With digital marketing and an online presence come risks. Companies rely on risk managers to identify risks and lay out a foundation to avoid these risks. That’s the job of an information assurance manager – to identify risks associated with each network component and create documentation to reduce risk factors. These applicants must have strong knowledge of network security for both hardware and software. They are the first defense for businesses that place a high value on sensitive information from their customers and internal resources.

Job Description: What Does an Information Assurance Manager Do?

Risk assessment is just one responsibility for an information assurance manager. They also work with disaster recovery plans. Risk assessment and disaster recovery plans are not the same, but they work hand-in-hand to protect a company’s digital assets. Risk assessment helps companies avoid damage from hackers or failed hardware. Disaster recovery plans are the steps needed to get the business running again after a disaster whether it’s from a flood or fire or damage from malware. Information assurance managers take on several responsibilities to find vulnerabilities and create plans to avoid and recover from them.

Information Assurance Manager Job Responsibilities and Duties

Risk assessment takes a detailed individual who audits current system components and identifies associated risks. For instance, an old router with outdated firmware could be a security risk. A server that doesn’t have the latest patches is another risk. If the network has thousands of components, it takes several hours to audit and assess risk. Disaster recovery plans also require the ability to know current backup and digital maintenance technology and the ability to move quickly. Information assurance managers also identify risks during technology projects for hardware or software upgrades.

Job responsibilities include:

  • Establish guidelines and policies surrounding risk and security
  • Audit current and future systems and implement the right security strategy
  • Define backup policies and monitor backups for completion and viability
  • Supervise IT projects and bring the right security implementation for smooth project management
  • Monitor hardware and software for any suspicious behavior or traffic
  • Document best practices for security and information assurance based on business and user requirements
InfoSec Institute
Rated 4.3/5 based on 302 customer reviews.
InfoSec Resources