Negotiable
Outside
Remote
USA
Summary: The Cybersecurity Manager will lead the cybersecurity operations and strategy for ProEnergy, focusing on protecting critical infrastructure and business systems from cyber threats. This role involves managing teams, implementing security controls, and ensuring compliance with regulatory standards. The position requires a blend of strategic leadership and operational oversight to support digital transformation initiatives across multiple countries. The ideal candidate will have extensive experience in cybersecurity management and a strong understanding of industry standards and frameworks.
Key Responsibilities:
- Develop and implement comprehensive cybersecurity strategy aligned with business objectives
- Manage enterprise cybersecurity program across IT and operational technology (OT) environments
- Establish cybersecurity governance framework including policies, standards, and procedures
- Lead threat landscape analysis and security risk assessment initiatives
- Coordinate cybersecurity integration with digital transformation and cloud adoption projects
- Oversee cybersecurity budget planning and resource allocation
- Manage Security Operations Center (SOC) providing 24/7 monitoring and threat detection
- Lead incident response program with coordinated response to cybersecurity events
- Oversee security technology stack including SIEM, EDR, firewalls, and threat intelligence platforms
- Coordinate threat hunting and advanced persistent threat (APT) detection capabilities
- Manage security metrics, reporting, and communication to executive leadership
- Establish relationships with law enforcement, government agencies, and industry partners
- Ensure compliance with NERC-CIP Critical Infrastructure Protection standards
- Manage SOX IT controls implementation and testing for financial systems
- Coordinate compliance with industry standards (ISO 27001, NIST Cybersecurity Framework)
- Oversee third-party risk assessment and vendor security management programs
- Lead regulatory audit preparation and coordinate with external auditors
- Maintain cybersecurity risk register and executive risk reporting
- Lead and develop the cybersecurity team including analysts, engineers, and specialists
- Recruit and hire cybersecurity professionals across multiple specializations
- Conduct performance evaluations and create individual development plans
- Implement professional development programs and certification pathways
- Coordinate security training and awareness programs for all employees
- Evaluate and implement advanced cybersecurity technologies and solutions
- Oversee deployment of zero-trust security architecture and micro-segmentation
- Manage identity and access management (IAM) and privileged access management programs
- Coordinate security architecture for cloud platforms and hybrid environments
- Implement security automation and orchestration (SOAR) capabilities
- Ensure integration of security controls with operational technology systems
Key Skills:
- Bachelor's degree in Cybersecurity, Computer Science, or related field (master's preferred)
- Minimum 5-8 years of progressive cybersecurity experience
- Minimum 3 years of cybersecurity management and team leadership experience
- Experience with critical infrastructure or regulated industry security requirements
- Expert knowledge of cybersecurity frameworks, technologies, and best practices
- Advanced proficiency with SIEM platforms, security analytics, and threat detection tools
- Strong experience with incident response, digital forensics, and threat hunting
- Working knowledge of operational technology (OT) and industrial control systems security
- Understanding of cloud security, identity management, and zero-trust architecture
- Familiarity with security automation, threat intelligence, and advanced security tools
- Proven ability to lead and develop cybersecurity teams
- Strong strategic thinking and program management capabilities
- Excellent communication skills for executive and board-level reporting
- Experience with budget management and vendor relationship management
- Ability to translate technical risks into business language
- Deep understanding of NERC-CIP Critical Infrastructure Protection standards
- Experience with SOX IT controls, ISO 27001, and cybersecurity compliance frameworks
- Knowledge of privacy regulations (GDPR, state privacy laws) and data protection
- Familiarity with incident reporting requirements and regulatory coordination
- Understanding of risk management methodologies and quantitative risk analysis
Salary (Rate): undetermined
City: undetermined
Country: USA
Working Arrangements: Remote
IR35 Status: Outside IR35
Seniority Level: undetermined
Industry: IT
Role : Cybersecurity Manager
Type : Remote
Location : Location: Houston, TX (Locals Only) Office environment with occasional visits to secure facilities and operations centers
Position Summary
The Sr. Manager, Cybersecurity leads comprehensive cybersecurity operations and strategy to protect ProEnergy's critical infrastructure and business systems from evolving cyber threats. This role manages cybersecurity teams, implements security controls across IT and OT environments, and ensures regulatory compliance including NERC-CIP standards for critical infrastructure protection. The position combines strategic cybersecurity leadership with operational oversight to safeguard power generation facilities, manufacturing operations, and business systems across 40+ countries while enabling digital transformation initiatives.
