Information Security Manager

Job not on LinkedIn

🔥 0 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Mariani Landscape

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 1958

👥 B2C

🤝 B2B

B2C • B2B

Mariani Landscape is a full-service, award-winning landscaping company serving the Chicago area for over 65 years. They provide luxury residential and commercial landscape design, construction, and ongoing maintenance services, including outdoor kitchens, patios, pools, hardscaping, turf and garden care, city and rooftop gardening, snow & ice removal, and seasonal property services. Mariani emphasizes meticulous, high-end craftsmanship and serves homeowners, businesses, institutions, and public spaces.

📋 Description

• Security Program Management: Manage and execute the company’s information security program, including policies, procedures, controls, security standards, risk assessments, remediation tracking, and ongoing security improvements. • Hands-On Security Operations: Perform day-to-day security activities, including monitoring security tools, reviewing alerts, investigating suspicious activity, coordinating remediation, managing vulnerabilities, and improving detective and preventive controls. • Security Architecture & Technical Controls: Assess, implement, and maintain security controls across enterprise systems, including infrastructure, endpoints, identity platforms, cloud environments, field service applications, mobile devices, and the Microsoft Azure and Microsoft 365 ecosystems. • Incident Response: Maintain and execute the company’s incident response process. Investigate security events, coordinate containment and remediation efforts, document incidents, and work with internal teams and external partners as needed. • Field Service Security Support: Identify and address cybersecurity risks related to field service scheduling systems, mobile device usage, remote workforce access, geographically dispersed operations, and field technician workflows. • Vulnerability & Risk Management: Perform or coordinate vulnerability assessments, risk reviews, security control evaluations, and remediation efforts. Prioritize findings based on business impact, likelihood, and operational risk. • Identity, Access & Endpoint Security: Support and improve identity and access management practices, including user access reviews, privileged access controls, multi-factor authentication, conditional access, endpoint security, and device compliance. • Microsoft Azure & Microsoft 365 Security: Configure, monitor, and improve security across Microsoft Azure and Microsoft 365 environments, including Entra ID, Defender, Purview, Exchange Online, SharePoint, Teams, Intune, and related security capabilities. • Disaster Recovery & Business Continuity Support: Support disaster recovery and business continuity planning from a cybersecurity perspective. Assist with backup protection, recovery testing, ransomware readiness, and resilience planning. • Governance, Compliance & Documentation: Maintain security documentation, policies, procedures, standards, risk registers, audit evidence, and compliance-related materials. Help ensure alignment with applicable cybersecurity best practices and business requirements. • Security Awareness & Training: Promote a practical security awareness culture across the organization, including field technicians, office staff, operations teams, and business users. Support phishing simulations, user education, and security communications. • Vendor & Third-Party Security: Assist with security reviews of vendors, service providers, software platforms, and third-party integrations. Track risks and coordinate follow-up remediation where needed. • Collaboration with IT & Business Teams: Work closely with infrastructure, applications, service desk, operations, and business stakeholders to identify security needs, resolve issues, and implement practical security improvements.

🎯 Requirements

• Minimum of 5+ years of hands-on experience in cybersecurity, information security, infrastructure security, systems administration, or a related technical discipline. • Demonstrated ability to manage and execute core security functions without relying on a large internal security team. • Strong technical experience with incident response, vulnerability management, endpoint security, identity and access management, security monitoring, and threat mitigation. • Solid understanding of cybersecurity principles, common attack techniques, security controls, risk management, and infrastructure hardening. • Hands-on experience securing Microsoft Azure and Microsoft 365 environments, including creation and maintenance of automation scripts. • Familiarity with Microsoft security tools such as Microsoft Defender, Entra ID, Intune, Purview, Sentinel, or related technologies preferred. • Experience supporting security in environments with remote workers, mobile devices, distributed locations, or field service operations strongly preferred. • Ability to evaluate security risks and recommend practical, business-aligned remediation steps. • Strong documentation skills, including the ability to maintain policies, procedures, standards, incident records, and risk registers. • Comfortable communicating security topics to both technical and non-technical audiences. • Ability to work independently, prioritize effectively, and drive security work to completion. • Experience with disaster recovery, business continuity, backup protection, and ransomware preparedness preferred. • Security certifications such as CISSP, CISM, CISA, Security+, CySA+, GSEC, or similar are preferred but not required. • Infrastructure, cloud, or Microsoft certifications are a plus.

🏖️ Benefits

• 401(k) plan with company match • Medical insurance • Dental insurance • Vision insurance • FSA/HSA • PerkSpot • Long-Term Disability and Life Insurance • Paid time Off • Tuition Reimbursement (after one year of service)