1

Information Security Manager Jobs (NOW HIRING)

Description: As the Information Security Manager, you will lead the strategic development and oversight of our organization's cybersecurity program within a fast-paced software development ...

Description: As the Information Security Manager, you will lead the strategic development and oversight of our organization's cybersecurity program within a fast-paced software development ...

Description: As the Information Security Manager, you will lead the strategic development and oversight of our organization's cybersecurity program within a fast-paced software development ...

Job TitleInformation Security Manager Information Security Manager The Information Security Manager will be responsible for developing, implementing and monitoring a strategic and comprehensive ...

Sebenza LLC is seeking an Information Security Manager who will drive security initiatives and advise on the global security strategy within an international organization. The role involves managing ...

We are seeking an Information Security Manager to be the operational backbone of our IT team, located in our Boulder, Colorado office and offering support to all our offices nationally. In this role ...

Information Security Manager

Boulder, CO · On-site

$120K - $155K/yr

We are seeking an Information Security Manager to be the operational backbone of our IT team, located in our Boulder, Colorado office and offering support to all our offices nationally. In this role ...

We are seeking an Information Security Manager to be the operational backbone of our IT team, located in our Boulder, Colorado office and offering support to all our offices nationally. In this role ...

next page

Showing results 1-20

Information Security Manager information

See salary details

$62.5K

$136.1K

$200K

How much do information security manager jobs pay per year?

As of Jul 18, 2026, the average yearly pay for information security manager in the United States is $136,104.00, according to ZipRecruiter salary data. Most workers in this role earn between $110,500.00 and $160,500.00 per year, depending on experience, location, and employer.

What are some common challenges Information Security Managers face when implementing new security protocols within an organization?

Information Security Managers often encounter resistance to change from staff when introducing new security protocols, as these measures can sometimes disrupt established workflows. Balancing security requirements with business needs is also a frequent challenge, requiring negotiation and effective communication across departments. Additionally, staying ahead of constantly evolving threats and ensuring that all team members are properly trained can be demanding, but overcoming these challenges is crucial for maintaining a robust security posture.

What are the key skills and qualifications needed to thrive as an Information Security Manager, and why are they important?

To thrive as an Information Security Manager, you need a strong understanding of cybersecurity principles, risk management, and regulatory compliance, typically backed by a relevant degree and professional certifications like CISSP or CISM. Familiarity with security information and event management (SIEM) systems, vulnerability assessment tools, and incident response frameworks is essential. Leadership, strategic thinking, and excellent communication skills help you effectively manage teams and convey complex security concepts to stakeholders. These skills and qualities are crucial for protecting organizational assets, ensuring regulatory compliance, and maintaining business continuity.

What is the difference between Information Security Manager vs Security Analyst?

AspectInformation Security ManagerSecurity Analyst
CertificationsCISSP, CISM, CISACompTIA Security+, GIAC Security Essentials
Work EnvironmentOversees security policies, manages teams, strategic planningMonitors security systems, analyzes threats, implements security measures
Employer & Industry UsageUsed in organizations with dedicated security teams across industriesCommon in IT departments, security operations centers

The main difference is that the Information Security Manager focuses on strategic security management and team leadership, while the Security Analyst handles day-to-day security monitoring and threat analysis. Both roles require relevant certifications and are vital in maintaining organizational security, but they differ in scope and responsibilities.

What does an Information Security Manager do?

An Information Security Manager is responsible for overseeing an organization's information security program, ensuring that sensitive data is protected from threats such as cyberattacks and unauthorized access. They develop and implement security policies, conduct risk assessments, and manage teams to respond to security incidents. Information Security Managers also ensure compliance with relevant laws and regulations and regularly educate staff on best security practices. Their role is critical in maintaining the confidentiality, integrity, and availability of information assets.

What Is an Information Security Manager?

The job duties of an information security manager involve overseeing the effort to protect networks, computers, and data from cyber attacks, viruses, and other security breaches. In this career, your responsibilities include creating IT security features that can protect your company’s data. In addition to building systems to protect against hacking, you must also be ready to lead the response when a security breach occurs. As an information security manager, you are responsible for creating and implementing practices and policies that employees can use to protect their employer's networks and data.

