IT Security Manager (455881) POST NUMBER: 455947
DETAILS
Location: Fort Worth, TX 76117 (onsite 4-5 days per week)
Position Type: Direct-Hire
Hourly / Salary: to $160K bonus structure
JOB SUMMARY
Vaco Technology is currently seeking a Security Manager for a Direct-Hire opportunity that is located in Fort Worth, TX 76117 (onsite 4-5 days per week). The Security Manager is a newly created and pivotal role, where the manager will be developing and executing a comprehensive cybersecurity strategy to protect systems, data, and digital assets across a hybrid cloud (AWS) and OnPrem environment, supporting store operations, franchise partners, and guests. The Security Manager should come in with solid experience working alongside a strong CISO, with exposure to mature security practices and a clear grasp of what effective cybersecurity strategies look like, especially when it comes to moving the needle on NIST maturity levels. The Security Manager must be a hands-on security leader who knows how to balance strategy with execution, building strong policies, governance, and a resilient security posture, all while keeping budget realities in mind. The Security Manager must be strong in Vendor Management, Process Improvement, and Agile Project Management and can lay out and communicate a clear plan for strengthening security across the board. Success in this role also means taking a non-tool-dependent approach, being comfortable wearing multiple hats, and stepping in to support both Security and broader IT functions.
- Lead the Development of Security Policies / Standards / Procedures – Advancing the NIST Maturity Level | NIST / PCI / DSS / GDPR Best Practices
- Manage Multiple Relationships with Multiple Security Vendors (Fortinet / Elementrix / Barracuda / OKTA / NOC/SOC Platform, etc.) / Potential MSP Vendors – Focusing on Consolidating Complex Vendor Landscapes / Optimizing Investments
- Navigate Hybrid IT Environment Transitioning from VMware VxRail-to-AWS utilizing Fortinet / Elementrix / Barracuda / OKTA, etc. | Prioritizing Policy Development Over Immediate Tool Optimization
- Oversee a Small Team – 1 Local Support Resource / 1 Network Engineer / 3rd Party Helpdesk Team in Denver, CO (7-10 members / not fully dedicated)
- Coordinate Audits / Vulnerability Assessments / Remediation Efforts – Collaborating with IT / Business Stakeholders, Embedding Security Controls / Mentoring Team Members | Fostering Security-Aware Culture
- Deliver 30-60-90 Day Roadmap – Outlining Tactical Execution of Security Initiatives, Leveraging Agile to Prioritize / Manage Projects
- Address Identified Gaps in Recent Audits – Establishing Robust Governance Frameworks / SOPs, Ensuring Compliance / Consistency
- Strategically Lead / Align Security Initiatives with Business Objectives – Supporting Franchise Partners / Maintaining Guest Trust / Effectively Working within Budget Constraints / Achieving Maximum Impact
Complex Vendor Landscape: The current state of the vendor landscape is a disorganized and multifaceted ecosystem of multiple Vendors. Most of the Vendor relationships have been grown organically, added over time, without a true centralized strategy, ultimately leading to a fragmented and inefficient structure. They have recently engaged an additional MSP to assist in supporting remediation efforts following recent audits, adding yet another layer to the vendor ecosystem. The overall objective is for the Security Manager to consolidate the Vendor relationships, to identify and remediate any overlapping and/or redundant services, and to design standardization with effective integration. This fragmented setup requires the Security Manager to have strong organizational and strategic skills to streamline vendor relationships, manage risks, and optimize investments.
- Fortinet (FortiManager / FortiAnalyzer) – Network Security
- Elementrix – Endpoint Telemetry
- SentinelOne – Endpoint Detection (to be phased out by the end of 2025)
- Barracuda – Emain Filtering
- OKTA – Identity Management
- NOC / SOC Platform (managed by a 3rd Party Vendor)
JOB REQUIREMENTS
- IT Security Manager (5 years) - Leading Security Programs / Projects / Teams | Vendor Management / Optimization / Consolidation
- Security Frameworks – Deep Understanding of NIST / CIS Controls / ISO 27001 | Compliance Requirements (PCI DSS / GDPR)
- Cloud Security – AWS / Azure (extensive / hands-on) | IAM / Cloud Security Controls / Monitoring
- On-Prem Security Infrastructure – Firewalls / IDS/IPS / Endpoint Protection (EDR) / Secure Network Architecture
- Security Operations – Leading Security Audits / Vulnerability Assessments / Pen Testing / Incident Response
- Enterprise Security – Building / Implementing / Managing Security Frameworks Across Hybrid (Cloud / On-Prem) Multi-Location Enterprise Environments
- Third-Party Risk / Vendor Management – Managing Third-Party Risk Assessment Programs / Vendor Management Processes
- Agile Project Management – Proficiency in Agile Methodologies / Sprint Planning / Iterative Delivery Processes
- Budget / Resource Management – Effective Budget Management / Resource Allocation for Security Initiatives
- Compliance Management (hands-on) – Managing Compliance with PCI DSS (QSR / Retail) / GDPR / SOX / HIPAA
- Agile / DevSecOps Environments – Integrating Security into Continuous Development / Operations Processes
Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual’s skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting. The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company’s 401(k) retirement plan.
Vaco by Highspring values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply.
EEO Notice
Vaco by Highspring is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race (including but not limited to traits historically associated with race such as hair texture and hair style), color, sex (includes pregnancy or related conditions), religion or creed, national origin, citizenship, age, disability, status as a veteran, union membership, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, political affiliation, or any other protected characteristics as required by federal, state or local law.
Vaco by Highspring and its parents, affiliates, and subsidiaries are committed to the full inclusion of all qualified individuals. As part of this commitment, Vaco by Highspring and its parents, affiliates, and subsidiaries will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact HR@vaco.com .
Vaco by Highspring also wants all applicants to know their rights that workplace discrimination is illegal.
By submitting to this position, you agree that you will be giving Vaco by Highspring the exclusive right to present your as a candidate for the foregoing employment opportunity. You further agree that you have represented information about yourself accurately and have not affirmatively misrepresented your qualifications. You also agree to maintain as confidential, to the fullest extent permitted by law, any information you learn from Vaco by Highspring about the position and you will limit disclosure of information about the position only to the extent necessary to perform any obligations in furtherance of your application. In exchange, Vaco by Highspring agrees to exercise reasonable efforts to represent you through all solicitation, job screening and resume dispersal.
Privacy Notice
Vaco by Highspring and its parents, affiliates, and subsidiaries (“we,” “our,” or “Vaco by Highspring”) respects your privacy and are committed to providing transparent notice of our policies.
- California residents may access Vaco by Highspring HR Notice at Collection for California Applicants and Employees here.
- Virginia residents may access our state specific policies here.
- Residents of all other states may access our policies here.
- Canadian residents may access our policies in English here and in French here.
- Residents of countries governed by GDPR may access our policies here.
Pay Transparency Notice
Determining compensation for this role (and others) at Vaco by Highspring depends upon a wide array of factors including but not limited to:
- the individual’s skill sets, experience and training;
- licensure and certification requirements;
- office location and other geographic considerations;
- other business and organizational needs.
With that said, as required by local law, Vaco by Highspring believes that the following salary range referenced above reasonably estimates the base compensation for an individual hired into this position in geographies that require salary range disclosure. The individual may also be eligible for discretionary bonuses.