Cybersecurity Manager

       I.            POSITION SUMMARY

The Cybersecurity Manager is responsible for planning, designing, architecting, and leading the implementation of cybersecurity-related policies, systems, processes, and procedures for the organization that align with regulatory requirements and industry best practices. The manager will identify and implement measures to protect organizational resources from risks and develop strategies to mitigate and recover from those threats. The individual will also conduct risk assessments for IT and OT to ensure compliance with regulations and industry standards. The manager oversees the day-to-day operations of cybersecurity while communicating with management to ensure everyone understands the risks and the necessary practices and strategies to reduce such risks.

    II.            REPORTING RELATIONSHIPS

A.    Reports to: IT Manager

B.     Supervises: Cyber Security Administrator

C.     Provides security advice, training, and guidance to all MVEC Employees and partners.

 III.            MAJOR RESPONSIBILITIES

A.    Develop and implement policies and procedures for the organization that align with regulatory requirements,industry best practices, and overall strategy.

B.     Identify, develop, and implement measures to protect the organizational resources and business operations from risks and develop mitigation and recovery strategies.

C.     Conduct risk assessments and organizational audits to ensure compliance with cybersecurity regulations.

D.    Communicate with stakeholders and management to ensure an understanding of existing or proposed software, systems, and network risks.

E.     Ensure the organization’s data and systems are secure from cyber threats and compliant with regulations.

F.      Monitors networks and systems for security breaches and responds to incidents

G.    Implement countermeasures or mitigating controls for cybersecurity-related incidents.

H.    Develop and implement risk mitigation strategies and test incident response and disaster recovery plans.

I.        Apply regulatory, legal, and policy data retention and archival requirements.

J.       Train the IT/OT teams and system users to respond appropriately to Cybersecurity incidents, including related recovery efforts.

K.    Keep informed of the latest cybersecurity trends, technologies, and best practices.

The above statements describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be constructed as an exhaustive list of all responsibilities required of personnel so classified.

The Cybersecurity Manager shall be required to perform any other duties assigned to fulfill the cooperative's objectives.

Equipment Operated: Must be able to operate Cybersecurity, networking/telecom equipment, computers, and other standard office equipment.

Abilities and Skills: Must be able to organize work to meet deadlines. Must be able to carry out various activities requiring high accuracy and attention to detail. Must be able to work effectively in a high-pressure environment. Must communicate, coordinate, and cooperate closely with other internal and external parties.

Physical Effort: Must be able to perform the activities listed in the position description.

Job Knowledge, Training, and Experience: The position requires a 4-year degree in Engineering, CIS/MIS, or a similar degree in the computer field, and 5+ years in IT security.

·         Knowledge of regulatory requirements and Compliance frameworks.

·         Ability to conduct risk assessments and audits.

·         Knowledge of Incident response, disaster recovery, and business continuity best practices.

·         Must be familiar with Linux, Windows, and Mac operating systems. Familiar with mobile devices ex. Android/iOS.

·         Experience with enterprise anti-virus, EDR, and XDR systems.

·         Experience with network security tools

·         Knowledge of the latest exploits and vulnerabilities

·         Strong communication & organizational skills, ability to multitask, strong attention to detail, excellent problem-solving and follow-up skills required

·         Strong documentation skills required

·         Cisco or similar telecom equipment experience

·         Network Firewalls, VPNS, Protocols and ports, wireless security, web/email filters, subnets, and Remote Access  

·         Authentication and encryption services, protocols, methods, and models

·         Virtualization, web/cloud services, and ebiz security practices

Working Conditions: Travel and irregular hours, including nights, weekends, and holidays, may be required.

After an offer of employment has been made, a physical examination, including drug and alcohol testing, will be required.

DEADLINE TO APPLY: FRIDAY, JUNE 5, 2026, BY 11:59PM

Magic Valley Electric Cooperative is an equal opportunity and affirmative action employer. All qualified applicants will receive consideration without regard to an individual’s sex, race, color, religion, age, disability status, protected veteran status, national or ethnic origin, gender identity or expression, sexual orientation.