Senior Information Security Manager

If you have an interest in being part of one of the fastest growing industries in the nation in you may consider wanting to work for Trulieve! If you have a desire to help others in need through your efforts, this may be the role for you! 

At Trulieve, we strive to bring our patients the relief they need in a product they can trust. Our plants are hand-grown in an environment specially designed to reduce unwanted chemicals and pests, keeping the process as natural as possible at every turn.

Our products are designed to alleviate seizures, severe and persistent muscle spasms, pain, nausea, loss of appetite, and other symptoms associated with serious medical conditions such as cancer.

Our specially trained staff works hand-in-hand with physicians to provide the right products and the correct dosage to ensure patients get the compassionate care they need.

To learn more about our company, please visit our website; 

https://www.trulieve.com

Requisition ID:  18441 

Remote Work Available: Yes 

Job Title: Senior Information Security Manager        

Department: Information Security

Location: Remote

Reports to: Information Security Director

FLSA Status: Exempt Regular Full-Time

Role Summary:   

The Senior Information Security Manager is responsible for overseeing one of the key areas of the Information Security Department, ensuring that all technological initiatives meet Trulieve's security standards and requirements. This role involves managing the Cybersecurity Operations Centre (CSOC), and planning, directing, and controlling the CSOC functions and operations. The Senior Information Security Manager will monitor and analyze incidents to protect people, technology, and processes, addressing all security incidents and ensuring timely escalation.

They will be accountable for securing Trulieve’s information by using their extensive experience to assess systems, identify, develop, and implement additional tools as needs evolve. This role requires a strategic approach to transforming Trulieve’s infrastructure security through designing and implementing advanced security technologies across the network.

The role of the Senior Information Security Manager is to be business customer-facing and to play an active role in transforming Trulieve’s infrastructure security through designing and implementing security technologies across the network.

Key Duties and Responsibilities:

• Develop and execute SOC strategy, plan, and lead the Information Security Operations team to ensure stable operation of the function.
• Direct security event monitoring, management, and response, and oversee cyber intelligence efforts.
• Establish and refine incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring processes.
• Ensure compliance with policies, processes, and procedures, and drive process improvements to achieve operational objectives.
• Align corporate and security strategic goals with ongoing initiatives.
• Apply a disciplined and systematic approach to all tasks.
• Leverage broad experience with technical engineering and design to enhance security measures.
• Revise and develop processes to strengthen the Security Operations framework, review policies, and address challenges in managing SLAs.
• Lead the team and manage the overall use of resources and initiate corrective actions for the Cybersecurity Operations Center as needed.
• Validate daily management, administration, and maintenance of security devices to achieve operational effectiveness.
• Create threat management and modeling, identify threat vectors, and develop use cases for security monitoring.
• Escalate and manage cybersecurity risk, threats, and protection.
• Develop comprehensive reports, dashboards, and metrics for CSOC operations and present them to management.
• Guide the team in detecting critical deficiencies and recommending technical solutions for continuous improvement.
• Collaborate with IT and Security leadership and cross-functional teams to develop strategies and plans to enforce security requirements and address identified risks.
• Demonstrate strong organizational skills and problem-solving expertise while working with current and emerging technologies.
• Serve as a subject matter expert for colleagues, providing insights on multiple technologies, compliance requirements, and risk analysis methodologies.

Skills and Qualifications:

• Bachelor’s degree in Computer Science, Engineering, Information Technology, or a related discipline.
• A minimum of ten (10) years of experience in Information Security, and three (3) years of management experience leading IS teams with a deep understanding of implementing security best practices, architecture, and security management.
• Background in managing the Cybersecurity Operations Center.
• Extensive knowledge of security frameworks such as ISO 27001, NIST, CIS, etc.
• Familiarity with compliance requirements such as SOX and others.
• At least one advanced security certification (CISSP, CISM, or equivalent).
• Proven experience leading the installation, configuration, and deployment of security tools, including project management roles.
• Expertise in managing security tools such as firewalls (IDS/IPS/WAF), vulnerability management, and endpoint security.
• Experience in developing and implementing incident response plans.
• Self-motivated, organized, and capable of managing multiple responsibilities and driving concurrently conducted projects to successful completion.
• High sense of urgency with strong pragmatic problem-solving skills and the ability to identify, analyze, and resolve problems.
• Relationship-building skills to successfully interact with collaborators across all levels and all parts of the organization.
• Excellent communication and leadership skills.
• A solid customer-focused mindset.

Work Schedule:

• 40+ hours weekly with flexible hours depending on department needs.

Equal Opportunity Employer   /  Trulieve Supports a D

Salary will be commensurate with experience.   A comprehensive benefits package including paid time off is offered with this position. 

Trulieve provides equal employment opportunities to all employees and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, pregnancy or any other characteristic protected by federal, state or local laws.