{"schemaVersion":"jobsearcher.job.v1","id":"cc323a19a8d0fd512bb45113","url":"https://jobsearcher.com/jobs/cc323a19a8d0fd512bb45113","canonicalUrl":"https://jobsearcher.com/jobs/cc323a19a8d0fd512bb45113","title":"Information Security Manager","description":"Summary\r\nThe Information Security Manager is responsible for leading and executing the organization's information security program, balancing governance, compliance, and hands-on technical security responsibilities. This role provides leadership to a team of security associates while partnering closely with IT, Engineering, and business stakeholders to identify, manage, and reduce security risk. The Information Security Manager ensures compliance with regulatory and customer security requirements, supports secure operations across systems and platforms, and contributes to a strong culture of security awareness and accountability across the organization.\r\nEmployees in this role are expected to perform their duties in accordance with The Way We Work, helping to create a company where innovation and care drive meaningful connections.\r\nDuties & Responsibilities\r\nEssential Functions\r\nDevelop, implement, and maintain the company's information security program, including security policies, standards, and control objectives.\r\nProvide leadership and day-to-day management for an assigned team of security associates, including work direction, coaching, performance feedback, and support of professional development.\r\nConduct and lead information security risk assessments across applications, infrastructure, and third parties; maintain a risk management framework to identify, assess, document, prioritize, and track remediation of security risks.\r\nOversee and perform (as needed) threat detection, vulnerability management, and incident response activities, including investigation coordination, root cause analysis, remediation tracking, and post-incident reviews.\r\nOwn and manage the PCI DSS compliance lifecycle, including control implementation and validation, assessment coordination, evidence collection, and remediation of findings.\r\nLead SOC 2 readiness, audits, and ongoing compliance by maintaining control documentation and mappings, coordinating evidence collection with cross-functional teams, and serving as the primary liaison to external auditors and assessors.\r\nAssess, monitor, and report third-party and vendor security risk, including due diligence reviews, security requirement input, and ongoing risk monitoring as applicable.\r\nProvide hands-on security support for cloud and networked environments (e.g., Azure and application networking), including reviewing configurations, recommending or implementing security controls, and partnering with IT and Engineering to remediate identified issues.\r\nPartner with Engineering to implement and validate application security requirements (e.g., OWASP-aligned controls), support secure development practices, identify security gaps, and track remediation to closure.\r\nAdditional Responsibilities\r\nManage security awareness and training to support required policies, acceptable use practices, and security responsibilities across the organization.\r\nSupport initiatives that enhance the security of associates, partners, systems, and integrations through collaboration, adherence to security practices, and continuous improvement.\r\nWork collaboratively with internal departments to support secure operations and a high standard of service for internal and external stakeholders.\r\nContribute to the onboarding and training of new associates by sharing security practices, standards, and role-appropriate guidance.\r\nPromote and reinforce appropriate workplace behavior in accordance with company policies, procedures, and management guidance.\r\nResolve routine and moderately complex issues within scope of responsibility and communicate resolutions or required information to impacted parties.\r\nTo remain innovative and efficient, the use of AI is typical and expected within this role and at Basys.\r\nPerform other related duties as assigned, consistent with the nature and level of the role.\r\nRequirements\r\nThis role is eligible for a hybrid schedule. Up to 2 days per week may be worked remotely in accordance with the telecommuting policy.\r\nA commitment to\r\nStrong communication both written and verbal with ability to translate security to business stakeholders.\r\nStrong problem-solving skills and use of judgement.\r\nAccountability and ownership for assigned tasks and follow-through.\r\nQuality, accuracy, and attention to detail.\r\nContinuous improvement and learning.\r\nEducation & Experience\r\nBachelor's degree in Computer Science, Information Technology, Business Administration or other related fields is preferred.\r\n5–8+ years in information security, cybersecurity, or GRC.\r\n2-4+ years management experience.\r\nExperience with PCI DSS.\r\nExperience with SOC 2 audits/readiness.\r\nFamiliarity with frameworks like NIST CSF and ISO 27001.\r\nExperience with security tools/vendors (SIEM, endpoint, vulnerability management).