The job description for an information security manager

Written by contributing writer
  • Share
  • Tweet
  • Share
  • Pin
  • Email
The job description for an information security manager
Information security managers are responsible for implementing security on computer networks and systems. (man with computer image by Bionic Media from

An information security manager establishes organizational policies, procedures and methods to protect sensitive data and information from being compromised. The information security manager must create system security policies to eliminate computer hackers, viruses and other dangers associated with data security. The occupation of information security officer is also known as data security officer or data security manager.


An information security manager has the general responsibility for establishing security policies relating to access to an information system, user rights and privileges to applications, system security utilities and establishing data protection from the Internet by applying firewalls on the computer system. The security manager also addresses the physical security of data processing facilities or operations, risk management audits and compliance with established policies.


An information security manager must be a detailed, logical thinker. When problems arise with data security, the security manager must find and apply a solution very quickly. For emergency preparedness situations, he must also establish disaster recovery procedures for a data processing or information system operation. The information security officer must stay up-to-date on threats against the computer system and seek further knowledge to expand his knowledge in systems security.

Educational Requirements

To become an information security manager an individual can obtain a bachelor's or master’s degree in information systems management. However, there are alternative paths. An individual can be trained in an “on-the-job” training environment in systems security and take courses to obtain a certification through two industry certifications known as the CISSP or CISM. The CISSP (certified information systems security professional) provides a broad overview of information security and the CISM (certified information security manager) is for security managers responsible for large enterprise network systems.


According to, as of June 2010, the average median salary for an information security manager with one to four years experience is between the salary ranges £27,064 to £43,705. For five to nine years experience, the salary range is £34,407 to £54,068. For salary considerations, an information security manager is classified under the occupational umbrella of information technology manager.

Job Outlook

According to the Bureau of Labor Statistics, employment of network and computer systems administrators is expected to increase by 23 per cent from 2008 to 2018, much faster than the average for all occupations. The occupation of information security manager occupation is considered a part of the growth cycle.

Don't Miss

  • All types
  • Articles
  • Slideshows
  • Videos
  • Most relevant
  • Most popular
  • Most recent

No articles available

No slideshows available

No videos available

By using the site, you consent to the use of cookies. For more information, please see our Cookie policy.