Information Security Manager Jobs in USA with Visa Sponsorship
Information Security Manager roles attract strong H-1B sponsorship from financial services, healthcare, and tech employers. Most require a bachelor's degree in computer science or cybersecurity, and relevant certifications like CISSP or CISM significantly strengthen your petition. For detailed occupation requirements, see the O*NET profile.
See All Information Security Manager JobsOverview
Showing 5 of 65+ Information Security Manager jobs
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
See all 65+ Information Security Manager jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new Information Security Manager roles.
Get Access To All JobsInformation Security Manager
Norfolk, VA
About Titan America
Titan America LLC (NYSE: TTAM), a TITAN Group Company, is one of the premier producers of cement and building materials in the eastern United States and the North American subsidiary of the TITAN Group. With a history spanning over 100 years, Titan America has consistently delivered innovation, operational excellence, and sustainable solutions. Our comprehensive portfolio—including cement, aggregates, fly ash, ready-mix concrete, and specialty admixtures—serves diverse customer needs across commercial, industrial, and infrastructure markets. We have an excellent opportunity within our IT department at our Corporate Office in Norfolk, VA.
Role Overview
The Information Security Manager is responsible for leading and executing the organization’s information security program with a strong focus on regulatory compliance, risk management, governance, and strategic enablement of the business. This role serves as the primary owner and stakeholder for IT and Information Security compliance initiatives, including SOX, U.S. Coast Guard regulatory requirements, and enterprise security governance, while providing leadership across mergers and acquisitions, internal audit engagement, and enterprise security communications. The position balances hands-on program management, strategic planning, and people leadership, ensuring security initiatives align with organizational objectives, regulatory obligations, and evolving threat landscapes.
Key Responsibilities
Security Governance, Risk, and Compliance
- Own and manage IT and Information Security compliance tools and platforms (e.g., AuditBoard), ensuring effective evidence collection, control mapping, issue tracking, and reporting.
- Act as the primary IT/Information Security SOX Compliance Owner and Stakeholder, partnering with Finance, Internal Audit, and external auditors to ensure timely and effective control execution.
- Lead U.S. Coast Guard (USCG) cybersecurity and regulatory compliance efforts, ensuring adherence to applicable maritime, industrial, and critical infrastructure security requirements.
- Develop, maintain, and oversee information security policies, standards, procedures, and guidelines to ensure regulatory compliance and alignment with industry’s best practices.
- Provide oversight and coordination for Information Security internal and external audits, including remediation planning, validation, and executive reporting.
Mergers, Acquisitions, and Enterprise Risk
- Lead Information Security due diligence for mergers, acquisitions, divestitures, and integrations.
- Assess cybersecurity risk posture of target organizations and define remediation and integration roadmaps.
- Partner with Legal, Finance, IT, and business leadership to ensure security risks are identified, communicated, and managed throughout transaction lifecycles.
Strategic Planning and Program Execution
- Define and execute the Information Security strategic roadmap aligned to business objectives, regulatory requirements, and enterprise risk tolerance.
- Translate security strategy into measurable initiatives, roadmaps, and key performance indicators (KPIs).
- Serve as a trusted advisor to business leaders, enabling secure business operations, innovation, and growth.
- Provide Information Security program management oversight, including initiative prioritization, resource planning, and progress reporting.
Enterprise Communication and Stakeholder Engagement
- Lead and coordinate security communications across Titan Group / Titan America, ensuring consistent messaging, risk awareness, and executive-level visibility.
- Prepare and deliver security updates, risk summaries, and compliance status reports to senior leadership and key stakeholders.
- Partner with IT, Legal, HR, Compliance, and Operations to embed security into enterprise processes and culture.
People Leadership and Professional Development
- Build, mentor, and develop a high-performing Information Security team.
- Drive professional growth through targeted training, career development planning, and succession planning.
- Encourage and support attainment and maintenance of professional certifications and continuous learning.
- Foster a culture of accountability, collaboration, and continuous improvement.
Training and Awareness
- Oversee Information Security professional training programs and enterprise security awareness initiatives.
- Ensure employees, contractors, and third parties understand security responsibilities, regulatory obligations, and risk management practices.
Qualifications
Required
- A Bachelor's degree in Information Security, Computer Science, Information Systems, or a closely related field, or equivalent relevant experience, is required.
- 7+ years of progressive experience in Information Security, IT Risk, or Compliance roles.
- Demonstrated experience managing SOX IT controls, audits, and regulatory compliance programs.
- Strong knowledge of security governance frameworks (e.g., NIST, ISO 27001, CIS, SOC).
- Experience with GRC platforms such as AuditBoard or similar tools.
- Proven ability to manage complex, cross-functional initiatives and executive stakeholders.
Preferred
- Experience supporting U.S. Coast Guard or maritime/industrial regulatory environments.
- M&A cybersecurity due diligence and post-merger integration experience.
- Prior people management and team leadership experience.
