Cybersecurity Lead / Information Security Manager

Role Overview
We are looking for an experienced and strategic Cybersecurity Lead / Information Security Manager to lead the implementation of our Cyber Security Optimization Plan and establish long-term information security governance. This role starts as a 3-month contract with the potential to evolve into a long-term engagement. You will be responsible for auditing our current infrastructure, deploying critical security systems, maintaining regulatory compliance, and cultivating a security-first culture across the organization.Requirements
Must-Have:

• 5+ years in cybersecurity or information security roles, ideally in leadership.
• Experience designing, implementing, and enforcing cybersecurity policies and tools.
• Deep knowledge of firewalls, VPNs, IDS/IPS, MFA, and endpoint protection.
• Familiarity with compliance frameworks: FTC Safeguards Rule, GDPR, NIST, CMMC, and the Texas Data Privacy Act.
• Proficiency with cybersecurity tools: password managers (1Password), audit log analyzers, email filtering, penetration testing platforms.
• Hands-on experience with vendor security reviews and risk assessments.

Nice to Have:

• Security certifications (e.g., CISSP, CISM, CEH, CompTIA Security+).
• Experience in construction or related sectors.
• Knowledge of breach response documentation and legal compliance.
• Ability to conduct engaging employee training sessions.

Responsibilities
Phase 1: Cybersecurity Optimization (First 3 Months)

• Conduct a full cybersecurity audit (logs, antivirus/firewalls, cloud/local data classification).
• Enforce secure password policies and implement MFA.
• Deploy endpoint protection, IDS/IPS, and advanced firewalls.
• Design and run phishing simulations and awareness campaigns.
• Secure network infrastructure (Wi-Fi, VPN, encryption).
• Create and implement incident response and business continuity plans.
• Ensure compliance through internal testing and alignment with regulations.

Phase 2: Long-Term Maintenance

• Perform ongoing updates, audits, training, and penetration testing.
• Manage documentation, vendor reviews, and compliance status.
• Oversee internal awareness and training programs.
• Continuously improve cybersecurity SOPs and infrastructure.

Project Description
This role supports a growing organization with a strong community presence and digital-first mindset. The company is expanding its cybersecurity posture to safeguard client data, ensure compliance, and maintain secure operational continuity. The successful candidate will have a critical impact in shaping and maintaining a resilient security framework that supports future scalability and trust.