Manager of IT Security

JOB SUMMARY

The Manager of IT Security is responsible for developing, implementing, and maintaining the organization's information security program. This role serves as the primary subject matter expert on cybersecurity strategy, risk management, compliance, and incident response. The Manager of Security works cross-functionally to protect company data, systems, and infrastructure against evolving threats while ensuring alignment with business objectives and regulatory requirements. Other tasks may also be required from time to time, at the discretion of management, in order to achieve department and company objectives. This potion will also require team leadership, support, and training for the Infrastructure, IT Support, and Development teams.

ESSENTIAL DUTIES AND RESPONSIBILITIES

Security Strategy, Architecture & Governance

• Develop and maintain the enterprise information security strategy, policies, standards, and procedures.
• Define and enforce security frameworks aligned with industry best practices (PCI-DSS, GDPR, NIST CSF, ISO 27001, CIS Controls).
• Lead the Information Security risk management program, including risk assessments, risk registers, and mitigation planning.
• Report on the security posture of the organization to senior leadership and stakeholders on a regular basis.

·Design enterprise security architecture across infra, apps, APIs, and data

·Lead risk management program and executive reporting

Infrastructure & Systems Security

• Oversee security configuration and hardening of network infrastructure, endpoints, servers, cloud environments, and identity platforms.
• Partner with IT operations and architecture teams to embed security into infrastructure design and change management processes.
• Manage and optimize security tooling including SIEM, EDR/XDR, firewalls, IDS/IPS, DLP, PAM, and vulnerability management platforms.
• Ensure secure administration of Microsoft Entra ID, Active Directory, and M365 environments including conditional access, MFA, and privileged identity management.

Incident Response & Threat Management

• Own and continuously improve the Incident Response Plan (IRP), including playbooks, escalation paths, and post-incident reviews.
• Lead the investigation and remediation of security incidents, breaches, and threat events.
• Manage threat intelligence feeds and coordinate with external partners, MSSPs, and law enforcement as appropriate.
• Conduct tabletop exercises and simulations to test organizational readiness.

Compliance & Audit

• Ensure compliance with applicable regulatory requirements and frameworks (e.g., SOC 2, CMMC, PCI-DSS, GDPR) as relevant to the business.
• Serve as the primary point of contact for security audits, assessments, and third-party reviews.
• Maintain documentation and evidence required for audits and certifications.
• Manage the vendor and third-party risk assessment program.

Security Awareness & Culture

• Design and administer a company-wide security awareness training program, including phishing simulations.
• Promote a culture of security-first thinking across IT and business functions.
• Serve as a trusted advisor to business units on security requirements for new projects and technologies.

Team Leadership

• Lead, mentor, and develop a team of security analysts and/or engineers.
• Define team goals, performance metrics, and professional development plans.
• Manage relationships with external security vendors, consultants, and managed service providers.

DevSecOps & Application Security

• Embed security into CI/CD pipelines (GitHub Actions / Azure DevOps)
• Implement SAST, DAST, SCA, secrets scanning
• Enforce secure coding (OWASP Top 10)
• Perform threat modeling (STRIDE)
• Secure microservices and supply chain (SBOM)

API & Integration Security

• Secure APIs using OAuth2, OIDC, JWT
• Implement API gateway controls (rate limiting, auth)
• Monitor API traffic and anomalies

Cloud Security (Azure)

• Secure Azure workloads including AKS, Functions, Storage
• Implement Defender for Cloud, Sentinel
• Enforce identity and access governance

Data Security & Governance

• Implement data classification and DLP
• Encrypt sensitive data
• Leverage Microsoft Purview

AI & Emerging Technology Security

• Define security for AI/LLM systems
• Prevent data leakage and model misuse

May be modified from time to time. Other duties, tasks and work may be assigned.

METRICS

·To consistently meet deadlines and objectives as agreed and typically described in quarterly reviews or through other project planning efforts

·To handle ongoing projects and day-to-day demands that are not identified in formal quarterly objectives in a timely and accurate manner

·Adherence to budgets

·Adherence to/achievement of benefits described in project business case (cost/benefit) analyses

·Manager of IT Security will be measured by Security Incidents and Monthly Project Completion.

·KPIs:

§MTTD / MTTR

§Vulnerability remediation SLA

§SAST/DAST coverage

§Phishing failure rate

§Cloud mis-config incidents

§API security incidents

SUPERVISORY RESPONSIBILITIES

·Supervise the IT security staff, perform employee reviews, manage and track support tasks, and mentor team members into knowledgeable, productive, and proactive IT Security team members.

