Cyber Security Lead

Job Description

Job Description

Position Description

The IT Cybersecurity Analyst is a key player in building and maturing a comprehensive, enterprise-wide cybersecurity program that protects VT’s operations, intellectual property, customer data, and digital assets in an increasingly complex threat landscape. This role focuses on proactive threat detection, modern security architecture, and alignment of cybersecurity strategies with business objectives—especially as the company adopts AI-driven tools, agentic AI systems, cloud/OT convergence, and Industry 4.0 technologies.

Overall Responsibilities

• Design, implement, and continuously improve cybersecurity controls and architectures that defend against both current and emerging threats.
• Support the integration of security into all technology initiatives, including cloud migrations, AI/agentic workflows, manufacturing OT/IoT environments, and customer-facing portals.
• Stay ahead of evolving risks such as agentic AI compromise, AI-orchestrated attacks, supply-chain vulnerabilities, ransomware, and quantum-era threats, translating them into actionable defenses.

Essential Job Functions

• Proactively monitor networks, endpoints, cloud platforms, OT/IoT systems, and AI/agentic environments using advanced XDR, SIEM, SOAR, and behavioral analytics tools to detect and respond to threats in real time.
• Deploy, tune, and maintain next-generation security technologies including Zero Trust architecture, SASE, EDR/XDR, privileged access management, cloud security posture management (CSPM), and container/Kubernetes security.
• Lead incident response activities: investigate breaches, coordinate containment and recovery, prepare executive-level reports, and perform root-cause analysis.
• Develop, recommend, and enforce updated cybersecurity policies, standards, and procedures that address modern risks (ransomware resilience, supply-chain security via SBOMs and third-party risk management, data loss prevention, and secure AI usage).
• Collaborate closely with Systems, Network, Database, DevOps, and OT teams to embed security into the full technology stack, including endpoint, network, data, cloud (AWS/Azure/GCP), manufacturing systems, and customer portals.
• Partner with development and application teams to embed security into the SDLC through DevSecOps practices, secure code reviews, and threat modeling for both traditional and AI/agentic applications.
• Design and deliver engaging, role-specific cybersecurity awareness training programs that cover current threats (AI-enhanced phishing, deepfakes, business email compromise) and emerging challenges such as secure use of generative AI and autonomous agentic systems.
• Own and continuously evolve the incident response and business continuity plans; conduct regular tabletop exercises, red-team simulations, and ransomware-specific drills.
• Define, track, and present meaningful cybersecurity metrics and risk dashboards to leadership, highlighting program maturity, threat landscape changes, and business impact.
• Research and evaluate up-and-coming security challenges, including:
• Agentic AI risks (prompt injection, memory poisoning, tool misuse, privilege escalation, and autonomous agent hijacking).
• AI-orchestrated cyberattacks and adversarial ML techniques.
• Supply-chain and third-party risk amplification.
• Quantum computing threats and post-quantum cryptography readiness.
• Expanded attack surface from IoT/OT convergence and cloud-native manufacturing systems.
• Ensure ongoing compliance with relevant frameworks (NIST CSF 2.0, CIS Controls v8, MITRE ATT&CK, OWASP Top 10 for LLM/Agentic AI, ISO 27001, and applicable industry regulations).
• Other duties as assigned.

Position Requirements

Professional Characteristics

• Strong sense of ownership and accountability; consistently delivers high-quality results.
• Self-motivated initiator with a proactive, solutions-oriented mindset and tireless work ethic.
• Creative, visionary problem-solver who thrives on complexity and continuous improvement.
• Rapid learner who quickly masters new technologies, tools, and threat vectors.
• Excellent written and verbal communicator capable of translating technical concepts for non-technical stakeholders.
• Collaborative team player who builds trust and partnerships across all levels of the organization.
• Unwavering integrity, ethical standards, and commitment to confidentiality.
• Business-minded professional with a customer-service focus—security enables, rather than hinders, operational excellence.

Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (Master’s or relevant certifications strongly preferred).
• 3+ years of hands-on cybersecurity experience, ideally in a manufacturing or industrial environment.
• Solid knowledge of modern operating systems (Windows, Linux), databases (SQL Server, Oracle, cloud-native), networking, and cloud platforms (AWS, Azure, GCP).
• Demonstrated experience securing cloud environments, including IAM, CSPM, CASB, and serverless/container security.
• Proficiency with current security tooling: EDR/XDR (Microsoft Defender, CrowdStrike, SentinelOne), SIEM/SOAR, PAM, vulnerability management, next-gen firewalls, WAF, and identity solutions (Entra ID, Zero Trust, MFA/conditional access).
• Familiarity with Group Policy, Active Directory/Entra ID, and endpoint protection platforms.
• Working knowledge of key frameworks: NIST, MITRE ATT&CK, CIS Controls, OWASP (including LLM/Agentic AI variants), and supply-chain security practices.
• Understanding of emerging threats and technologies: agentic AI security, AI-driven attacks, ransomware tactics, supply-chain compromise, deepfakes, IoT/OT security, and post-quantum readiness.
• Preferred certifications: CompTIA Security+, CISSP, CISM, CCSP, or equivalent.
• Proven ability to establish and maintain effective relationships with internal teams, leadership, and external partners.
• All team members must uphold VT Industries’ Code of Conduct and Attendance Policy.

Physical Requirements

Tolerance for sitting long periods of time. Possess finger dexterity to write, type, and use a calculator. Maintain adequate vision to view small print and computer terminal. Ability to speak and hear, walk throughout facilities with occasional light lifting (25 pounds), stooping, kneeling, crouching, and reaching with hands and arms required. Ability to travel between multiple facilities as required to perform core job duties.

The physical demands described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Benefits

Comprehensive benefit package including, but not limited to, health, dental, and vision insurance 401(k) with company match, employee assistance program, flexible spending and health savings accounts, life insurance, short- and long-term disability insurance, paid time off/vacation, tuition reimbursement, and more!