×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Project Manager IT Consultant Information Security

Information Security Manager: CMMC & SOC Lead

Job in Libertyville, Lake County, Illinois, 60092, USA
Listing for: Aldridge Electric
Full Time position
Listed on 2026-06-16
Job specializations:
  • IT/Tech
    Cybersecurity, IT Project Manager, IT Consultant, Information Security
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below

IT Information Security Manager What we are looking for:

At Aldridge Electric, we build and maintain the critical infrastructure that powers the nation. As our Information Security Manager, you are the architect of our digital trust and the leader of our frontline defense. You will bridge the gap between complex regulatory requirements and the technical reality of modern electrical construction.

In this role, our Nobody Gets Hurt safety philosophy extends into the digital realm. You will lead a team of IT Security Analysts, manage our world‑class security stack, and spearhead our journey toward CMMC 2.0 Level 2 certification, securing our license to operate on the nation’s most sensitive infrastructure projects.

What you’ll do:

Team Leadership & Mentorship
  • Direct Management:
    Lead, mentor, and develop a team of IT Security Analysts, fostering a culture of continuous learning and technical excellence.
  • Resource Allocation:
    Manage the team’s daily priorities, balancing long‑term compliance projects with immediate security operational needs.
  • Professional Development:
    Define career paths and training goals for team members to ensure the department stays ahead of evolving cyber threats.
Security Operations & Technical Oversight
  • Managed SOC Integration:
    Serve as the primary technical liaison and escalation point for our SOC‑as‑a‑Service provider. Review managed alerts, tune log sources, and lead incident response efforts.
  • Endpoint Protection:
    Own the technical administration and strategy for our EDR platform, ensuring 100% coverage, optimized sensor policies, and rapid threat hunting capabilities.
  • Incident Response:
    Lead the internal SIRT (Security Incident Response Team), translating SOC alerts into actionable remediation steps for the broader IT team.
CMMC 2.0 & Federal Compliance Leadership
  • Certification

    Roadmap:

    Lead the organization through the transition from Phase 1 self‑attestation to Phase 2 (C3

    PAO) Certification to meet the November 2026 mandate.
  • CUI Boundary Management:
    Define and manage the scope of Controlled Unclassified Information (CUI) throughout the project lifecycle—from bidding to final field implementation.
  • SPRS & Documentation:
    Maintain ownership of Aldridge’s score in the Supplier Performance Risk System (SPRS). Update the System Security Plan (SSP) and Plan of Action and Milestones (POA&M) regularly.
Enterprise Risk & Policy
  • Risk Register:
    Maintain the Enterprise Cybersecurity Risk Register, quantifying risks for executive stakeholders.
  • Third‑Party Risk (TPRM):
    Oversee the security vetting process for subcontractors and vendors, ensuring they meet the required security standards for project participation.
  • Policy Enforcement:
    Develop and enforce internal security policies that balance high‑security requirements with the operational speed required in the construction industry.
Who you are:
Required Experience
  • Leadership: 3+ years of experience managing or leading IT security professionals.
  • Compliance:
    Proven experience leading an organization through a major cybersecurity assessment (CMMC, NIST 800‑171, ISO 27001, or SOC2).
  • Cybersecurity Breadth: 7+ years of total experience in Information Security with a strong foundation in both GRC and technical operations.
Technical Proficiencies
  • EDR Expert:
    Hands‑on experience managing Enterprise Detection and Response tools.
  • SOC Operations:
    Experience working with Managed Security Service Providers (MSSP) or SOC environments.
  • Framework Mastery:
    Deep understanding of NIST CSF and NIST 800‑171.
  • Infrastructure:
    Familiarity with securing O365 environments, cloud infrastructure, and ideally, Operational Technology (OT) found in utility environments.
Education & Certifications
  • Certifications:

    One or more of the following are required: CISSP, CISM, or CISA.
  • Education:

    Bachelor’s degree in Cybersecurity, IT, Computer Science, or a related field.
Who we are:

At Aldridge, we invite you to be a part of our dynamic team, where your skills are not only valued but crucial to our success. As we pursue our vision to be the First Choice for Energy and Transportation infrastructure projects, we welcome fresh perspectives and prioritize teamwork to drive our industry‑leading safety,…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search