Cybersecurity Manager

Overview

For over 35 years, OSI Electronics has provided Manufacturing Solutions of the highest

quality, reliability, and customer support. We specialize in customized Manufacturing

Solutions with the portfolio of services, capabilities, and factory locations needed to provide

our customers with a competitive advantage in the global marketplace.

OSI Electronics offers turnkey solutions for the full range of assembly complexity. We

partner with Customers on Product Development, New Product Introduction, Mass

Production, Sustaining Engineering and Product Lifecycle Management. Our cutting edge

technology, manufacturing proficiency and responsive technical services deliver the Tier One

capabilities Customers require.

Responsibilities

Essential Functions

Percentage

Collect and analyze requirements from business unit (BU) operation teams while ensuring solution design meets security requirements. Develop solution enhancement or corrective action proposals and designs. Establish projected cost and operational impact on new security initiative. Document and present each initiative to BU teams for approval prior to submitting Change Request (CR) for approval.

20

%

Conduct risk/business impact assessment and collaborate closely with BU teams to eliminate potential disruption to manufacturing processes. This may require the ability to resolve any gaps between BU team expectations and Security engineering team guidance.

10

%

Work with Network and Infrastructure teams to coordinate CR implementation, supervise implementation of each approved CR followed up with validating CR efficacy and processes to ensure intended CR was successful.

15

%

Monitor OT security controls and identify opportunities for the protection of network, systems, data and endpoints in manufacturing locations. Work with Security engineering to design security controls of OT environment. Work with the IT Infrastructure, IT Applications, IT Security, IT Compliance and Governance teams to implement these controls.

20

%

Conduct regularly scheduled audits of Cyber Security policies and processes to regulatory standards and OSI policies ensuring manufacturing network devices and environments maintain the required Cyber Security compliance. This may require the supervision of cross-functional teams to address vulnerabilities.

15

%

Lead security incident response, including guiding security operations and security engineers.

5

%

Perform service management for security platforms, including problem, change, configuration, and asset management.

10

%

Prepare and publish standards, processes and operating procedures.

5

%

Uphold the company’s core values of Integrity, Innovation, Accountability, and Teamwork.

Demonstrate behavior consistent with the company’s Code of Ethics and Conduct.

It is the responsibility of every employee to report to their manager or a member of senior management any quality problems or defects for corrective action to be implemented and to avoid the recurrence of the problem.

Duties may be modified or assigned at any time to meet the needs of the business.

Qualifications

• 7 years of work experience in information technology combined with information security experience.
• 3 years of work experience in cyber security supporting High Tech Manufacturing environments.
• Hands-on experience in IT/OT network security includes (DMZ, VLANS, Firewalls, VPN, Proxys, etc.), systems security (Windows and Linux), cloud security (AWS and Azure), endpoint security and identity and access management is required.
• Hands-on experience in protecting OT environments from cyberattacks.
• Hands-on experience in vulnerability management, configuration management, media protection, contingency planning, log management, and data protection methods is desirable.
• Experience in M365 E5 Security Suite, AWS and Azure Threat Detection and Response techniques.
• Familiarity with web related technologies (Web applications, API, etc.) and of network/web related protocols.
• Thorough understanding of the security principles, techniques, and protocols, including defense-in-depth, network segmentation, privileged access management, common application security flaws, and commonly known ports.
• Proven ability to lead a project from start to finish from the technical side.
• Previous experience working in a global enterprise environment.
• Good verbal and written communication skills in English. Capability to clearly communicate information security concepts and risks.
• Problem solving skills and ability to work under pressure.
• Ability to work independently as well as in a team structure.
• Bachelor’s degree in Computer Science, Information Security, or related field
• Professional information security-related certifications such as CISSP, GSEC, CCSP, etc.
• Willingness to accommodate other time-zones.
• Off-hours support may be needed.
  
  

Preferred

• Familiarity with standards and frameworks such as ISO 27001, NIST 800-53, PCI-DSS, HIPAA Security and Privacy Rule, ISO/NIST Risk Management