Information Security Manager Career Facts

An Information Security Manager is a specialist with a profound knowledge in network administration and it's security issues. They are sometimes referred as a systems security administrator, or an information systems security manager. In order to become an information security manager, you will need a bachelor's degree in computer systems or networking. The person should also have quality experience in providing security solutions to individual organizations.

Professionals working at lower levels in information security line can rise to higher levels if they take the Certified Information Security Managers (CISM) certification exam that is conducted by Information Systems Audit and Control Association (ISACA) . Microsoft Certified Systems Engineer (MSCE) and Certified Network Engineer (CNE) are also widely accepted as valid certifications.

Duties and Daily Tasks

  • Understand the information security needs of the organization (information security managers have to collect the data related to the company's goal, mission and existing security methods and abide by it).
  • Analyze and evaluate the vulnerabilities of the network.
  • Implement the security system in place and manage it.
  • Manage the security systems with the help of firewalls, intrusion detection, encryption and other technologies.
  • Report incidents of breach of security to higher authorities.
  • Create awareness for the need of internal information security within the organization.
  • Assess the risks involved due to the lapse of internal information security and prepare the internal security audit reports.
  • Liaison with other Information Systems departments and review security plans.
  • Protect the integrity of the internal information, infrastructure and other applications.
  • Plan and document the security policies and procedures for the organization as per its ethics, beliefs and procedures.
  • Make the security plans in such a way that it complies to the internal and external security policies.
  • Train employees, alliances, affiliate partners and others about internal security measures.
  • Remain abreast in the latest advances in information security matters.

Work Nature

Information security managers are generally employed by public or private organizations. There are a few information security managers with enough expertise to work individually, for more than one client on a contractual basis. The typical work schedule is the 40 hours work week.

Salary and Advancement Opportunities

According to the Bureau of Labor Statistics, the median annual Information Security Manager's salary is around $113,060. A number of certifications like CCNA, MSNA, CISSP, ISACA has opened up newer avenues for Information Security professionals. With an increase in the expertise and competencies, there is a good chance that an information security manager will become promoted to upper echelon levels.