One of the most important aspects of operations for any business is security, especially of IT systems, and the job of an information security manager is to ensure that all computer systems are protected either from deliberate attack or from accidental damage.
Companies looking for an experienced information security manager will find that using a recruitment company such as Randstad Technologies will give a range of candidates with the knowledge and experience required. Randstad has worked for many years to develop links with major businesses in order to understand their recruitment needs, and is now able to source the right people for information security manager jobs.
Information security manager job description.
An information security manager takes responsibility for overseeing and controlling all aspects of computer security in a business. The job entails planning and carrying out security measures that will protect a business’s data and information from deliberate attack, unauthorised access, corruption and theft.
There are many threats to electronic information, and an information security manager would need to deal with risks that include:
- Denial of service attacks, where systems are overloaded with useless data and brought to a standstill
- Hacking, or unauthorised access to a computer system
- Phishing, where users are lured into entrusting their confidential details to spoof websites
- Viruses, spyware, worms and Trojans
- The abuse of permissions granted to authorised system users
- Pharming, where users are redirected to fake websites after genuine websites have been hacked.
Specific work would entail:
- Assessing the risks to computer systems and planning to minimise possible threats
- Upgrading existing security systems or designing new ones
- Testing security products and evaluating them
- Simulating security breaches to test procedures
- Making plans for disaster recovery in case security is breached
- Carrying out corrective actions in the event of a breach
- Looking for weak points in the system and securing them
- Ensuring that international and national network security standards are met
- Preparing technical documentation and reports for users and managers.
Managers in senior level posts would also be expected to be responsible for training and supervising staff, as well as working closely with operations managers on the overall security strategy of the business.
Role development.
Anyone holding an information security position needs to have well-developed IT skills and could take up a position after gaining experience in related jobs in IT, such as a network engineer, a database administrator or a systems analyst.
A new manager may start off in a relatively small business, applying the knowledge gained about security issues and applying them to the systems. A more experienced manager could progress to dealing with larger businesses and more complex computer systems, and start to manage a team of experts, either to bolster current security or to develop new, robust systems.
The world of IT moves very quickly, with new developments coming on stream all the time, so keeping abreast of developments by taking advantage of training is a good way to progress up the IT career ladder.