The average salary of a(n) Information Security Manager in Alabama - State Average is $123,685.
The average hourly rate of a(n) Information Security Manager in Alabama - State Average is $59.46.
The average bonus of a(n) Information Security Manager in Alabama - State Average is $7,124.00.
Oversees the Information Security Management function of an organization, including the development, documentation, implementation, operation, and maintenance of an information security program, and manages ongoing activities to preserve the availability, integrity, and confidentiality of organization information resources in compliance with applicable security policies and standards. Safeguards the organization’s computers, networks, and data against threats, such as security breaches, computer viruses, or attacks by cyber-criminals, avoiding loss of confidential information, lost revenue, and fines from regulatory agencies for failing to protect data. Manages staff, providing line management, leadership, motivation, and strategic direction. Communicates regularly with other managers, and brings the organization’s information security risks under explicit management control. Initiates, facilitates, and promotes activities to create information security awareness throughout the organization. Monitors the internal control systems to ensure that appropriate access levels are maintained. Liaises with and offers strategic direction to related governance functions (such as Physical Security/Facilities, Risk Management, IT, HR, Legal, and Compliance) plus senior and middle managers throughout the organization as necessary, on information security matters, such as routine security activities, plus emerging security risks and control technologies. Recruits for and leads the direction of a network of information security ambassadors distributed throughout the organization. Provides internal management consultant advice and practical assistance on information security risk and control matters throughout the organization, and promotes the commercial advantages of managing information security risks more efficiently and effectively. Leads or commissions the preparation and authorizes the implementation of necessary information security policies, standards, procedures, and guidelines. Leads the design and operation of compliance auditing, monitoring, and improvement activities to ensure compliance both with internal security policies and procedures and applicable laws and regulations; ensures consistency of internal controls across departments. Leads or commissions information security awareness, training, and educational activities; information security risk assessments and control selection activities; and activities relating to contingency planning, business continuity management, and IT disaster recovery in conjunction with relevant functions and third parties. Monitors changes in local, State, and Federal regulations and accreditation standards affecting information security, and make recommendations to the CIO and other organization leaders on the need for policy changes. May require security management qualifications such as CISSP or CISM. Less
Oversees the Information Security Management function of an organization, including the development, documentation, implementation, operation, and maintenance of an information security program, and manages ongoing activities to preserve the availability, integrity, and confidentiality of organization information resources in compliance with... More