ERM, headquartered in Miami, is a trusted and “go to” advisor for all matters related to information security. Information security services include security assessments, remediation and implementation, digital forensics, security products and security awareness training.
The Information Security Manager is responsible for managing and performing engagements related to a variety of technical assessments, remediation and implementation.
The Manager must have deep subject matter expertise, the ability to interface directly with clients to lead engagements, and the capacity to manage and mentor consultants.
Managing and performing information security assessments
Comprehensive Security Assessment
Network Security (e.g., external, internal, wireless, web applications, mobile apps, social engineering)
Other Information Assurance Assessments (e.g., IT Audit, Service Provider SOC 1, 2, and 3 Attestation)
Managing and performing information security remediation and implementation
Developing information security policies and procedures
Preparing reports and other deliverables that contain strategy, technical analysis and findings
Managing staff in the completion of engagements on time with limited necessary revision
Maintaining an up-to-date technical acumen
Assisting with business development activities, as a subject matter expert, including proposal development and sales calls
Assisting in the growth of the team by identification of resources
Optional Experience Requirements:
Managing and performing digital forensic
Security Breach Investigation
Digital Forensics and Litigation Support
Education & Certification Requirements:
4+ years of relevant experience in the field(s) of IT Audit, Consulting, and/or Security, Privacy or Risk Management
Master’s degree in Management Information Systems, Computer Information Systems, Computer Science, or a related field
Obtained or working towards Certified Information Systems Security Professional (CISSP) certification. (Candidates that do not yet possess the CISSP will be required to obtain the certification after hire)
CISA, CIPP, CISM, PCI-QSA, or related certifications are a plus