What cities are hiring for Information Security Manager jobs? Cities with the most Information Security Manager job openings:
What are the most commonly searched types of Information Security jobs? The most popular types of Information Security jobs are:
Who are the top companies hiring for Information Security Manager jobs? The top employers for Information Security Manager jobs are:
What states have the most Information Security Manager jobs? States with the most job openings for Information Security Manager jobs include:
What job categories do people searching Information Security Manager jobs look for? The top searched job categories for Information Security Manager jobs are:
Infographic showing various Information Security Manager job openings in the United States as of July 2026, with employment types broken down into 1% As Needed, 73% Full Time, 23% Part Time, 1% Temporary, and 2% Contract. Highlights an 96% Physical, 1% Hybrid, and 3% Remote job distribution, with an average salary of $136,104 per year, or $65.4 per hour.

Information Security Manager

BAE Systems OneArc USA, Inc

Pittsburgh, PA • Remote

Other

Posted yesterday


Job description

Salary:

Description:

As the Information Security Manager, you will lead the strategic development and oversight of our organizations cybersecurity program within a fast-paced software development environment. You will be responsible for defining security roadmaps, managing risk across our software delivery pipeline, and ensuring our products meet the highest standards of data protection. You will bridge the gap between technical engineering teams and executive leadership, translating complex security threats into actionable business risk assessments. This role is pivotal in maintaining our competitive edge by ensuring that security is a core component of our brand and customer trust.


Key Areas of Responsibility:

  • Security Program Leadership: Design and manage the enterprise-wide information security strategy, aligning security initiatives with software development lifecycles (SDLC) and business goals.
  • Risk Management & Governance: Lead comprehensive risk assessments and vendor security reviews to identify and mitigate vulnerabilities across third-party integrations and internal systems.
  • DevSecOps Integration: Collaborate with engineering leads to integrate security automation (SAST/DAST) into CI/CD pipelines, promoting a "shift-left" security culture.
  • Incident Response Management: Oversee the security incident response program, acting as the primary point of escalation and lead investigator during high-priority security events.
  • Regulatory & Compliance Oversight: Ensure continuous compliance with industry-standard frameworks such as SOC2, ISO 27001, and GDPR, managing external audits and certification processes.
  • Security Awareness & Culture: Develop and lead security training programs for non-technical staff and specialized secure-coding workshops for developers.
  • Stakeholder Communication: Present regular security posture reports to senior management and board members, providing data-driven recommendations for security investments.


Objectives:

  • Maintain the confidentiality, integrity, and availability of our SaaS platforms and customer data environments.
  • Minimize organizational risk by implementing robust security controls across the software development and deployment processes.
  • Achieve and maintain industry-leading security certifications (e.g., SOC2 Type II, ISO 27001, NIST) along with compliance with our parent companys policies
  • Foster a proactive security-first mindset across all departments through education and transparent reporting.


Skills:

  • Strategic Leadership: Ability to lead technical teams and influence organizational change without direct authority.
  • Complex Problem-Solving: Expert at analyzing evolving cyber threats and designing creative, scalable mitigation strategies.
  • Effective Communication: Translating deeply technical security vulnerabilities into business-impact terms for executive stakeholders.
  • Regulatory Knowledge: Deep understanding of software-relevant compliance standards (NIST, SOC2, ISO).
  • Technical Proficiency: Familiarity with cloud security (AWS/Azure/GCP), containerization, and automated security testing tools.


Education and Experience:

  • Bachelors degree in Computer Science, Cybersecurity, Management Information Systems, or a related field.
  • Masters degree in a specific area of specialization, such as IT security, may be beneficial.
  • 710+ years of experience in information security, with at least 3 years in a leadership or management capacity.
  • Proven experience in a software development or "Software as a Service" (SaaS) environment.
  • Relevant Certifications: CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) is highly preferred.


Additional Attributes:

  • Innovative and creative thinking: Ability to anticipate future security trends and prepare the organization accordingly.
  • Composure: Ability to work in a fast-paced environment and remain calm during active security incidents.
  • Strong attention to detail: Ensuring precision in security policy and implementation.
  • Empathy: Balances the need for strict security controls with developers' operational needs to remain productive.


Travel:

  • Occasional travel between Orlando and Pittsburgh offices or for security conferences and audits.