Information Security Manager (Remote)

About KnowBe4

Join the cybersecurity company that puts security first; literally and without compromise. At KnowBe4, our AI-driven Human Risk Management platform empowers over 70,000 organizations worldwide to strengthen their security culture and transform their workforce from their biggest vulnerability into their strongest security asset. As the undisputed industry standard with unusually high customer retention rates and recognition as a Leader by G2 and TrustRadius, we're not just providing security awareness training - we're redefining what it means to be a trusted security partner in an increasingly complex threat landscape.

Our team values radical transparency, extreme ownership, and continuous professional development in a welcoming workplace that encourages all employees to be themselves. Whether working remotely or in-person, we strive to make every day fun and engaging; from team lunches to trivia competitions to local outings, there is always something exciting happening at KnowBe4.

Remote positions open to the US only. 

The Information Security Manager is responsible for the execution of processes vital to safeguarding our information systems, services, and networks. Their key duties involve fortifying the security of company and customer data. This is achieved by leading security reviews, overseeing monitoring, incident response and formulating advanced infosec policies and procedures.

Responsibilities:

• Lead and manage the team in designing, developing, documenting, and analyzing configurations, rules, and alerts related to systems, services, and networks.
• Alert Management and Response Coordination. Responsible for overseeing the creation, management, and refinement of security alerts. This includes developing and implementing effective alerting protocols to identify potential security threats swiftly.
• Conducts security, vulnerability, and risk assessments across services and applications, using both automated tools and manual testing procedures.
• Guide the infosec analyst team in developing Infosec policies, procedures, and response playbooks.
• Assist in the creation of baseline security configuration standards for KnowBe4 services.
• Supervise the team in monitoring, investigating, and responding to security incidents and alerts.
• Facilitate root cause analyses of identified vulnerabilities and incidents.
• Drive the team's continuous learning and efforts to stay abreast of the latest known vulnerabilities.
• Prepare reports when necessary for leadership about technology status and compliance issues, and provide risk mitigation recommendations.
• Collaborate with various business units, ensuring adherence to security policies and procedures.
• Provide genuine recommendations as to the hiring, firing, promotion, and discipline of subordinate employees to which the Company gives significant weight

Requirements:

• Bachelor’s degree in information security, information systems, or similar preferred
• Relevant industry certification in information security, management information systems security or similar preferred 
• Certifications in securing relevant business applications
• Minimum 3+ years experience in information security and Technology or related role
• Demonstrate practical security knowledge in information security, IT, internet concepts, and business applications.
• Experienced in using infosec testing tools and scripts with a history of leading these implementations.
• OpenSearch SIEM Expertise: Demonstrates in-depth knowledge and hands-on experience with OpenSearch as a Security Information and Event Management (SIEM) tool within a SOC environment. Skilled in configuring and customizing OpenSearch for optimal log collection, analysis, and real-time monitoring of security events.
• Demonstrates in-depth knowledge and practical experience in managing Security Operations Center (SOC) activities. This includes proficiency in overseeing intrusion detection systems, threat intelligence gathering, and response protocols to ensure robust network security and threat mitigation.
• Familiarity with SaaS application concepts including secure configuration, APIs, logging, access control, permissions, and troubleshooting.
• Familiarity with OWASP top 10 and MITRE ATT&CK Framework, with experience leading command and control in incident scenarios.
• Possesses a solid understanding of information security principles, IT infrastructure, internet concepts, and business applications. Demonstrates the ability to apply this knowledge practically in securing organizational assets and information.
• Comprehensive knowledge of various operating systems including ChromeOS, Linux, Mac, Windows with demonstrated skills in leading incident response efforts.
• Proficiency in navigating the linux command line, writing basic scripts, and leading teams to accomplish these tasks.
• Strong verbal and written communications skills, highlighting exceptional leadership qualities.
• Demonstrated excellent time management, organization, and leadership skills particularly in managing incidents or crisis situations.

The base pay for this position ranges from $90,000 - $110,000, which will vary depending on how well an applicant's skills and experience align with the job description listed above.

We will accept applications until 9/20/2025.

Our Fantastic Benefits

Note: An applicant assessment and background check may be part of your hiring procedure.

Individuals seeking employment at KnowBe4 are considered without prejudice to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, sexual orientation or any other characteristic protected under applicable federal, state, or local law. If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please visit www.knowbe4.com/careers/request-accommodation.

No recruitment agencies, please.