Cyber Resiliency Manager

Validation & Engineering Group, Inc. (V&EG) a Pinnaql company is a leading services supplier who provides solutions for the Pharmaceutical, Biotechnology, Chemical, Food, and Medical Devices industries in the following areas: Laboratory, Compliance, Computer, Engineering, Project Management, Validation, and other services.

We are seeking a talented, dedicated individual committed to work under the highest ethics standards for the following position:

• Cyber Resiliency Manager

Description:

The Cyber Resiliency Manager for the manufacturing site is responsible for protecting and strengthening the resilience of site-specific IT and OT systems that support pharmaceutical production. This role ensures that the site can anticipate, withstand, respond to, and recover quickly from cyber incidents without compromising product quality, patient safety, or regulatory compliance. The manager acts as the site focal point for cyber risk management, incident response, and recovery planning, working closely with both site IT leadership and cybersecurity functions.

Key Responsibilities:

Cyber Resiliency Strategy & Governance

• Develop and execute a site-level cyber resiliency program aligned with company policies and standards.
• Identify and assess cyber risks across IT, OT, automation, and manufacturing execution systems (MES, SCADA, PLCs).
• Certify site-specific recovery time objectives (RTOs) and recovery point objectives (RPOs) for critical digital systems.

Incident Response & Recovery

• Support the site cyber incident response process, coordinating with cybersecurity, IT, and OT teams.
• Oversee testing of disaster recovery (DR) and backup strategies for site systems (e.g., MES, LIMS, ERP, automation).
• Support cyber crisis simulations, ransomware drills, and tabletop exercises with site leadership and operators.
• Ensure lessons learned from incidents are embedded into site resiliency practices.

Operational Technology (OT) & Manufacturing Systems Resilience

• Partner with Engineering and Automation to secure ICS/OT environments, including patching, network segmentation, and secure remote access.
• Ensure redundancy and contingency measures for critical control systems and data flows.
• Collaborate with vendors and system integrators to strengthen resilience of third-party technology supporting production.

Qualifications:

• Bachelor’s Degree in Cybersecurity, Computer Science, or Engineering.
• Minimum of 6+ years of experience in cybersecurity, OT security, or cyber resiliency, with at least 3 years in a manufacturing or critical infrastructure setting.
• Strong understanding of OT/ICS environments, pharmaceutical manufacturing systems, and automation technologies.
• Certifications such as CISSP, CISM, GICSP, CRISC are a plus.
• Must be fully bilingual (English / Spanish) with excellent oral skills.
• Must be proficient using MS Windows and Microsoft Office applications.
• Strong knowledge in cGxP and regulatory guidance as well as understanding of how they are applied to regulatory compliance.
• Experience in Design Documentation (URS, DS), IQ, OQ, PQ protocols development and execution, deviations and reports generation.
• SDLC, Risk Assessment, Data Integrity, Factory Acceptance Test (FAT) & Site Acceptance Test (SAT).
• Strong knowledge (according to related area).
• Technical Writing skills and investigations processes.
• Available to work extended hours, possibility of weekends and holidays.