or Computer Science required.
- Minimum of 5 years Information Security experience and prior experience managing staff is required.
- Knowledge of threat hunting tactics and incident response. Working knowledge of TTP’s (Threats, Tactics, and Procedures) of Threat Actors.
- Demonstratable knowledge of vulnerability scanning tools (Tenable, Rapid7, or Qualys). Familiarity with popular cybersecurity tools for threat hunting and vulnerability scanning.
- Experience with outsourced MDR (SentinelOne, eSentire, Rapid7 IDR, Cybereason, etc). Strong knowledge of Microsoft Defender suite of products CompTIA Security+, CEH, CISA, CRISC, CISM, or preferably CISSP.