Job Title:
Information Security Lead
Location:
Malvern, PA – hybrid onsite 2 days per week
Pay Rate:
$60-85/hr. on a W2 basis
* Not open to third parties**
Summary
Serves as a senior individual contributor and subject matter expert for the Information Security Program. This role partners closely with the SOC, internal technology teams, and third-party vendors to assess risk, enhance security capabilities, and ensure effective implementation of security programs. This position requires strong security judgement, the ability to influence outcomes, and the capability to create clear, board-level security communications.
Key Responsibilities
* Serve as the Information Security subject matter expert, providing advisory and consultative support across the organization.
* Act as the primary security liaison with SOC, Managed Service Providers, and key partners, representing as a peer-level security contributor.
* Partner with business units on vendor and SaaS initiatives to ensure security requirements, service-level agreements, and risk controls are established and upheld.
* Evaluate new and existing suppliers against confidentiality, integrity, and availability requirements; drive remediation of identified gaps.
* Ensure security assessments and vulnerability management activities are conducted in accordance with policy and that findings are remediated.
* Provide security oversight for AWS environments, including vulnerability identification and long-term development of cloud security standards.
* Develop, maintain, and communicate information security policies, standards, and governance documentation.
* Create executive and board-level security reporting, including one-pagers and summaries that clearly articulate security posture, risk, and trade-offs.
* Influence offshore teams and partners by providing clear security direction and decision-making without direct people management.
* Participate in special projects and other duties as assigned.
Required Qualifications
* CISSP certification
* Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience.
* 5+ years of progressive information security experience at a senior level (not junior or entry-level).
* Strong knowledge of security concepts, SOC operations, vendor risk, and vulnerability management.
* Proven ability to operate as a senior individual contributor and influence across teams and partners.
* Experience creating executive- and board-level security documentation.
* Excellent verbal, written, organizational, and time-management skills.
Preferred Qualifications
* Experience working with or alongside a mature SOC organization.
* AWS cloud security experience in a shared-responsibility environment.
* Familiarity with SIEM tools and security integrations.
* Financial services or regulated industry experience.
* Exposure to scripting or automation in support of security operations.
Apply Now