• IT Security Manager

    Job Locations US-PA-Philadelphia
    Job ID
    # of Openings
    Information Technology
  • Overview


    PFM is a national leader in providing independent financial advice as well as investment advisory, management and consulting services to local, state, and regional government and non-profit clients. We are proud to help our clients meet their financial challenges with a broad array of products, backed by unquestioned professionalism and outstanding service.  We are a firm of over 600 professionals located in offices in every region of the country.

    PFM is currently seeking an IT Security Manager to provide technical and operational leadership for the Information Security team. The ideal candidate will actively participate in defining and executing plans designed to fulfill the objectives of PFM’s Information Security Program and the strategic direction set by the Chief Information Officer (CIO). He or she will lead a small team of security analysts and be responsible for implementing cybersecurity tools, policies, and technical controls that serve to protect the information assets of the firm.  While ensuring alignment with industry standard frameworks, they will maintain the appropriate balance between protecting the environment against cyber threats and enabling PFM businesses to effectively meet the needs of its clients.  The selected individual will report to the CIO and be a key member of the IT management team.


    Major Responsibilities:

    • Oversee PFM’s Information Security program and staff, while executing against an agreed upon enterprise cybersecurity roadmap.
    • Oversee network monitoring, cybersecurity data collection and analysis (e.g. intrusion attempts, spam statistics, data loss protection statistics, etc.), and investigate violations when they occur.
    • Lead the development, testing, and execution of incident response plans.
    • Coordinate annual security assessments and penetration tests with 3rd-party vendors.
    • Perform routine security reviews and attestations (e.g., privileged account access).
    • Work with business and technical teams to establish, implement, and enforce security policies.
    • Oversee security projects in collaboration with infrastructure and applications teams.
    • Manage security vendor relationships (e.g. Managed Service Provider.
    • Evaluate, recommend, implement, and manage cybersecurity tools and platforms.
    • Engage with senior management and actively participate as a member of the Information Security Governance Committee.
    • Coordinate responses to internal and external audits and security related inquiries.

    Other Responsibilities:

    • Develop and deliver employee security awareness training and other communications designed to keep employees informed about cybersecurity risks and internal policies.
    • Create and distribute monthly security related activity reports.
    • Coordinate meetings and presentations to IT Security Governance Committee, senior management, and internal and external clients as needed.
    • Keep abreast of latest cybersecurity threats and best practices through continuous research, attending training, and participating in local security users groups/organizations.
    • Contribute to business development proposals, presentations, and RFP responses as needed.


    Required Skills/Qualifications:

    • Bachelor’s degree (BA/BS) in Computer Science, MIS, and Business/Finance or a related field and equivalent work experience.
    • At least 5 years working in IT Security; minimum 2 years management experience (5+ years overall IT experience required).
    • Strong knowledge of leading cyber security tools and platforms.
    • Subject matter expert in the Information Security space, with broad technical knowledge across mulitple IT disciplines (network infrastructure, applications, etc.).
    • Strong quantitative, analytical, and writing skills.
    • Excellent communication and interpersonal skills.
    • Ability to handle multiple tasks simultaneously and work under pressure.
    • Strong sense of personal responsibility.
    • A professional and ethical approach with a strong desire to succeed.

    Preferred Skills:

    • Professional Qualification such as CEH, CISSP, CISA, CISM an advantage but not essential.
    • Current, relevant experience of working in an Information Technology Infrastructure and/or Security Operations function.
    • Familiarity with the software development life cycle.
    • Familiarity with networking concepts and architecture.

    PFM offers a competitive base salary, bonus / incentive eligibility, comprehensive benefits package, profit sharing and 401K plan eligibility.


    PFM is an Equal Opportunity Employer (M/F/D/V) and maintains a drug-free workplace. 


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed