IT Security Manager

Corporate Main Office
20 South Broad Street
Canfield, OH 44406, USA

The IT Security Manager’s role is to ensure the secure operation of all in‑house, cloud‑based systems, servers, and IoT devices. The manager performs two core functions: overseeing the operations of the enterprise’s security solutions through management of security analysts, and establishing an enterprise security stance through policy, architecture, and training processes. Secondary tasks include selection of appropriate security solutions and oversight of vulnerability audits and assessments, and aligning with peers in Information Security, Applications & Development, and Infrastructure & Operations to achieve higher levels of enterprise security.

• Assist in creating and maintaining the enterprise’s security documents (policies, standards, baselines, guidelines, and procedures).
• Assist in creating and maintaining the enterprise’s Business Continuity Plan and Disaster Recovery Plan, where appropriate.
• Conduct research on security products, services, protocols, and standards to support procurement and development, and provide recommendations to senior management.
• Maintain awareness of emerging security alerts and issues; ensure senior management is appraised of any potential problems.
• Continually evaluate the need for security reconfigurations and recommend appropriate changes.

• Maintain up‑to‑date knowledge of the IT security industry, including new solutions, processes, and threat vectors.
• Select and acquire additional security solutions or enhancements to improve overall enterprise security according to procurement processes.
• Oversee the deployment, integration, and configuration of all new and enhanced security solutions in accordance with industry best practices and the enterprise’s security policies and standards.

• Ensure confidentiality, integrity, and availability of data on or transmitted to/from enterprise systems and databases.
• Enforce enterprise security documents.
• Supervise investigations into problematic activity and maintain ongoing communication with senior management.
• Participate in the Incident Response Core Team and oversee responsibilities assigned to team members.
• Supervise the design and execution of vulnerability assessments, penetration tests, and security audits.
• Engage in ongoing communications with IT and Information Security peers to ensure enterprise‑wide understanding of security goals.
• Complete mandatory and elective training, including BSA and Anti‑Money Laundering procedures; maintain compliance with all applicable laws and regulations.
• Maintain predictable attendance; complete all other duties as assigned.

• Associate’s Degree or university degree in a computer‑related field (Bachelor’s Degree preferred).
• Minimum of three (3) years of network/security equivalent work experience (five (5) years preferred).
• Hands‑on hardware troubleshooting experience.
• Knowledge of applicable data privacy practices and laws.
• Excellent judgment, decision‑making skills, and the ability to work independently without supervision.
• Experience working in a team‑oriented, collaborative environment with strong interpersonal and presentation skills.

• GIAC Security Essentials Certification
• GIAC Security Leadership Certification
• ISACA Certified Information Security Manager
• Microsoft Certified Systems Engineer:
  Security
• (ISC)² SCCP
• (ISC)² CISSP
• (ISC)² ISSAP

E‑Verify is used to confirm the identity and employment eligibility of all newly hired employees.

Farmers National Banc Corp. is an Equal Opportunity Employer. Protections for veterans and individuals with disabilities are provided.

This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.