Position Description

The Cybersecurity Manager position, reporting to the Head of Digital Technology will be a hands-on leader responsible for designing and executing the strategy and setting the direction of our cybersecurity program. You will ensure the protection of our digital assets, manage cybersecurity risks, and collaborate with the NERC-CIP team to identify and share common policies and procedures. This role covers all cybersecurity matters outside of NERC-CIP, focusing on our cloud-first environment, and involves implementing NIST and CIS standards.

The Cybersecurity Manager is a regular, full-time position, and is eligible for our generous employee benefits package, including employer paid health insurance, paid time off, a 401(k) plan with employer matching contributions, and other great benefits.

Key Responsibilities

• Develop and execute a comprehensive cybersecurity strategy for the organization.
• Oversee and manage all cybersecurity operations, including incident response, threat detection, and vulnerability management.
• Collaborate with the NERC-CIP team to align policies and practices, ensuring cohesive security measures across the organization.
• Implement and maintain compliance with NIST and CIS standards.
• Manage and enhance the organization's cloud security posture, including SaaS applications and cloud infrastructure.
• Access and evaluate vendors’ SOC Type 1 and Type 2 audit and manage Cybersecurity Risk matrix and mitigation plan.
• Conduct and oversee penetration testing, vulnerability assessments, and security audits.
• Develop and implement data loss prevention strategies and mobile device management (MDM) policies.
• Establish and maintain identity and access management (IAM) protocols, including SAP and SSO integration.
• Design and execute security awareness programs to educate employees on best practices and security protocols.
• Design, implement and manage a Security Information and Event Management (SIEM) solution.
• Stay updated on the latest cybersecurity trends, threats, and technologies, and apply this knowledge to improve the organization's security posture.

Preferred Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• At least 5 years of experience in cybersecurity, with a proven track record in a supervisory role.
• Hands-on experience with cloud security, SaaS environments, and SOC Type 1 and Type 2 audits.
• In-depth knowledge of NIST and CIS standards and their implementation.
• Strong understanding of networking, infrastructure, penetration testing, and vulnerability management.
• Experience with data loss prevention programs, mobile device management (MDM), and identity and access management (IAM) for SAP and SSO.
• Excellent communication and collaboration skills to work effectively with cross-functional teams.
• Relevant certifications such as CISSP, CISM, CEH, or similar are highly desirable.

Key Attributes for Success

• Experience in the renewable energy sector or similar industries.
• Knowledge of operational technology (OT) security practices.
• Familiarity with NERC-CIP compliance and its implications for cybersecurity.

Location Miami, FL; Austin, TX or San Diego, CA

Travel Up to 10% travel required as necessary

Job Level Manager – no direct reports