×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Project Manager IT Consultant

IT Security Manager

Job in Philadelphia, Philadelphia County, Pennsylvania, 19107, USA
Listing for: Philadelphia International Airport
Full Time position
Listed on 2026-06-03
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Project Manager, IT Consultant
Job Description & How to Apply Below
Description de l'entreprise

The Office of Innovation & Technology (OIT) is the central IT agency for the City of Philadelphia headed by the Chief Information Officer (CIO). OIT oversees all major information and communications technology initiatives for the City of Philadelphia - increasing the effectiveness of the information technology infrastructure, where the services provided are advanced, optimized, and responsive to the needs of the City of Philadelphia's businesses, residents, and visitors.

OIT responsibilities include: identifying the most effective approach for implementing new information technology directions throughout city government; improving the value of the city's technology assets and the return on the city's technology investments; ensuring data security continuity; planning for continuing operations in the event of disruption of information technology or communications services; and supporting accountable, efficient and effective government across every city department, board, commission and agency.

The City of Philadelphia is seeking an IT Security Manager to lead and build the Governance, Risk, and Compliance (GRC) function within Revenue IT. This role is responsible for establishing and operating a structured security program focused on risk management, policy development, and governance across systems, teams, and vendors.

This is not a purely technical security role. The ideal candidate will have experience owning and operating GRC processes end-to-end, including risk register management, policy and standards development, and governance structures that drive accountability. The role requires the ability to work across business and technical teams, define clear ownership, and enforce security controls in a complex and evolving environment.

This role is primarily managerial and program‑focused, responsible for defining strategy, ensuring alignment across teams, and establishing clear governance structures that drive consistent execution.

This critical role will be responsible for ensuring the confidentiality, integrity, and availability of our information systems, with a strong focus on compliance with IRS Publication 1075 Guidelines and the NIST 853 Cybersecurity Framework.

Description du poste

Essential Functions

* Own and operate the Revenue IT GRC program, including risk management processes, governance structures, and compliance tracking

* Establish and maintain a centralized risk register, including identification, prioritization, and escalation of risks to leadership

* Develop, implement, and maintain security policies, standards, and procedures aligned to organizational needs and regulatory requirements

* Define and enforce governance processes, including clear ownership, accountability, and escalation paths across teams and vendors

* Lead security-related risk assessments and partner with system owners to define and track mitigation strategies

* Coordinate and manage internal and external audits, including documentation, response tracking, and remediation follow-up

* Work with vendors and internal teams to ensure accountability for security controls, deliverables, and knowledge transfer

* Communicate security risks, priorities, and program status to leadership in a clear and actionable manner

* Build structure in areas with limited process, ensuring consistency and transparency across security-related activities

* Conduct regular security assessments, vulnerability scans, and penetration testing to identify and mitigate risks

* Develop and maintain security documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action & Milestones (POA&Ms).

* Respond to security incidents and implement corrective actions.

* Partner with the City's Security Team to ensure City policies are applied throughout Revenue.

* Participate in security audits and compliance reviews.

* Communicate security-related information effectively to both technical and non-technical audiences, performs miscellaneous job-related duties as assigned.

* Coach teams on risk ownership and control implementation; develop a culture of accountability and transparency

Qualificatio…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search