\r\nJ-18808-Ljbffr","company":"Basys Processing","rawCompany":"basys processing","city":"Lenexa","state":"KS","isRemote":false,"isActive":false,"createdAt":"2026-04-24T04:59:15.388Z","occupations":[{"code":"15-1212.00","title":"Information Security Analysts","slug":"information-security-analysts"},{"code":"13-1199.07","title":"Security Management Specialists","slug":"security-management-specialists"},{"code":"11-3021.00","title":"Computer and Information Systems Managers","slug":"computer-and-information-systems-managers"}],"industries":[{"code":"541512","title":"Computer Systems Design Services","slug":"computer-systems-design-services"},{"code":"541511","title":"Custom Computer Programming Services","slug":"custom-computer-programming-services"},{"code":"561621","title":"Security Systems Services (except Locksmiths)","slug":"security-systems-services-except-locksmiths"}],"jobPosting":{"@context":"https://schema.org","@type":"JobPosting","title":"Information Security Manager","description":"Summary\r\nThe Information Security Manager is responsible for leading and executing the organization's information security program, balancing governance, compliance, and hands-on technical security responsibilities. This role provides leadership to a team of security associates while partnering closely with IT, Engineering, and business stakeholders to identify, manage, and reduce security risk. The Information Security Manager ensures compliance with regulatory and customer security requirements, supports secure operations across systems and platforms, and contributes to a strong culture of security awareness and accountability across the organization.\r\nEmployees in this role are expected to perform their duties in accordance with The Way We Work, helping to create a company where innovation and care drive meaningful connections.\r\nDuties & Responsibilities\r\nEssential Functions\r\nDevelop, implement, and maintain the company's information security program, including security policies, standards, and control objectives.\r\nProvide leadership and day-to-day management for an assigned team of security associates, including work direction, coaching, performance feedback, and support of professional development.\r\nConduct and lead information security risk assessments across applications, infrastructure, and third parties; maintain a risk management framework to identify, assess, document, prioritize, and track remediation of security risks.\r\nOversee and perform (as needed) threat detection, vulnerability management, and incident response activities, including investigation coordination, root cause analysis, remediation tracking, and post-incident reviews.\r\nOwn and manage the PCI DSS compliance lifecycle, including control implementation and validation, assessment coordination, evidence collection, and remediation of findings.\r\nLead SOC 2 readiness, audits, and ongoing compliance by maintaining control documentation and mappings, coordinating evidence collection with cross-functional teams, and serving as the primary liaison to external auditors and assessors.\r\nAssess, monitor, and report third-party and vendor security risk, including due diligence reviews, security requirement input, and ongoing risk monitoring as applicable.\r\nProvide hands-on security support for cloud and networked environments (e.g., Azure and application networking), including reviewing configurations, recommending or implementing security controls, and partnering with IT and Engineering to remediate identified issues.\r\nPartner with Engineering to implement and validate application security requirements (e.g., OWASP-aligned controls), support secure development practices, identify security gaps, and track remediation to closure.\r\nAdditional Responsibilities\r\nManage security awareness and training to support required policies, acceptable use practices, and security responsibilities across the organization.\r\nSupport initiatives that enhance the security of associates, partners, systems, and integrations through collaboration, adherence to security practices, and continuous improvement.\r\nWork collaboratively with internal departments to support secure operations and a high standard of service for internal and external stakeholders.\r\nContribute to the onboarding and training of new associates by sharing security practices, standards, and role-appropriate guidance.\r\nPromote and reinforce appropriate workplace behavior in accordance with company policies, procedures, and management guidance.\r\nResolve routine and moderately complex issues within scope of responsibility and communicate resolutions or required information to impacted parties.\r\nTo remain innovative and efficient, the use of AI is typical and expected within this role and at Basys.\r\nPerform other related duties as assigned, consistent with the nature and level of the role.\r\nRequirements\r\nThis role is eligible for a hybrid schedule. Up to 2 days per week may be worked remotely in accordance with the telecommuting policy.\r\nA commitment to\r\nStrong communication both written and verbal with ability to translate security to business stakeholders.\r\nStrong problem-solving skills and use of judgement.\r\nAccountability and ownership for assigned tasks and follow-through.\r\nQuality, accuracy, and attention to detail.\r\nContinuous improvement and learning.\r\nEducation & Experience\r\nBachelor's degree in Computer Science, Information Technology, Business Administration or other related fields is preferred.\r\n5–8+ years in information security, cybersecurity, or GRC.\r\n2-4+ years management experience.\r\nExperience with PCI DSS.\r\nExperience with SOC 2 audits/readiness.\r\nFamiliarity with frameworks like NIST CSF and ISO 27001.\r\nExperience with security tools/vendors (SIEM, endpoint, vulnerability management).\r\nJ-18808-Ljbffr","datePosted":"2026-04-24T04:59:15.388Z","dateModified":"2026-04-24T04:59:15.388Z","hiringOrganization":{"@type":"Organization","name":"Basys Processing","sameAs":"https://jobsearcher.com"},"jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Lenexa","addressRegion":"KS","addressCountry":"US"}},"identifier":{"@type":"PropertyValue","name":"JobSearcher","value":"cc323a19a8d0fd512bb45113"},"url":"https://jobsearcher.com/jobs/cc323a19a8d0fd512bb45113"}}