INFORMATION SECURITY MANAGER - 72004188 1

Requisition No: 871561 

Agency: Management Services

Working Title: INFORMATION SECURITY MANAGER - 72004188 1

 Pay Plan: SES

Position Number: 72004188 

Salary:  $85,000 - $92,000 

Posting Closing Date: 03/20/2026 

Total Compensation Estimator Tool

Information Security Manager
Office of Information technology
State of Florida Department of Management Services
This position is located in Tallahassee, FL

Position Overview and Responsibilities:

This position functions as the Department of Management Services’ (DMS) Information Security Manager (ISM) and follows the security guidelines established in F. S. Section 282.318 and Rule 60GG-2 Florida Administrative Code.  

The ISM is responsible for:

• Managing daily cybersecurity operations in coordination with the Incident Responders, Application & Security Officer, Chief Information Officer, DMS Leadership, and other key mission partners. Overseeing the Department’s security awareness program. 
• Establishing and maintaining an information security program that includes information security policies, procedures, standards, and guidelines.
• Managing the Department’s information security risk management process, including the comprehensive Risk Assessment required by Section 282.318, F.S. 
• Coordinate and document remediation actions in response to identified risks, including but not limited to: audit findings, common vulnerabilities and exposures, security alerts and notifications, threat intelligence, risk assessments, security assessments, and penetration testing.
• Completing the Department’s strategic and operational cybersecurity plan in accordance with Rule 60GG-2 F.A.C.
• Administering the Department’s Incident Response Team operations, playbooks, and procedural documentation and a disaster recovery program that aligns with the Agency’s COOP Plan.
• Creating and maintaining the agency's security architecture design with a focus on increasing network and information system resilience.
• Conducting security assessments on new hardware and software solutions before these products are connected to DMS resources.
• Assist with the selection, acquisition, and deployment of new security solutions. This will require adherence to the DMS procurement process.
• Fulfilling all security and incident notification and reporting requirements in DMS policies, procedures, legal and statutory requirements.

Knowledge, Skills, and Abilities:

• Demonstrated experience and leadership running cybersecurity operations and incident response at a large private, public, defense, or government organization.
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk). 
• Strong organization skills necessary to manage and coordinate across multiple teams with varying levels of technical and non-technical understanding of incident response activities. 
• A strong understanding of network and cloud security concepts.
• Coordinate with other OIT and Division IT teams to ensure effective security protections are in place and foster teamwork and cooperation. 
• Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner.
• Ability to collect and analyze security incident artifacts across several technology platforms and tools
• Develop and publish security incident analysis reports.
• Deep and wide knowledge of cybersecurity concepts, operations, and cybersecurity tools.
• Expert knowledge of industry best practices and frameworks (e.g. NIST, MITRE ATT&CK)
• Accountability, Communication, Empowerment, Flexibility, Integrity, Respect, and Teamwork
• Experience with cloud security governance (Azure/AWS/GCP), identity management, and Zero Trust Architecture. 
• Experience managing security program metrics, dashboards, and reporting to agency leaders (or organizational leaders for private sector applicants).
• Ability to oversee vendor risk and supply chain security evaluations.
• Experience overseeing SOC operations, threat hunting teams, and security engineering teams.
• Working knowledge of modern security tooling categories: SIEM, SOAR, EDR/XDR, CSPM, IAM governance, and vulnerability management platforms.
• Experience managing secure SDLC principles and application security testing practices.

Minimum Qualifications:

• 5 years of experience with cybersecurity operations as part of an information security management team.
• Minimum of 3 years in a management or team lead position, with a proven track record of supervising security analysts or technical staff.
• At least 2 years of experience in a technical leadership role requiring direct communication, status updates, and presentation of security risks to Agency leadership or executive staff.
• Experience in the design and maintenance of enterprise security architecture and the creation of comprehensive security documents, including policies, standards, and baselines.
• Experience in developing and maintaining Business Continuity Plans (BCP) and Disaster Recovery Plans (DRP).

Preferred:

The following certifications are preferred: CISSP, CISM, CCSP, GIAC, GSLC, CGCCC, or equivalent certifications. Undergraduate degree in a relevant technology related field. 

Other job-related requirements for this position: 
Criminal background investigation including fingerprinting and statewide and national criminal history records check per Section 110.1127 Florida Statutes, Chapter 435 Florida Statutes, and the Federal Bureau of Investigation’s CJIS Security Policy CJISD-ITS-DOC-08140-4.5

Our Organization and Mission:
Under the direction of Governor Ron DeSantis, Interim Secretary Tom Berger and DMS’ Executive Leadership Team, the Florida Department of Management Services (DMS) is a customer-oriented agency with a broad portfolio that includes the efficient use and management of real estate, procurement, human resources, group insurance, retirement, telecommunications, fleet, and federal property assistance programs used throughout Florida’s state government. It is against this backdrop that DMS strives to demonstrate its motto, “We serve those who serve Florida.”

Special Notes:
DMS is committed to successfully recruiting and onboarding talented and skilled individuals into its workforce. We recognize the extensive training, experience, and transferrable skills that veterans and individuals with disabilities bring to the workforce.  Veterans and individuals with disabilities are encouraged to contact our recruiter for guidance and answers to questions through the following provided email addresses:
DMS.Ability@dms.fl.gov
DMS.Veterans@dms.fl.gov
An individual with a disability is qualified if he or she satisfies the skills, experience, and other job related requirements for a position and can perform the essential functions of the position with or without reasonable accommodation. Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must contact the DMS Human Resources (HR) Office at (850) 488-2707. DMS requests applicants notify HR in advance to allow sufficient time to provide the accommodation.
Successful completion of background screening will be required for this position.

Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must notify the agency hiring authority and/or People First Service Center (1-866-663-4735). Notification to the hiring authority must be made in advance to allow sufficient time to provide the accommodation.

The State of Florida supports a Drug-Free workplace. All employees are subject to reasonable suspicion drug testing in accordance with Section 112.0455, F.S., Drug-Free Workplace Act.