Technical Security Manager

Job not on LinkedIn

🔥 21 hours ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Cambium Learning Group

Cambium Learning Group

501 - 1000 employees

Founded 2009

📚 Education

🤖 Artificial Intelligence

Education • Artificial Intelligence

Cambium Learning Group is a company focused on providing essential educational solutions through a family of companies. They create experiences designed to help educators and students succeed by leveraging technology, including artificial intelligence and machine learning. Cambium Learning Group's brands are among the most respected in the edtech sector, supporting meaningful work and innovation in education. Their commitment is reflected in their dedication to making every learning moment valuable and impactful.

📋 Description

• Maintain, mature, and take ownership of our program that ensures conformance to security standards. This includes but is not limited to conformance with ISO 27001, ISO 27018, ISO 42001, Privacy laws, ISO 9001, GovRAMP, FedRAMP, NIST 800, SOC, and CIS Top Controls. • Facilitate annual independent audits of our organization by third-party security and privacy experts. Create audit plan, co-ordinate with stakeholders, review reports and remediate audit findings. • Responsible for planning and managing multiple security improvement projects from requirements phase through deployment/implementation. • Managing document and record control processes and procedures, including maintaining accurate inventories and records of compliance/conformance artifacts • Responsible for our Security Awareness and related training programs. Maintains and improves processes, platforms and systems that support our training campaigns and content. Creates, monitors and reports on campaigns. • Supports business development by responding to requests for security and privacy information that is included in proposals for new business. • Performs security risk assessments of software acquisitions, technical services, business systems and new technologies. • Owns and administers a GRC tool to track security controls and current conformance status. Ensures that relevant security artifacts are recorded and updated. • Conducts enterprise risk assessment reviews and report out to senior management regarding security issues and metrics – both as an ongoing process and on an as-needed basis. • Assists in continual improvement by examining our current security posture and security practices, identifying risks or gaps, and recommending programs to address them. • Manages privacy risks including exposures created by cookies and APIs. Maintains Privacy policies and ensures compliance.

🎯 Requirements

• Bachelor’s Degree in Information Security, Cybersecurity, computer science, engineering, Information Systems or related technical field • Minimum 5 years hands-on experience in the information security field • Extensive and deep knowledge of security and privacy frameworks, standards, and industry best practices. • Knowledge of Privacy laws and principles such as GDPR, COPPA, and FERPA • Extensive and deep knowledge of tools and techniques used to protect against cybersecurity attacks and respond to incidents. • Information Security Certifications such as CISSP, GIAC, ISACA, AWS Security. PMP certification a plus. • Experience with GRC tools • Exceptional verbal and written communication skills to effectively and accurately communicate with a variety of teams ranging from highly detailed discussions with technical and subject matter experts to executive-level communications required for senior leaders and decisionmakers. • Demonstrated working experience with: Security and privacy standards such as ISO, GovRAMP, FedRAMP and/or other industry best practice frameworks. • Writing, developing, and maintaining official security and privacy-relevant records and documentation • Reducing organizational risk by conducting risk assessments, gap analysis, improvement plans and tracking associated corrective actions or POAMs to closure • Developing and executing project management plans for technical projects.

🏖️ Benefits

• Health insurance • Paid time off • Retirement plans

Apply Now

Similar Jobs

🔥 21 hours ago

Hewlett Packard Enterprise

10,000+ employees

🏢 Enterprise

🔧 Hardware

☁️ SaaS

Cybersecurity Sales Specialist driving revenue growth through HPE Cybersecurity solutions. Collaborating with teams to deliver tailored solutions and manage sales pipeline.

Cloud

Cyber Security

🔥 21 hours ago

CACI International Inc

10,000+ employees

🔒 Cybersecurity

Cloud Security Specialist designing and maintaining scalable, secure software tools for a cloud-native environment within SOCEUR. Collaborating with cross-functional teams to ensure system health and performance.

Cloud

Docker

Google Cloud Platform

Java

Jenkins

Kubernetes

Microservices

Python

TypeScript

Go

🔥 21 hours ago

Leidos

10,000+ employees

🔒 Cybersecurity

🔬 Science

Zero Trust Cyber Security Engineer tasked with assessing and enhancing the VA’s Zero Trust architecture. Collaborating with teams to ensure security and minimize risks within military families' digital assets.

Cyber Security

🔥 21 hours ago

Leidos

10,000+ employees

🔒 Cybersecurity

🔬 Science

Cybersecurity Specialist supporting information systems' assessment and compliance with cybersecurity standards. Collaborating with teams to implement security controls and manage risk assessments.

Cyber Security

🔥 21 hours ago

Hitachi

10,000+ employees

🤖 Artificial Intelligence

⚡ Energy

🚗 Transport

Cybersecurity Compliance Project Manager at Hitachi Energy enhancing cybersecurity compliance for power-grid technologies. Collaborating cross-functionally to translate regulations into actionable steps.

Cyber Security

PMP

ServiceNow