Information Systems Security Manager
WorkWave Staff LLC, Jamestown, NY, United States
Job Description
Key Responsibilities:
Develop, implement, and maintain information security policies, procedures, and best practices
Monitor networks and systems for security breaches, vulnerabilities, and suspicious activity
Conduct regular risk assessments, audits, and vulnerability testing
Ensure compliance with applicable regulations, standards, and internal policies (e.g., NIST, ISO, or industry-specific requirements)
Manage and respond to security incidents, including investigation and resolution
Oversee firewall, antivirus, intrusion detection/prevention systems, and endpoint security tools
Collaborate with IT and operations teams to secure manufacturing systems and production networks
Train employees on cybersecurity awareness and best practices
Manage user access controls, permissions, and identity management systems
Maintain disaster recovery and business continuity plans related to IT security
Evaluate and manage third-party vendors from a security standpoint
Qualifications:
Minimum of 10-15 years of progressive experience in information security, IT, or a related field
At least 5 years of experience in a leadership or management role
Bachelor's degree in Information Technology, Cybersecurity, Data Science, Information Systems, Computer Science, or a related field is strongly preferred
Strong knowledge of network security, firewalls, encryption, and endpoint protection
Experience with security frameworks such as NIST, ISO 27001, or CIS controls
Familiarity with manufacturing environments, industrial control systems (ICS), or SCADA systems is a plus
Relevant certifications preferred (CISSP, CISM, CEH, or similar)
Strong analytical, problem-solving, and decision-making skills
Excellent communication and leadership abilities
Work Environment:
Office setting within a manufacturing facility
Interaction with both IT staff and production teams
Key Responsibilities:
Develop, implement, and maintain information security policies, procedures, and best practices
Monitor networks and systems for security breaches, vulnerabilities, and suspicious activity
Conduct regular risk assessments, audits, and vulnerability testing
Ensure compliance with applicable regulations, standards, and internal policies (e.g., NIST, ISO, or industry-specific requirements)
Manage and respond to security incidents, including investigation and resolution
Oversee firewall, antivirus, intrusion detection/prevention systems, and endpoint security tools
Collaborate with IT and operations teams to secure manufacturing systems and production networks
Train employees on cybersecurity awareness and best practices
Manage user access controls, permissions, and identity management systems
Maintain disaster recovery and business continuity plans related to IT security
Evaluate and manage third-party vendors from a security standpoint
Qualifications:
Minimum of 10-15 years of progressive experience in information security, IT, or a related field
At least 5 years of experience in a leadership or management role
Bachelor's degree in Information Technology, Cybersecurity, Data Science, Information Systems, Computer Science, or a related field is strongly preferred
Strong knowledge of network security, firewalls, encryption, and endpoint protection
Experience with security frameworks such as NIST, ISO 27001, or CIS controls
Familiarity with manufacturing environments, industrial control systems (ICS), or SCADA systems is a plus
Relevant certifications preferred (CISSP, CISM, CEH, or similar)
Strong analytical, problem-solving, and decision-making skills
Excellent communication and leadership abilities
Work Environment:
Office setting within a manufacturing facility
Interaction with both IT staff and production teams