Information Security Manager

Acumen Technology is a security-first Managed Service Provider (MSP) founded in 2016, serving financial institutions, healthcare organizations, and other businesses that take IT and cybersecurity seriously. The Information Security Manager will be responsible for meeting with clients, assessing their security posture, and performing hands-on work to draft policies, complete risk assessments, build remediation plans, and deliver finished, usable form to clients.

Requirements

• 3+ years of information security experience with a strong emphasis on hands-on program execution — risk assessments, policy writing, audit preparation, and control documentation
• Deep, working knowledge of the FFIEC IT Examination Handbook requirements, including the new tools available to replace the retired Cybersecurity Assessment Tool (CAT)
• Direct experience completing SOC 2 readiness assessments and producing formal gap analysis and remediation documentation
• Active CISSP, CISM, CRISC, or equivalent certification
• Direct experience preparing financial institutions for FDIC, OCC, or NCUA IT examinations and responding to regulatory findings
• Familiarity with GRC platforms commonly used in financial services (e.g., Ncontracts, LogicManager, or similar)
• Working knowledge of HIPAA security rule requirements for healthcare clients and general compliance frameworks applicable to professional services environments
• Experience with Microsoft 365 security controls as deployed in community bank and small-to-mid-market business environments
• Background in an MSP, consulting firm, or multi-client security advisory practice

Benefits

• 100% employer paid health insurance (medical and dental) and first $1,000 of qualified medical expenses covered
• Company Matching 401k
• Flexible hybrid schedule
• Fun working environment and culture with regular activities both for employees and their families
• Family vacation bonus at 5th year