·Responsible for corporate management chores and tasks currently in existence that come into existence that are generally the responsibility of all managers with direct reports. Examples include but are not limited to writing monthly and yearly reviews, approving timesheets, approving expense reports, etc.

Positions with direct reports are responsible to hold periodic safety training sessions (currently once a month) with said employees.Subject matter will be distributed at the monthly managers’ staff meeting.Subsequent to training sessions, managers must forward a confirming Training report to each direct report using the Management Reporting System.

QUALIFICATIONS

Required

• Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field (or equivalent experience).
• 7 years of progressive IT experience, with 3–5 years in a dedicated security role.
• Demonstrated experience managing enterprise security programs across on-premises and cloud environments.
• Strong knowledge of identity and access management, network security, endpoint protection, and vulnerability management.
• Hands-on experience with Microsoft security technologies (Entra ID, Defender suite, Sentinel, Purview).
• Experience leading incident response efforts and conducting forensic investigations.
• Excellent communication skills with the ability to convey technical risk to non-technical audiences.

Preferred

• One or more industry certifications: CISSP, CISM, CISA, CEH, Security, or equivalent.
• Experience with hybrid Active Directory environments and group policy management.
• Familiarity with SIEM platforms (Microsoft Sentinel, Splunk, etc.) and SOAR automation.
• Experience supporting compliance programs (SOC 2, PCI-DSS, ISO 27001, or similar).
• Prior experience in manufacturing, distribution, or industrial environment is a plus.

KNOWLEDGE & SKILLS REQUIRED

Ability to: Monitor and plan for the security of complex systems and to provide IT teams with recommended security configurations to be consistent with company policies/procedures to ensure compliance; communicate technical/complex information both verbally and in writing; establish and maintain cooperation, understanding, trust and credibility; perform multiple tasks concurrently and respond to emergency situations effectively.

• Work independently with little or no supervision
• Ability to multi-task
• Ability to work at fast pace
• Attention to detail
• Ability to problem solve
• Strong writing and communication skills
• Sensitivity to user needs
• Interpersonal skills are a must
• Must be thorough

PHYSICAL DEMANDS

·Work environment includes typical computer-related noise levels and paper and equipment generated dust.

·Exposure to video display terminals occurs on a regular basis.

·Incumbent is on call to provide support services during off hours.

·Scheduled night and weekend work is required.

·Occasional Domestic and International travel may be required.

·Occasional sitting, frequent walking, reaching/working overhead, climbing or balancing, stooping, kneeling, crouching or crawling, continuous standing and repetitive hand motion.

·Lifting requirements include occasional lifting of 50 pounds with more frequent lifting of 10 pounds.

WORK SCHEDULE

This is an exempt position, which requires a work schedule that will achieve the results and objectives identified by the company.Generally, the schedule for this position will be 8:00am-5:00pm, Monday through Friday, with one hour for lunch.Nights and weekends may be worked as required based on current project and implementation needs, deadlines, and workload.Employee is expected to begin work on time and adhere to accepted time-off policies.

WORK ENVIRONMENT

The environment is an open office environment. It may be necessary from time to time to travel to other offices, plants and inventory warehouse environments relative to the requirements of the position. Dress attire is casual but professional in an office setting.All employees are required to wear Security access card and encouraged to wear apparel with company logo. All employees must always adhere to Safety Policies.

EMPLOYER'S RIGHTS

This job description does not list all the duties of the job.You may be asked by supervisors or managers to perform other duties.You will be evaluated in part based upon your performance of the tasks listed in this job description.The employer has the right to revise this job description at any time.The job description is not a contract for employment, and either you or the employer may terminate employment at any time, for any reason.

Radwell Benefits

Benefits: Radwell offers a comprehensive benefits package including health, dental, and vision coverage. The Company provides company sponsoredshort-termand long-term disability benefits, as well as $50,000 in Life insurance. These benefits, along with additional voluntary benefits, are available to all regular full-time employees beginning onfirst day of employment. All employees are automatically enrolled at 3% into the Company’s 401(k) Plan on the first of the month following 90 days of continuous employment. Employees are eligible for common paid Company Holidays and 15 days of PTO annually, which begin accruing on first date of employment and may be used immediately upon joining the team.

Salary Information:

The recruiting base salary range for this full time position is $110,000.00 - $150,000.00 /year. Within the range, individual pay is determined by factors, including job-related skills, experience, and relevant education or training. Additionally, this role is bonus-eligible, with a target bonus percentage that provides an opportunity to earn even more based on company performance.