5+ years of experience
Concerned about your lack of experience? Learn More...
Employment Type:
Full time
Job Category:
Information Services
Manager, Information Security, Perm, Richardson
(This job is no longer available)
ETC | Richardson, TX
Grad Date

Not sure what types of jobs you are interested in?

Explore Jobs
Based on Your Education

Follow This Company

Job Description

Job Description:

The Information Technology Security Manager is the process owner for the development and implementation of an organization-wide information security program and ongoing activities to preserve the availability, integrity and confidentiality of company information resources in compliance with applicable security policies and standards.

This position consults and partners with internal technical services as well as senior management to enforce and verify compliance of information security standards.

The Information Security Manager is a member of the Information Technology department and reports directly to the Compliance Officer ( CO ).

Essential and other important responsibilities and duties may include, but are not limited to, the following:

  • Leads development, documentation and maintenance of information security policies, procedures, and standards across company functions.
  • Initiates, facilitates, and promotes activities to create information security awareness throughout organization.
  • Monitors and routinely audits compliance to all information security procedures and policies, and ensures consistency of internal controls across departments.
  • Leads the creation and maintenance of the information systems disaster recovery and business continuity plans. Must include desktop and server backup systems deployment and maintenance.
  • Monitor changes in local, state, and federal regulations and accreditation standards affecting information security, and make recommendations to the CO and other members of senior management on the need for policy changes.
  • Provides oversight and ownership for intrusion detection and response.
  • Create and maintains all information system and software security certificate activities. Includes responsibility for compliance with PCI, SOC, OCIO requirements.
  • Responsible for successful audits of PCI, SOC, and OCIO compliance.
  • Assist in system and software architecture and design to ensure that company assets are appropriately secure at all times.
  • Independently performs risk assessments and works closely with 3rd party auditors to preempt, mitigate, and swiftly respond to any audit findings that require action. To include prioritizing ongoing needs related to the company environment.
  • Monitors the internal control systems to ensure that appropriate access levels are maintained.
  • Attends conferences and training as required to maintain proficiency.
  • Perform other related duties as assigned.
  • Knowledge of tools: Qualys, Virtual Armor, QRadar, Tripwire
  • Ability to provide IT Security roadmap to the future

Required Experience:

  • Knowledge of information security technologies, emerging trends, (for example, cloud computing, mobile computing, PCI compliance) and underlying concepts.
  • Knowledge of forensic requirements and capabilities for collecting, preserving and presenting evidence (for example, admissibility, quality and completeness of evidence, chain of custody).
  • Knowledge of internal and external incident reporting requirements and procedures.
  • Knowledge of post-incident review practices and investigative methods to identify root causes and determine corrective actions.
  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or other equivalent certifications strongly preferred.
  • Excellent oral and written communication skills; ability to interact with internal and external stakeholders.
  • Must demonstrate strong analytical, reasoning and problem solving skills.
  • Demonstrate regular and predictable attendance during core business hours.
  • Ability to set priorities and adapt to changes in a quick, professional manner.
  • Ability to use discretion when handling confidential information.
  • Ability to carry a mobile device and provide off hours support as required.
  • Advanced knowledge of information security principles and practices, including any of the following: security risk assessment standards, risk assessment methodologies, and vulnerability assessment.
  • Must have demonstrated experience implementing security initiatives that require partnership with other IT areas.
  • Experience working in or with public sector agencies would be a plus, but not essential
  • Bachelor Degree in a related field required.
  • Minimum 5 years information security manager experience required.
  • At least 3 years of project management experience required; prefer PMP certification.


Applicants must be eligible to work in the specified location

About ETC

Environmental Tectonics Corporation (ETC) is engaged in the design, manufacture and sale of software driven products and services used to recreate and monitor the physiological effects of motion on humans and equipment and to control, modify, simulate and measure environmental conditions. These products include aircrew training systems, entertainment products, sterilizers, environmental and hyperbaric chambers and other products that involve similar manufacturing techniques and engineering technologies. The Company operates in two segments: Training Services Group (TSG) and the Control Systems Group (CSG). Product categories included in TSG are pilot training and flight simulators, disaster management systems and entertainment applications. CSG includes sterilizers, environmental control devices and hyperbaric chambers along with parts and service support. (Source: 10-K)