Talent.com
Information Security Manager

Information Security Manager

Holland & Hart LLPBoise, ID , US
job_description.job_card.variable_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
  • serp_jobs.job_card.part_time
job_description.job_card.job_description

General Purpose :

The Information Security Manager reports to the Chief Information Security Officer (CISO) and supports the implementation of security strategy that ensures Holland & Hart complies with applicable client, legal, and regulatory security requirements while safeguarding Holland & Hart's facilities and information systems. The Information Security Manager supports in the implementation of the strategy, operations and budget of the architecture, design, and implementation of IT projects to ensure availability, confidentiality, and data integrity. The Information Security Manager manages the threat landscape within Holland & Hart and designs and implements security measures tailored to address threats in a timely, efficient, and risk-managed method. The Information Security Manager is a formal contributor in enterprise-wide risk assessments and champion in security control implementation.

Essential Duties / Responsibilities :

  • Drives the development and implementation of strategic, long-term information security strategy and roadmaps to ensure Holland & Hart's information assets are adequately protected.
  • Critical decision maker on designated information security committees, including analyzing and managing firm risk and tracking remediation.
  • Oversees incident response planning and the investigation of security breaches.
  • Leads IT Security incident response. Collaborates with analysts performing incident response and remediation. Handles incident response communications within team.
  • Works with employees across the firm to assess and communicate and make recommendations regarding acceptable levels of risk.
  • Manages ISO 27001 certifications including evidence collection and presentation to certification bodies.
  • Manages and responds to client audits and security reviews, negotiating best practices, mitigating controls, and implementing new security measures. Presents security evidence to clients to demonstrate compliance.
  • Assists the CISO in maintaining the budget and operational focus of the team.
  • Provides subject matter expertise on security standards and best practices.
  • Oversees the implementation of Access Control solutions.
  • Manages individuals within Access Control team.
  • Develops and mentors information security and technology professionals.
  • Develops and recommends regulatory changes on information security policies, procedures, standards and guidelines, and oversees their approval, dissemination, and maintenance.
  • Ensures that the security management program is compliant with applicable laws, regulations, and contractual requirements.
  • Oversees and may provide hands on support for the evaluation, selection and implementation of information security solutions that are innovative, cost-effective, and minimally disruptive.
  • Partners with software developers, infrastructure, and applications teams to ensure that technologies are developed and maintained according to security policies and guidelines.
  • Monitors the industry and external environment for emerging threats and advise relevant stakeholders on appropriate courses of action.
  • Liaise with law enforcement and other advisory bodies to ensure that the organization maintains a strong security posture.
  • Leads one or more phases of large-complexity projects.

Competencies :

  • Strategic Thinking : Plans and makes decisions within the framework of the firm's strategic intent.
  • Team Management & Results Orientation : Creates and maintains high functioning team(s).
  • Communication :  Understands the importance of and demonstrates verbal, written, and non-verbal communications.
  • Customer / Client Experience :  Creates a consistent and exceptional experience for others, whether directly to external clients / customers or indirectly through internal support, that elevates the overall perception of the firm.

    • Supervisory Duties (if applicable) :

  • Develop and nurture a working environment that prioritizes inclusivity and a client-centric approach. Recognize and reward strong performance, teamwork, professionalism, and responsiveness. Instill confidence within the team and among the firm's professionals by celebrating hard work and success. Set clear and achievable expectations for future success.
  • Effectively organize and oversee the scheduling, workload distribution, and productivity of the team to ensure efficient operations.
  • In collaboration with the department head and in accordance with company policy, make informed hiring and selection decisions to build a high-performing team.
  • Deliver timely and constructive performance feedback. Complete performance evaluations that help team members grow and improve.
  • Actively coach, develop, and train team members to ensure they meet and exceed departmental expectations and perform their duties effectively.
  • Review and approve timecards and vacation requests for direct reports, ensuring compliance with organizational policies and procedures.
  • Efficiently manage daily responsibilities in alignment with departmental goals and objectives.
  • With the assistance of HR and the department head, manage employee discipline and, when necessary, termination in accordance with company policy and legal guidelines.

    • Job Qualifications (Education, Experience and Certification) :

  • Bachelor’s degree with technology is preferred, or applicable years of direct experience.
  • Minimum 10 years of IT experience with a focus on IT Security.
  • 2 years of management experience is preferred.
  • At least one relevant industry certifications such as GCIH, GCED, CISSP, CISA, CISM, etc.
  • Possesses an excellent knowledge and background in IT operations, security technologies and regulations.
  • Must be collaborative, creative, and driven with a proven ability to be a team player
  • Able to think strategically, develop solutions quickly and implement efficiently.
  • Possesses business acumen and understands budgets, business-planning and balancing security and business risk.
  • Skilled in conducting security reviews, audits, and analyses.
  • Excellent verbal, written, and overall communication skills and ability to communicate effectively at all firm levels.
  • Leadership and organizational abilities.
  • Detailed oriented to ensure that the success of implementations is paramount.
  • Strong analytical skills.
  • Self-starter with the ability to multi-task and work in a very fast paced environment.
  • Results oriented and with a strong client focus.

    • Physical Requirements :

    While performing the duties of this position, the employee must have the ability to sit, stand and / or walk for extended periods of time; manipulate (lift, carry, move) weights of at least ten (10) pounds; have repetitive wrist / hand / finger movement to work on a computer and / or related office equipment; speak clearly and concisely so listeners can understand; and regularly understand the speech of another person.

    The physical demands described here are representative of those that must be met by this position to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

    Work Environment :

    Professional office atmosphere. Sedentary work that primarily involves sitting or standing for prolonged periods. Position may require occasional off-hour meetings and events.

    The work environment characteristics described here are representative of those this position may encounter while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

    Note :  This job description is intended to convey information essential to understanding the scope of the job and the general nature and level of work performed by job holders within this job. However, this job description is not intended to be an exhaustive list of qualifications, skills, efforts, duties, responsibilities or working conditions associated with the position.

    Holland & Hart offers of employment take into consideration a candidate’s education, training, and experience, as well as the position's work location, external market and internal value, including seniority and merit systems, and internal pay alignment when determining the salary level for potential new employees. A discretionary bonus may be available based upon performance. The Colorado salary range is $125,317 to $208,862 annually. A discretionary bonus may be available based upon performance.

    The application window is anticipated to close on or after Sunday, August 31, 2025.

    Holland & Hart works hard to promote work / life balance with a -hour scheduled work week for most staff employees, a robust wellness program, and generous PTO and holiday pay for eligible employees. Full-time employees become eligible for benefits on the date hire, with a benefits offering that includes medical, dental, vision, life, AD&D, EAP, STD, and LTD. Also available are voluntary income protection benefits such as supplemental life, accident, critical illness, and long-term care insurances, as well as a 401(k)-retirement plan with a company match. In addition, the firm has programs that may provide for educational assistance, free or discounted legal services, and opportunities through the Holland & Hart Foundation, which is a non-profit organization dedicated to creating volunteer opportunities for lawyers, staff, families, and friends of Holland & Hart LLP. Part-time employees may have access to some of these benefits, which may be on a pro-rated basis.

    serp_jobs.job_alerts.create_a_job

    Information Security Manager • Boise, ID , US