SIGNUP
Back to Jobs
XX
Information Technology Security ManagerfirstPRO USBoston, Massachusetts, United States
Find similar jobs

This job offer is no longer available

XX

Information Technology Security Manager

firstPRO US
  • US
    Boston, Massachusetts, United States
  • US
    Boston, Massachusetts, United States
Find similar jobs

About

firstPRO is now accepting resumes for an Information Security Technology Manager. This is a contract to hire role OR direct hire and onsite 3 days per week. This is a unique opportunity for a strong technologist to be one of the founding members of the team building a strategic data and AI platform from scratch for a well‑established bank.
Security Engineering Manager Will lead and execute cybersecurity engineering across our existing on‑premises infrastructure, new AWS cloud environment, Snowflake data platform, and emerging AI application ecosystem. This is not a pure oversight or policy role. The primary need is a senior technical security practitioner who can hands‑on design, build, harden, implement, troubleshoot, and continuously improve security controls. The role will manage and mentor a small team of talented security engineers, but the individual must remain deeply hands‑on and comfortable acting as the senior technical architect executor for cybersecurity engineering.
The ideal candidate has strong financial services experience, has previously helped secure a new AWS environment from the ground up, understands traditional infrastructure and data center security, and can help the Bank safely adopt cloud, data, and AI technologies.
Governance and Compliance Leadership
Own and maintain the firm’s information security governance framework, including policies, standards, and procedures.
Lead annual SOC 2 and ISO 27001 audit cycles, including audit readiness, evidence coordination, and remediation tracking.
Ensure ongoing compliance with client, regulatory, and contractual information security requirements.
Manage policy exceptions, risk acceptances, and documentation of compensating controls.
Regulatory Authorization and Assurance
Lead the renewal and ongoing maintenance of government and client security authorizations, attestations, and approvals required for regulated engagements.
Coordinate cross‑functional evidence collection and control validation to support authorization renewals and periodic reassessments.
Track authorization requirements, renewal timelines, and control changes to ensure continuous eligibility for regulated work.
Qualifications & Skills
Bachelor’s degree required; degree in information security, risk management, or a related field preferred.
7 to 10 years of experience in information security, GRC, audit, or risk management required.
Prior experience managing SOC 2 and/or ISO 27001 programs required.
#J-18808-Ljbffr
  • Boston, Massachusetts, United States

Languages

  • English
Notice for Users

This job was posted by one of our partners. You can view the original job source here.

Find similar jobs