- Company Name
- Avantus
- Job Title
- Sr. Manager, Cybersecurity
- Job Description
-
Job Title: Sr. Manager, Cybersecurity
Role Summary: Lead the organization’s cybersecurity strategy, governance, and operations for both IT and OT environments, ensuring scalable protection across business systems, networks, and utility-scale power facilities. Own incident response, compliance, program management, and continuous improvement of security controls.
Expectations:
- Deliver a mature, compliant cybersecurity posture aligned to regulatory and executive reporting requirements.
- Scale security operations to support growth of power generation projects and digital assets.
- Provide leadership, mentorship, and collaboration with IT, business, and external partners.
Key Responsibilities:
- Own and enhance IT/OT cybersecurity solutions, controls, policies, and procedures.
- Lead incident response: coordinate investigations, escalation, and documentation.
- Drive implementation of SIEM, vulnerability management, security analytics, and other operational tools.
- Manage projects for system changes, new solutions, and security initiatives; maintain project trackers and dashboards.
- Develop and maintain risk registers, remediation reports, and compliance status for executive audiences.
- Produce and update training resources, runbooks, and knowledge base content.
- Conduct tabletop exercises, targeted trainings, and communications to raise security awareness.
- Stay current with industry trends, emerging threats, and new technologies.
- Mentor IT staff and stakeholders in cybersecurity best practices.
Required Skills:
- 8+ years of cybersecurity leadership in enterprise or critical infrastructure.
- Deep knowledge of cybersecurity frameworks (NIST, ISO 27001, CMMI) and risk‑management processes.
- Expertise in SIEM, vulnerability management, threat intelligence, incident response, and IT/OT integration.
- Proven project management skills (planning, execution, monitoring).
- Strong analytical, problem‑solving, and decision‑making abilities.
- Excellent communication and stakeholder‑management skills.
Required Education & Certifications:
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience).
- Certified Information Systems Security Professional (CISSP) or similar (CISM, CEH, ISO 27001 Lead Implementer).
- Additional certifications such as CompTIA Security+, CCNA Security, or GRC frameworks beneficial.