Information Security Manager
Job Description
A growing professional services organization in the technology and nonprofit sector is seeking an experienced cybersecurity leader to oversee enterprise-wide security operations, risk management, and data protection initiatives. This senior-level role offers an opportunity to drive strategic cybersecurity programs within a mission-driven environment focused on protecting critical data and enabling secure growth.
Role Overview
The Director of Information Security is responsible for establishing and managing a comprehensive security program that safeguards data, systems, and infrastructure across the organization. Reporting to the SVP of Technology, this leadership position has a broad scope encompassing security engineering, compliance, incident response, and vendor risk management to ensure organization-wide resilience and regulatory adherence.
Key Responsibilities
• Develop and execute the strategic cybersecurity roadmap, integrating security engineering, operations, governance, risk management, and compliance to support organizational objectives.
• Design, implement, and oversee security controls, policies, and standards aligned with industry frameworks such as NIST CSF, CIS Controls, and ISO 27001, fostering a culture of security accountability and continuous improvement.
• Maintain high-quality documentation for security architecture, policies, and procedures that support business goals, compliance mandates, and audit readiness.
• Monitor evolving cybersecurity threats, adapt controls accordingly, and lead the organization’s response to security incidents and breaches, including containment and recovery efforts.
• Administer and optimize security tools such as SIEM, EDR, MDR, Vulnerability Management platforms (e.g., Tenable, Qualys, Rapid7), Data Loss Prevention (DLP), endpoint security, firewalls, IDS/IPS, email security platforms (e.g., Proofpoint, Mimecast), and cloud security solutions (Azure Security Center, AWS Security).
• Manage third-party vendor cybersecurity risks, engage with technology partners, and ensure compliance with security standards across the supply chain.
• Lead security awareness training, risk assessments, and Data Privacy initiatives in line with regulations such as GDPR, CCPA, and other global privacy standards.
• Oversee security project management, ensuring initiatives are delivered within scope, budget, and timeline, with proper resource allocation.
• Collaborate with cross-functional teams including legal, compliance, IT, and operational units to embed security best practices into broader organizational processes.
• Provide hands-on guidance with technical teams, including cloud security architecture, identity and access management (IAM), MFA, single sign-on (SSO), OAuth, SAML, and federation platforms like Okta or SailPoint.
Core Qualifications & Requirements
• 10+ years of progressive IT experience, including at least 7 years specializing in cybersecurity and 3+ years managing security teams.
• Proven expertise implementing security frameworks such as NIST Cybersecurity Framework, CIS Controls, OWASP, and ISO 27001.
• Deep technical knowledge of security in cloud environments (Azure, AWS), network security devices (Cisco, Palo Alto, Fortinet), and endpoint protection (CrowdStrike, SentinelOne, Microsoft Defender).
• Extensive experience with security incident response, threat detection (SIEM, IDS/IPS), vulnerability management, and penetration testing.
• Strong vendor risk management skills, including assessing third-party security practices and ensuring compliance with industry standards.
• Familiarity with data privacy regulations, including GDPR and CCPA, and practical experience in security policy development and audit practices.
• Demonstrated ability to lead, mentor, and collaborate with technical and non-technical stakeholders in a fast-paced environment.
• Bachelor's degree in Computer Science, Engineering, or related field; security certifications such as CISSP, CISM, CISA, or CompTIA Security+ preferred.
Nice-to-Have Qualifications
• Advanced certifications (e.g., CCSP, GIAC, CRISC).
• Experience with GRC tools like OneTrust, Vanta, or Drata.
• Knowledge of identity and access management platforms such as Okta, EntraID, SailPoint, or similar.
• Familiarity with cloud-native security automation and security orchestration tools.
Core Technical Skills
• Security Frameworks: NIST CSF, CIS Controls, ISO 27001, OWASP Frameworks
• Cloud Security: Azure Security Center, AWS Security Hub, Cloud Access Security Brokers (CASBs)
• Security Tools: SIEM (Splunk, QRadar), EDR (CrowdStrike, SentinelOne), MDR, Vulnerability Scanning (Tenable, Qualys, Rapid7)
• Data Security: DLP, Encryption, Cryptographic Services
• Network Security: Firewalls (Palo Alto, Cisco, Fortinet), IDS/IPS, VPNs
• Email & Web Security: Proofpoint, Mimecast, Microsoft Defender for Office 365
• Identity & Access Management: Okta, EntraID, SailPoint, MFA, SSO (OAuth, SAML)
• Governance & Compliance: Vanta, OneTrust, audit frameworks
Career Impact
This leadership role provides an opportunity to shape and advance an enterprise security program, directly impacting organizational resilience, compliance posture, and the safeguarding of mission-critical data.
Apply Today!
Join a dynamic organization committed to security excellence and make a meaningful difference in protecting vital data and infrastructure.
The Phoenix Group Advisors is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and prohibit discrimination and harassment of any kind based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. We strive to attract talented individuals from all backgrounds and provide equal employment opportunities to all employees and applicants for employment.
Meet Your Recruiter
Emily Lanzkron
People Operations Coordinator
Share This Job:
Related Jobs:
Login to save this search and get notified of similar positions.About New York, NY
Discover exciting job opportunities in the vibrant area around New York, New York! With its iconic skyline, diverse cultural scene, and endless career growth prospects, the Big Apple and its surroundings promise an unparalleled work-life experience. Nestled between Broadway theaters, world-class art galleries like The Metropolitan Museum of Art, and globally renowned cuisine spots in Little Italy and Chinatown, finding your dream job in New York is your gateway to thriving in a city that never sleeps. Embrace the energy of Times Square, catch a game with the Yankees at Yankee Stadium, or unwind in the serenity of Central Park. Explore our job listings today and unlock your potential in the heart of opportunity.