Information Security Manager

ATI builds and manages collaborations that conducts research and development of new technologies to solve our nation's most pressing challenges. Our collaborations are custom-built teams of organizations from industry and academia that develop novel technologies for the federal government. Traditionally, these processes are complicated and burdensome. That's where ATI comes in. We simplify and streamline processes to make it all work. When you work at ATI, you become a part of something larger than yourself. Our collective work - no matter what department or division you work in - ultimately enables the warfighter, saves lives, and diversifies the industrial base. At our core, ATI is a service organization. We are in service to others; it's what we do, and it's who we are.

Apply at ATI.ORG; we only accept applications submitted through our applicant tracking system.

This position offers a hybrid schedule (in-office & remote/work from home) or an onsite schedule and flexible hours. Candidates will need to reside near Charleston, SC to ensure work site flexibility.

Position Description:
The Information Security Manager will assist with the overall direction of enterprise-wide security functions associated with Information Technology and protect information assets from intentional or inadvertent access, modification, destruction and/or disclosure. The ideal candidate will possess a deep understanding of cybersecurity principles and practices, and will be responsible for designing, implementing, and maintaining robust security solutions to protect our company's critical assets. You will lead initiatives to strengthen our security posture, respond to incidents, and collaborate with cross-functional teams to ensure the integrity, confidentiality, and availability of our systems and data.

Essential Functions:

Security Design & Implementation: Develop and implement comprehensive security architectures and solutions to address organizational needs and mitigate risks.

Incident Response: Respond to security incidents, including investigation, containment, eradication, and recovery. Conduct post-incident reviews and recommend improvements.

Vulnerability Management: Identify and assess vulnerabilities through regular security assessments, penetration testing, and threat intelligence. Develop and implement strategies to address and remediate identified vulnerabilities.

Threat Analysis: Monitor and analyze emerging threats and vulnerabilities. Stay up-to-date with the latest cybersecurity trends and technologies to proactively address potential risks.

Policy & Compliance: Develop, review, and enforce security policies, procedures, and standards to ensure compliance with regulatory requirements such as the Cybersecurity Maturity Model Certification (CMMC), industry best practices and common cybersecurity frameworks such as the NIST Cybersecurity Framework 2.0.

Collaboration: Work closely with IT teams and other stakeholders to integrate security and promote good security practices throughout the company.

Security Tools & Technologies: Evaluate, deploy, and manage security tools and technologies to enhance the organization's security posture. Provide guidance on the selection and use of security solutions.

Training & Awareness: Conduct security training and awareness programs for staff to promote a culture of security and ensure adherence to security policies and practices.

Documentation: Maintain comprehensive documentation of security systems, procedures, and incident reports. Develop and update security documentation as needed.

Assists in the creation and management of the IT Security Roadmap to address the needs of the business today and into the future.

Ensures IT Security system operation adheres to applicable laws and regulations.

Maintains good relationships between internal IT resources, departments and external entities.

Keeps current with trends and issues in the IT Security industry, including current technologies and prices. Advises and educates IT Leadership on all IT Security related items

Acts as department lead if the Sr. Information Security Manager is unavailable

Additional Responsibilities:

• Other duties as assigned.

Qualifications:

• Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Advanced degree or relevant certifications (e.g., CISSP, CISM, CEH) preferred.
• Experience: Minimum of 6-10 years of experience in cybersecurity with a proven track record in a senior or lead role.
• Technical Skills: Strong knowledge of network and system security, including firewalls, intrusion detection/prevention systems, VPNs, and encryption technologies. Proficiency with security tools such as SIEM, IDS/IPS, and vulnerability scanners.
• Analytical Skills: Excellent problem-solving, analytical and troubleshooting skills, with the ability to assess complex security issues and develop effective solutions.
• Communication Skills: Strong verbal and written communication skills, with the ability to articulate security concepts and issues to both technical and non-technical stakeholders.
• Certifications: CISSP or equivalent Cyber Security certification.
• Personal Traits: Detail-oriented, proactive, and able to work independently as well as part of a team. Strong organizational skills and the ability to manage multiple priorities effectively.
• U.S. Citizenship required, must be able to possess and maintain a DOD security clearance.
• This position is subject to a background check that includes a review of criminal records. In reviewing an applicant's criminal history, the company will consider prior criminal convictions that have a relationship to the job duties and responsibilities of the position. The company considers the nature of the crime, the time that has elapsed since the crime and the job duties for the position at issue in making an individualized determination. Individuals may be excluded when the company determines, based on the above factors, that hiring, transferring or promoting the applicant would pose an unreasonable risk to the business, its employees or its customers and vendors.
• If you are a qualified candidate, we encourage you to apply even if you have a prior criminal conviction(s). Convictions will not automatically disqualify the candidate, However, conviction(s) will be considered and balanced against the age of the candidate at the time of the offense, time elapsed since the offense, type of offense, potential impacts of such on the work environment, sensitivity of the position(s) available/sought, and similar independent factors relevant to the employment requirements at ATI.

Physical Requirements

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Regular physical activity to include walking, bending, stooping, reaching, standing and prolonged sitting.

Ability to use phone and computer systems, copier, fax, and other office equipment.

Must be able to occasionally move/lift up to 25 pounds with or without reasonable accommodation.

Work Environment

This position is located in an air-conditioned, environmentally controlled atmosphere.

Noise level in the work environment is usually moderate.

ATI is an Equal Opportunity Employer of Minorities, Females, Protected Veterans, Individuals with Disabilities and all other protected classes.

Apply at ATI.ORG; we only accept applications submitted through our applicant tracking system.If you require accommodations to complete this application, please contact Human Resources at (843) 760-4350 or email hr@ati.org.

Anticipated starting salary is in range commensurate with education and experience:
$120,000