At Modis, we use our insight, knowledge, and global resources to make exceptional connections every day. With 60 branch offices located strategically throughout North America, we are positioned perfectly to deliver the industry’s top talent to each of our clients. Clients choose Modis as their workforce partner to solve staffing challenges that range from locating hard-to-find niche talent to completing quick-fill demands.
Position: Information Security Manager
Type: Direct Hire
Rate: DOE
Location: Los Angeles, CA
Modis Burbank is seeking an experienced Information Security Manager in Los Angeles, CA
Position Summary: Reporting to the Chief Information Security Officer (CISO), the Information Security Manager is responsible for information security policy assessments, enforcing compliance with firm security policies and applicable law, vendor management and security incident management. Working with the firm’s Information Technology Services; the Information Security Manager will coordinate and assess compliance audits, business continuity and disaster recovery programs, network penetration tests, vulnerability assessment scans and risk assessment reviews.
Duties and/or Responsibilities:
Manage the governance, risk and compliance activities of the firm’s IT organization, including budgeting, planning, testing, reporting and recommending appropriate remediation measures
Experience with IT security, compliance, risk and privacy frameworks such as ISO 27001, 27017, 3100 NIST, HIPAA, GDPR.
Partner with Data Privacy and Information Security to determine and maintain an inventory of all regulatory, client and organizational technology compliance requirements.
Facilitate risk and governance program activities, such as risk assessments, risk exceptions, risk ratings, business risk consultations, and risk mitigation/remediation recommendations
Manage, develop, audit and enforce security related policies and procedures.
Manage periodic security vulnerability and penetration testing.
Manage incident response and support systems.
Manage and review infrastructure technology vendor contracts and vendor risk assessments.
Work with IT Management to ensure that Business Continuity program components are current, effective, and address business requirements.
Participate in the design and deployment of new software systems, services, components, features, etc.
The Information Security Manager will be expected to have:
Knowledge of network security principals, best practices and industry standards.
Knowledge of security models that maintain and enforce security policies.
Knowledge of security tools and concepts including: IDS/IPS; SIEM; Web Proxy; Encryption; Patch management; Vulnerability Scanning & Remediation; Forensics; Penetration Testing; DLP; Email Gateways; Anti-spam Services; MDM; Privileged Account Management; Log Analytics; Multi Factor Authentication; Single Sign On; Antivirus.
Exceptional communication skills both within and outside of the IT Department.
Education and Experience
3-5 years of experience working in Information Security.
CISM certification preferred.
Previous ISO 27001 audit experience desired.
Project management experience.
Previous law firm experience is highly desired.
If interested, please apply, and share your resume at Priyanka.khurana@modis.com
Equal Opportunity Employer/Veterans/Disabled
To read our Candidate Privacy Information Statement, which explains how we will use your information, please navigate to https://www.modis.com/en-us/candidate-privacy
The Company will consider qualified applicants with arrest and conviction records