Information Assurance Manager Category Information Technology Location Nashville, Tn

JBA International LLC

Nashville, Tn, USA
On-site
Identify and document it risks
Analyze vendor and supplier risk
Oversee enterprise information assurance program
The Manager of Information Assurance is responsible for identifying and documenting Information Technology (IT) risks, analyzing vendor and supplier risk, sharing the Pillsbury security-related activities with customers, and ensuring Pillsbury’s continued compliance with relevant standards (GDPR, SOC2, SOX etc.)

Job Summary

  • The Manager of Information Assurance is responsible for identifying and documenting Information Technology (IT) risks, analyzing vendor and supplier risk, sharing the Pillsbury security-related activities with customers, and ensuring Pillsbury’s continued compliance with relevant standards (GDPR, SOC2, SOX etc.).
  • This position will also be a key leader in and help continue to mature the existing Third-Party Risk Management (TPRM) program.
  • Responsibilities include leading a cross-functional team of information security professionals with wide-spread responsibility; coordinating data-driven risk assessments and risk-based analysis of controls.

Matching Summary

The Manager of Information Assurance is responsible for identifying and documenting Information Technology (IT) risks, analyzing vendor and supplier risk, sharing the Pillsbury security-related activities with customers, and ensuring Pillsbury’s continued compliance with relevant standards (GDPR, SOC2, SOX etc.).

Skills & Requirements

Must-have

  • Identify and document IT risks
  • Analyze vendor and supplier risk
  • Oversee enterprise information assurance program
  • Mature Third-Party Risk Management (TPRM) program
  • Create and manage KPIs and KRIs

Nice-to-have

  • Innovate on existing audit processes
  • Create modern audit program
  • Balance security policies with productivity
  • Compassionate leader with strong desire to advance career

Key Requirements

  • Bachelor's degree or equivalent experience
  • 7+ years of experience in information security
  • 5+ years of experience in cyber risk management
  • 3+ years management experience
  • Professional certifications (CISSP, CISA, CISM or CASP)
  • Deep knowledge of SOC 1, SOC 2 compliance
  • Background as a technologist with application development and DevOps understanding
  • Understanding of risk assessment methodologies, frameworks, and industry standards (ISO 27001, NIST, FEDRAMP)

Work Rights

Not specified

Tailored Resume

Cover Letter