This role is eligible for work from home, but preferred locations are near offices in San Diego, CA, Fresno, CA, or Renton, WA.

Salary Range: $110,000 - $150,000.00
Position Summary
We are seeking an experienced Information Security Manager to join our organization. This role will be responsible for all Information Security functions within our Technology organization. They will identify and help mitigate computer-based and non-computer-based fraudulent activities within the organization. The Information Security Manager will work closely with the Privacy, Fraud, IT, Engineering, and risk management teams to identify potential security threats, analyze data, and implement effective fraud prevention strategies.
Essential Functions

• Will own Information Security functions and Cybersecurity program for the organization.
• Will conduct annual security assessments.
• Will coordinate annual penetration testing engagements.
• Will coordinate collection and diligence of annual vendor security assessments.
• Will support annual SOC assessments.
• Will support Sales RFP questionnaire completion for security items as needed.
• Will be the liaison between Technology and the rest of the business for fraud and infosec initiatives.
• Will support business partners in researching and mitigating fraudulent activities.
• Will lead responses to cybersecurity incidents.
• Will lead ITEL functions for the organization.
• Audit network and system logs for fraudulent activity.
• Audit user access privileges.
• Identify and propose procedural, network, server, and software changes to minimize security and fraud vulnerabilities.
• Work closely with the Operations team to devise strategies to identify anomalies within these systems.
• Investigate suspected fraudulent activity and document findings.
• Review and analyze transactional data to identify fraudulent activity and trends.
• Prepare and present reports on security and fraud trends, patterns, and prevention strategies.
• Project manage different aspects of security and fraud prevention and mitigation across various teams.
• Collaborate with cross-functional teams to ensure fraud prevention measures are integrated into business processes.
• Direct security awareness and training
• Organize work information to ensure accuracy and completeness.
• Plan and carry out responsibilities with minimal direction.
• Prepare and present analytics results to InfoSec and management.
• Prepare presentations that clearly and concisely communicate key findings and objectives.
• Maintain appropriate level of liaison between InfoSec and business partners.
• Maintain fraud analysis models to improve efficiency and effectiveness of ITEL systems.
• Maintain the confidentiality of information. This is a high trust role.
• Make recommendations for revisions that would improve ITEL.
• Conduct risk assessments and develop fraud prevention strategies.
• Make reports on suspicious activity and risk management.
• Manage and monitor fraud risk assessment workflows on an ongoing basis.
• Review all transactions related to client customer data.
• Monitor accounts and transactions to identify and predict risky behavior.
• Monitor affiliate networks for suspicious activity.
• Monitor and investigate transactions using internal tools and external fraud prevention systems.
• Keep up to date with the latest security and fraud prevention technologies and practices.

Requirements

• Formal Training or Certification in data forensics
• Formal information security or ethical hacking training.
• Bachelor’s degree in information technology with security major/emphasis.
• At least 3-5 years of experience in information security, fraud detection, or risk management.
• Strong knowledge of fraud detection methodologies and tools.
• Experience with analyzing large datasets and identifying patterns and trends.
• Knowledge of security technologies, including firewalls, intrusion detection systems, and access control.
• Certified Fraud Examiner (CFE) or Certified Information Systems Security Professional (CISSP) certification.
• Familiarity with industry regulations such as ISO/SAE, HIPAA, Sarbanes-Oxley (SOX), and General Data Protection Regulation (GDPR).
• Experience working in a financial institution or e-commerce environment.