Information Security Manager

Job Locations US-NY-Rochester and surrounding areas | US-NY-Amherst and surrounding areas
Job ID
Information Technology


The Information Security Manager will design, implement and maintain computer and information security systems. They monitor networks to detect any suspicious or hostile activities, and take measures to defend against malicious attacks on our systems. To support the mission, vision and values of Heritage Christian Services.


Pay rate for this position: $38.47 / hr - $48.07 / hr


The salary of the finalist selected for this role will be set based on a variety of factors, including but not limited to departmental budgets, qualifications, experience, education, licenses, specialty, and training. The above range represents the organization's good faith and reasonable estimate of the range of possible compensation at the time of posting


  1. Capture and document security framework objective metrics and report centrally
  2. Perform both internal and external security audit testing to uncover network vulnerabilities.
  3. Collaborate with the Head of Risk and Compliance to develop security strategy and maintain an on-going program of security testing
  4. Present updates to the Information Security & Risk Management Committee
  5. Recommend and Implement procedures for compliance and audit
  6. Perform both internal and external security audit testing to uncover network vulnerabilities.
  7. Analyze security breaches to identify the root cause and document incident.
  8. Identify vulnerabilities or failures in Information Security and drive appropriate improvements
  9. Conduct security assessments through vulnerability testing and risk analysis.
  10. Continuously update the Agency’s incident response and disaster recovery plans.
  11. Verify the security of third-party vendors and collaborating with them to meet security requirements.
  12. Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.
  13. Work with IT team to fix detected vulnerabilities to maintain a high-security standard.
  14. Develop Agency-wide best practices for IT security.
  15. Coordinate penetration testing and remediation.
  16. Help colleagues install security software and understand information security management.
  17. Research security enhancements and make recommendations to management.
  18. Stay up-to-date on information technology trends, security standards, and security trends.


  • Bachelor's degree in computer science or related field.
  • At least five years’ experience in information security management or related field.
  • Experience with computer network penetration techniques.
  • Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts.
  • Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
  • Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact.
  • Experience with NIST cybersecurity framework a plus.

Our Commitment to Equity and Justice


We believe that people are entitled to dignity, respect, equity and justice. We champion a society that removes barriers. We reject racism and discrimination of any kind. We protest systemic and political inequities that marginalize people, recognizing that there is a history of structural racism in the United States. We will continue to learn and change to achieve justice. We know that strength comes from unity.


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed