IT Security Manager

At Vintti, we're redefining the economics of staffing for US businesses. Our agency connects SMBs, startups, and firms with top Latin American talent, offering a dual benefit of high-quality work and cost savings. By tapping into this rich talent pool, our clients can optimize their budgets, increase productivity, and gain a competitive advantage in their respective markets.

An IT Security Manager plays a critical role in safeguarding an organization’s information and technology assets. This position involves developing, implementing, and managing security measures to protect against breaches and cyber threats. The IT Security Manager is responsible for establishing security protocols, conducting vulnerability assessments, and leading incident response efforts. By continually researching emerging threats and staying abreast of industry best practices, the IT Security Manager ensures that the organization's data and systems remain secure, fostering a culture of security awareness and compliance throughout the organization.

- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 5 years of experience in IT security or a related field.
- Proven experience with network security and related technologies, including firewalls, intrusion detection/prevention systems, and anti-virus software.
- Hands-on experience with security assessment tools and techniques, including vulnerability assessments and penetration testing.
- Comprehensive understanding of security protocols, cryptography, authentication, authorization, and security practices.
- Strong knowledge of regulatory requirements and industry standards such as GDPR, HIPAA, and ISO/IEC 27001.
- Experience with identity and access management (IAM) systems.
- Proficiency in conducting security risk assessments and audits.
- Ability to handle and respond effectively to security incidents.
- Familiarity with configuration and maintenance of security information and event management (SIEM) systems.
- Excellent problem-solving skills and attention to detail.
- Strong analytical and organizational abilities.
- Ability to stay updated on the latest security risks and vulnerabilities.
- Effective communication and presentation skills.
- Experience in leading and managing a team.
- Professional certifications such as CISSP, CISM, CEH, or similar.
- Demonstrated ability to develop and implement security policies and procedures.
- Ability to work collaboratively with various stakeholders, including senior management.
- High level of integrity and trustworthiness.
- Experience in delivering security training and awareness programs.
- Proficiency in documenting and reporting on security measures and incidents.

- Monitor and analyze network traffic for security anomalies.
- Develop, implement, and maintain security policies, protocols, and procedures.
- Conduct regular vulnerability assessments and penetration testing.
- Manage and respond to security incidents, including investigation, documentation, and remediation.
- Coordinate with internal teams and external partners to secure IT infrastructure.
- Oversee the installation, configuration, and maintenance of security systems.
- Review and analyze security logs and reports.
- Ensure compliance with relevant regulatory requirements and industry best practices.
- Conduct security training and awareness programs for employees.
- Manage user access controls and identity management processes.
- Perform regular security audits and risk assessments.
- Update and patch software and hardware systems for vulnerability protection.
- Recommend and implement new security technologies and best practices.
- Collaborate with senior management on IT security strategy and roadmap.
- Prepare and present regular reports on IT security measures to key stakeholders.
- Stay informed about the latest cyber threats and trends.

The ideal candidate for the IT Security Manager role is a seasoned professional with at least five years of dedicated experience in the IT security space, underpinned by a Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a closely related field. They possess an extensive and up-to-date understanding of security protocols, cryptography, and authentication processes, and are adept at using advanced security tools and technologies, including firewalls, intrusion detection/prevention systems, and anti-virus software. This individual is recognized for their expertise in conducting thorough vulnerability assessments, penetration testing, and regular security audits, ensuring robust protection against potential threats. They demonstrate strong analytical and problem-solving skills, coupled with a meticulous attention to detail, which enables them to swiftly identify and address security anomalies. Familiarity with regulatory requirements such as GDPR, HIPAA, and ISO/IEC 27001 is essential, alongside hands-on experience with identity and access management systems. The ideal candidate excels in emergency response situations, providing clear and effective incident management and remediation. Their exceptional communication skills allow them to convey complex security matters to stakeholders clearly and concisely, and they are proactive in implementing and updating security policies and procedures. They are a continuous learner, staying ahead of emerging threats and technologies, and possess relevant certifications such as CISSP, CISM, or CEH. A proven leader and team player, they guide and mentor team members, fostering a culture of security and trust within the organization. This individual demonstrates high ethical standards, integrity, and reliability, with an unwavering passion for information security and data protection. Their organizational prowess and ability to manage time effectively ensure that they handle high-pressure situations with composure and efficiency, making them an invaluable asset to the organization.

- Monitor and analyze network traffic for security anomalies and take appropriate action to protect data integrity and confidentiality.
- Develop, implement, and maintain security policies, protocols, and procedures to ensure comprehensive protection of sensitive information and compliance with industry standards.
- Conduct regular vulnerability assessments and penetration testing to identify and address potential security risks.
- Manage and respond to security incidents, including investigation, documentation, and remediation efforts.
- Coordinate with internal teams and external partners to ensure that all IT infrastructure is secured against potential threats.
- Oversee the installation, configuration, and maintenance of security systems, including firewalls, anti-virus software, and intrusion detection/prevention systems.
- Review and analyze security logs and reports to identify and mitigate security threats.
- Ensure compliance with relevant regulatory requirements and industry best practices, such as GDPR, HIPAA, and ISO/IEC 27001.
- Conduct security training and awareness programs for employees to promote a culture of security within the organization.
- Manage user access controls and identity management processes to safeguard against unauthorized access.
- Perform regular security audits and risk assessments to maintain the highest level of security across all IT systems.
- Update and patch software and hardware systems to protect against vulnerabilities and exploits.
- Recommend and implement new security technologies and best practices to enhance the company's overall security posture.
- Collaborate with senior management to develop and update the organization's IT security strategy and roadmap.
- Prepare and present regular reports on the status of IT security measures to key stakeholders.
- Stay informed about the latest cyber threats and trends to proactively address potential security challenges.

- Strong ethical standards and integrity
- Analytical mindset with a keen eye for detail
- Proactive in identifying and addressing potential security threats
- Excellent problem-solving and critical-thinking skills
- Exceptional organizational and time-management abilities
- Effective communicator with strong presentation skills
- Team player with collaborative mindset
- Ability to handle high-pressure situations calmly and efficiently
- Continuous learner who stays updated on emerging threats and technologies
- Leadership qualities with the ability to mentor and guide team members
- Strong decision-making capabilities
- High level of reliability and responsibility
- Passion for information security and protecting data
- Results-oriented with a focus on achieving goals
- Ability to work independently and take initiative

- Competitive salary range
- Comprehensive health benefits, including medical, dental, and vision insurance
- Retirement savings plan with employer matching
- Generous paid time off (PTO) and holiday leave
- Flexible work arrangements, including remote work options
- Professional development opportunities, including training programs and certifications
- Reimbursement for approved continual education courses and certifications
- Employee wellness programs
- Regular company-sponsored events and team-building activities
- Collaborative and inclusive work environment
- Opportunities for career advancement and growth within the organization
- Performance bonuses and incentives
- Life and disability insurance coverage
- Paid parental leave
- Access to cutting-edge technologies and tools
- Support for work-life balance, including flexible work hours
- Employee assistance programs (EAP) for personal and professional well-being
- Discounts on company products and services
- Mentorship and leadership development programs