- Strong understanding of enterprise risk management and internal audit practices.
Professional Certifications (Preferred or Supported)
- CISM, CISSP, CRISC, CISA
- GIAC certifications
- PMP or other program/project management certifications
Key Competencies
- Strategic thinking and execution
- Regulatory and audit leadership
- Risk-based decision making
- Executive communication and influence
- Program and portfolio management
- Talent development and team leadership
Success Measures
- Effective and timely completion of SOX, USCG, and regulatory audits with minimal findings
- Maturity and adoption of security governance and compliance processes
- Successful integration of security into M&A activities
- Improved security posture and risk visibility across the enterprise
- Growth and retention of a highly skilled Information Security team
Join us in shaping the future of building materials with innovation, excellence, and sustainability at our core.
Information Security Manager
Norfolk, VA
About Titan America
Titan America LLC (NYSE: TTAM), a TITAN Group Company, is one of the premier producers of cement and building materials in the eastern United States and the North American subsidiary of the TITAN Group. With a history spanning over 100 years, Titan America has consistently delivered innovation, operational excellence, and sustainable solutions. Our comprehensive portfolio—including cement, aggregates, fly ash, ready-mix concrete, and specialty admixtures—serves diverse customer needs across commercial, industrial, and infrastructure markets. We have an excellent opportunity within our IT department at our Corporate Office in Norfolk, VA.
Role Overview
The Information Security Manager is responsible for leading and executing the organization’s information security program with a strong focus on regulatory compliance, risk management, governance, and strategic enablement of the business. This role serves as the primary owner and stakeholder for IT and Information Security compliance initiatives, including SOX, U.S. Coast Guard regulatory requirements, and enterprise security governance, while providing leadership across mergers and acquisitions, internal audit engagement, and enterprise security communications. The position balances hands-on program management, strategic planning, and people leadership, ensuring security initiatives align with organizational objectives, regulatory obligations, and evolving threat landscapes.
Key Responsibilities
Security Governance, Risk, and Compliance
- Own and manage IT and Information Security compliance tools and platforms (e.g., AuditBoard), ensuring effective evidence collection, control mapping, issue tracking, and reporting.
- Act as the primary IT/Information Security SOX Compliance Owner and Stakeholder, partnering with Finance, Internal Audit, and external auditors to ensure timely and effective control execution.
- Lead U.S. Coast Guard (USCG) cybersecurity and regulatory compliance efforts, ensuring adherence to applicable maritime, industrial, and critical infrastructure security requirements.
- Develop, maintain, and oversee information security policies, standards, procedures, and guidelines to ensure regulatory compliance and alignment with industry’s best practices.
- Provide oversight and coordination for Information Security internal and external audits, including remediation planning, validation, and executive reporting.
Mergers, Acquisitions, and Enterprise Risk
- Lead Information Security due diligence for mergers, acquisitions, divestitures, and integrations.
- Assess cybersecurity risk posture of target organizations and define remediation and integration roadmaps.
- Partner with Legal, Finance, IT, and business leadership to ensure security risks are identified, communicated, and managed throughout transaction lifecycles.
Strategic Planning and Program Execution
- Define and execute the Information Security strategic roadmap aligned to business objectives, regulatory requirements, and enterprise risk tolerance.
- Translate security strategy into measurable initiatives, roadmaps, and key performance indicators (KPIs).
- Serve as a trusted advisor to business leaders, enabling secure business operations, innovation, and growth.
- Provide Information Security program management oversight, including initiative prioritization, resource planning, and progress reporting.
Enterprise Communication and Stakeholder Engagement
- Lead and coordinate security communications across Titan Group / Titan America, ensuring consistent messaging, risk awareness, and executive-level visibility.
- Prepare and deliver security updates, risk summaries, and compliance status reports to senior leadership and key stakeholders.
- Partner with IT, Legal, HR, Compliance, and Operations to embed security into enterprise processes and culture.
People Leadership and Professional Development
- Build, mentor, and develop a high-performing Information Security team.
- Drive professional growth through targeted training, career development planning, and succession planning.
- Encourage and support attainment and maintenance of professional certifications and continuous learning.
- Foster a culture of accountability, collaboration, and continuous improvement.
Training and Awareness
- Oversee Information Security professional training programs and enterprise security awareness initiatives.
- Ensure employees, contractors, and third parties understand security responsibilities, regulatory obligations, and risk management practices.
Qualifications
Required
- A Bachelor's degree in Information Security, Computer Science, Information Systems, or a closely related field, or equivalent relevant experience, is required.
- 7+ years of progressive experience in Information Security, IT Risk, or Compliance roles.
- Demonstrated experience managing SOX IT controls, audits, and regulatory compliance programs.
- Strong knowledge of security governance frameworks (e.g., NIST, ISO 27001, CIS, SOC).
- Experience with GRC platforms such as AuditBoard or similar tools.
- Proven ability to manage complex, cross-functional initiatives and executive stakeholders.