Position Responsibilities
Develop and implement comprehensive cybersecurity strategy aligned with business objectives
Manage enterprise cybersecurity program across IT and operational technology (OT) environments
Establish cybersecurity governance framework including policies, standards, and procedures
Lead threat landscape analysis and security risk assessment initiatives
Coordinate cybersecurity integration with digital transformation and cloud adoption projects
Oversee cybersecurity budget planning and resource allocation
Manage Security Operations Center (SOC) providing 24/7 monitoring and threat detection
Lead incident response program with coordinated response to cybersecurity events
Oversee security technology stack including SIEM, EDR, firewalls, and threat intelligence platforms
Coordinate threat hunting and advanced persistent threat (APT) detection capabilities
Manage security metrics, reporting, and communication to executive leadership
Establish relationships with law enforcement, government agencies, and industry partners
Ensure compliance with NERC-CIP Critical Infrastructure Protection standards
Manage SOX IT controls implementation and testing for financial systems
Coordinate compliance with industry standards (ISO 27001, NIST Cybersecurity Framework)
Oversee third-party risk assessment and vendor security management programs
Lead regulatory audit preparation and coordinate with external auditors
Maintain cybersecurity risk register and executive risk reporting
Lead and develop the cybersecurity team including analysts, engineers, and specialists
Recruit and hire cybersecurity professionals across multiple specializations
Conduct performance evaluations and create individual development plans
Implement professional development programs and certification pathways
Coordinate security training and awareness programs for all employees
Evaluate and implement advanced cybersecurity technologies and solutions
Oversee deployment of zero-trust security architecture and micro-segmentation
Manage identity and access management (IAM) and privileged access management programs
Coordinate security architecture for cloud platforms and hybrid environments
Implement security automation and orchestration (SOAR) capabilities
Ensure integration of security controls with operational technology systems
Required Qualifications
Bachelor's degree in Cybersecurity, Computer Science, or related field (master s preferred)
Minimum 5-8 years of progressive cybersecurity experience
Minimum 3 years of cybersecurity management and team leadership experience
Experience with critical infrastructure or regulated industry security requirements
Expert knowledge of cybersecurity frameworks, technologies, and best practices
Advanced proficiency with SIEM platforms, security analytics, and threat detection tools
Strong experience with incident response, digital forensics, and threat hunting
Working knowledge of operational technology (OT) and industrial control systems security
Understanding of cloud security, identity management, and zero-trust architecture
Familiarity with security automation, threat intelligence, and advanced security tools
Proven ability to lead and develop cybersecurity teams
Strong strategic thinking and program management capabilities
Excellent communication skills for executive and board-level reporting
Experience with budget management and vendor relationship management
Ability to translate technical risks into business language
Deep understanding of NERC-CIP Critical Infrastructure Protection standards
Experience with SOX IT controls, ISO 27001, and cybersecurity compliance frameworks
Knowledge of privacy regulations (GDPR, state privacy laws) and data protection
Familiarity with incident reporting requirements and regulatory coordination
Understanding of risk management methodologies and quantitative risk analysis
Desired Qualifications
Experience with advanced persistent threat (APT) detection and response
Knowledge of artificial intelligence and machine learning for cybersecurity
Understanding of deception technologies and active defense strategies
Experience with cloud security architecture and DevSecOps practices
Familiarity with emerging threats including AI-powered attacks and quantum computing risks
Experience in power generation, utilities, or energy sector cybersecurity
Knowledge of manufacturing and operational technology security
Understanding of global cybersecurity operations and international regulations
Experience with merger and acquisition cybersecurity due diligence
Background in public-private partnerships and government collaboration
Experience with board-level cybersecurity reporting and communication
Strategic planning and business case development capabilities
Crisis leadership during major cybersecurity incidents
Industry thought leadership and public speaking experience
Understanding of cyber insurance and business continuity planning
Certifications Required
CISSP (Certified Information Systems Security Professional)
CISM (Certified Information Security Manager) or equivalent management certification
NERC-CIP certification or demonstrated compliance experience
Preferred
CISA (Certified Information Systems Auditor)
Advanced technical certifications (GCIH, GPEN, cloud security certs)
Project management (PMP) or business management (MBA) credentials
Working Conditions
Office environment with occasional visits to secure facilities and operations centers
Standard business hours with 24/7 availability for cybersecurity incidents
Ultimate accountability for cybersecurity incident response and crisis management