Service Manager – Network Security & Compliance

Role : Service Manager – Network Security & ComplianceLocation : San Diego, CA (Onsite – Hybrid)Duration : 6 Monhts CTHAbout the RoleThis role carries full operational accountability for day-to-day management of a six-person team delivering firewall management, vulnerability management, compliance reporting, and network services including DNS, DHCP, and IP Address Management (IPAM).The Service Manager – Security serves as the primary interface with the client Cyber Security Manager and is responsible for ensuring service delivery meets or exceeds contractual SLR/SLA obligations, producing audit-ready compliance documentation, and driving continuous improvement across the security service tower.Experience:Team Leadership & Service DeliveryLead, mentor, and manage a team of six security professionals across the Security TowerOwn day-to-day operations and ensure SLR/SLA compliance across all security service linesConduct regular team performance reviews, workload balancing, and development planningEscalate and manage P1/P2 security incidents in alignment with MSA contractual requirementsFirewall & Network Security Management:Own the Palo Alto firewall environment across 24 devices managed via PanoramaOversee firewall rule optimization, policy lifecycle management, and rule template implementationEnsure firewall configurations align with CIS Benchmarks and organizational security standardsLead SOP development, maintenance, and stakeholder review for firewall operationsVulnerability Management:Oversee monthly vulnerability scanning using Qualys; ensure CVSS-based prioritization and remediation trackingMaintain the centralized Patch Update Tracker and report compliance status against MSA obligationsCoordinate remediation activities across engineering teams and report findings to City stakeholdersDNS, DHCP & IPAM Management:Manage DNS, DHCP, and IPAM services delivered via Infoblox across the City's network environmentEnsure availability, accuracy, and integrity of IP address space and DNS resolution infrastructureOversee change management and documentation for all DNS/DHCP/IPAM modificationsCompliance & Documentation:Own compliance deliverables aligned to NIST 800-53 Rev 5, CIS Controls, NIST CSF 2.0, and CJIS frameworksAuthor and maintain SOPs, risk assessments, and audit-ready documentation for the Security TowerSupport quarterly performance reporting per MSA Schedule 15 obligationsEnsure all compliance activities are traceable to specific framework controls and MSA schedule referencesStakeholder ManagementServe as the primary point of contact with the City of San Diego Cyber Security ManagerDeliver executive-level status updates, briefings, and compliance summaries to City IT stakeholdersCollaborate with the Service Delivery Manager to align security priorities with broader contract obligationsParticipate in governance reviews and represent the Security Tower in program-level forumsEducation & Experience:Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field; equivalent experience considered5+ years of experience in IT security operations, service management, or a related discipline2+ years of experience managing or leading technical security teamsDemonstrated experience producing compliance documentation aligned to NIST, CIS, or equivalent frameworksRequired Certifications (one or more):CISSP – Certified Information Systems Security Professional, ORCISM – Certified Information Security Manager, ORCISA – Certified Information Systems Auditor, ANDPMP – Project Management Professional (required in addition to security certification)Skills & Competencies:Strong working knowledge of NIST CSF 2.0, NIST 800-53 Rev 5, and CIS ControlsAbility to author and maintain audit-ready SOPs, risk assessments, and compliance reportsExperience managing SLR/SLA obligations in a managed services or enterprise IT environmentProficiency with ITSM platforms (ServiceNow preferred) for ticket management, CMDB, and reportingExcellent verbal and written communication skills; ability to present to both technical and executive audiencesPreferred Qualification: Hands-on experience with Palo Alto Networks firewalls and Panorama centralized managementFamiliarity with Qualys vulnerability management platform and CVSS-based remediation prioritizationExperience with Infoblox DDI (DNS, DHCP, IPAM) administration and change managementKnowledge of CJIS Security Policy requirements and government/municipal IT environmentsPrior experience supporting a public sector or government-contracted managed services engagementFamiliarity with ITIL 4 service management practices