Preferred
- Experience supporting U.S. Coast Guard or maritime/industrial regulatory environments.
- M&A cybersecurity due diligence and post-merger integration experience.
- Prior people management and team leadership experience.
- Strong understanding of enterprise risk management and internal audit practices.
Professional Certifications (Preferred or Supported)
- CISM, CISSP, CRISC, CISA
- GIAC certifications
- PMP or other program/project management certifications
Key Competencies
- Strategic thinking and execution
- Regulatory and audit leadership
- Risk-based decision making
- Executive communication and influence
- Program and portfolio management
- Talent development and team leadership
Success Measures
- Effective and timely completion of SOX, USCG, and regulatory audits with minimal findings
- Maturity and adoption of security governance and compliance processes
- Successful integration of security into M&A activities
- Improved security posture and risk visibility across the enterprise
- Growth and retention of a highly skilled Information Security team
Join us in shaping the future of building materials with innovation, excellence, and sustainability at our core.
How to Get Visa Sponsorship as an Information Security Manager
Lead with certifications on your resume
CISSP, CISM, and CISA certifications signal specialty occupation eligibility to both employers and USCIS. Petitions supported by industry credentials alongside a qualifying degree face fewer RFEs during adjudication.
Target regulated industries first
Banks, hospitals, and federal contractors face mandatory compliance frameworks like SOX, HIPAA, and FedRAMP. These organizations sponsor H-1B visas more consistently because security leadership is legally required, not discretionary.
Frame your degree field precisely
USCIS scrutinizes specialty occupation claims for management-adjacent roles. A degree in computer science, information systems, or cybersecurity maps more cleanly to this title than a general business or IT degree.
Document your technical scope, not just team size
Sponsorship petitions succeed when job duties demonstrate technical complexity. Highlight architecture decisions, incident response ownership, and security tool implementation rather than headcount or budget managed.
Ask about sponsorship before the final interview round
Many employers sponsor but don't advertise it. Raising sponsorship after an offer creates friction. Asking during a second-round conversation, once mutual interest is established, gives both sides time to align on process.
Use Migrate Mate to filter for verified sponsors
Not every posting that says 'visa sponsorship available' follows through. Migrate Mate surfaces employers with confirmed H-1B filing history for security roles, saving you from applying to companies that won't actually sponsor.
Information Security Manager jobs are hiring across the US. Find yours.
Find Information Security Manager JobsSee all 65+ Information Security Manager jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new Information Security Manager roles.
Get Access To All JobsFrequently Asked Questions
Does Information Security Manager qualify as a specialty occupation for H-1B purposes?
Yes, but the petition needs to be drafted carefully. USCIS may question whether a management role requires a specific bachelor's degree. The strongest petitions document that the position demands theoretical and practical application of computer science, information security, or a directly related field, not just general business acumen. Roles with hands-on technical duties and a degree requirement written into the job description are approved more consistently.
Which visa categories are commonly used to sponsor Information Security Managers?
H-1B is the most common path for employer-sponsored security managers. Candidates with extraordinary achievement in cybersecurity, such as published research, national awards, or a record of leading high-profile breach responses, may qualify for O-1A. L-1A is an option for managers transferring from a foreign affiliate. Australian citizens can pursue the E-3, which has no lottery and renews indefinitely.
How do I find employers that actually sponsor H-1B visas for security manager roles?
Migrate Mate filters job listings by confirmed sponsorship history, so you're not guessing based on vague job description language. Look for employers in financial services, healthcare systems, defense contractors, and large technology companies. These sectors hire security managers at scale and have established immigration programs, meaning fewer delays and more experienced HR teams handling the petition process.
Does experience substitute for a degree when applying for H-1B sponsorship as a security manager?
USCIS allows three years of specialized experience to substitute for one year of a bachelor's degree, meaning 12 years of directly relevant experience can stand in for a four-year degree. In practice, approvals on experience-only petitions for management roles face higher RFE rates. Pairing substantial experience with an associate's degree or professional certifications like CISSP creates a stronger combined record than experience alone.
What is the H-1B approval rate for Information Security Manager roles?
USCIS doesn't publish approval rates by job title, but cybersecurity and IT management roles generally see approval rates above 85% when the petition clearly establishes specialty occupation. Denial risk increases when the job description includes duties that don't require a specific technical degree, or when the employer is classified as a staffing or consulting firm. Direct employer petitions with well-documented technical job duties perform significantly better.
What is the prevailing wage requirement for sponsored Information Security Manager jobs?
U.S. employers sponsoring a visa must pay at least the prevailing wage, which is what workers in the same role, area, and experience level typically earn. The Department of Labor sets this rate to make sure companies aren't hiring foreign workers simply because they'd accept lower pay than a U.S. worker. It varies by job title, location, and experience. You can look up current prevailing wage rates for any occupation and location using the OFLC Wage Search page.
See which Information Security Manager employers are hiring and sponsoring visas right now.
Search Information Security Manager Jobs