Sr. Manager in Cybersecurity

Job Title: Sr. Manager in Cybersecurity

Location: Houston, TX // Hybrid

Duration: 6+ Months

Contract: C2C

Experience: 12+ Years

Position Summary:

The Sr. Manager, Cybersecurity leads comprehensive cybersecurity operations and strategy to protect ProEnergy's critical infrastructure and business systems from evolving cyber threats. This role manages cybersecurity teams, implements security controls across IT and OT environments, and ensures regulatory compliance including NERC-CIP standards for critical infrastructure protection. The position combines strategic cybersecurity leadership with operational oversight to safeguard power generation facilities, manufacturing operations, and business systems across 40+ countries while enabling digital transformation initiatives.

Reports To: Vice President, IT Operations

Direct Reports: 2-4 Cybersecurity Analysts and Specialists

Location: Houston, TX with global cybersecurity responsibility

Travel: 20-25%

Position Responsibilities:

• Develop and implement comprehensive cybersecurity strategy aligned with business objectives
• Manage enterprise cybersecurity program across IT and operational technology (OT) environments
• Establish cybersecurity governance framework including policies, standards, and procedures
• Lead threat landscape analysis and security risk assessment initiatives
• Coordinate cybersecurity integration with digital transformation and cloud adoption projects
• Oversee cybersecurity budget planning and resource allocation
• Manage Security Operations Center (SOC) providing 24/7 monitoring and threat detection
• Lead incident response program with coordinated response to cybersecurity events
• Oversee security technology stack including SIEM, EDR, firewalls, and threat intelligence platforms
• Coordinate threat hunting and advanced persistent threat (APT) detection capabilities
• Manage security metrics, reporting, and communication to executive leadership
• Establish relationships with law enforcement, government agencies, and industry partners
• Ensure compliance with NERC-CIP Critical Infrastructure Protection standards
• Manage SOX IT controls implementation and testing for financial systems
• Coordinate compliance with industry standards (ISO 27001, NIST Cybersecurity Framework)
• Oversee third-party risk assessment and vendor security management programs
• Lead regulatory audit preparation and coordinate with external auditors
• Maintain cybersecurity risk register and executive risk reporting
• Lead and develop the cybersecurity team including analysts, engineers, and specialists
• Recruit and hire cybersecurity professionals across multiple specializations
• Conduct performance evaluations and create individual development plans
• Implement professional development programs and certification pathways
• Coordinate security training and awareness programs for all employees
• Evaluate and implement advanced cybersecurity technologies and solutions
• Oversee deployment of zero-trust security architecture and micro-segmentation
• Manage identity and access management (IAM) and privileged access management programs
• Coordinate security architecture for cloud platforms and hybrid environments
• Implement security automation and orchestration (SOAR) capabilities
• Ensure integration of security controls with operational technology systems

Required Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, or related field (master s preferred)
• Minimum 5-8 years of progressive cybersecurity experience
• Minimum 3 years of cybersecurity management and team leadership experience
• Experience with critical infrastructure or regulated industry security requirements
• Expert knowledge of cybersecurity frameworks, technologies, and best practices
• Advanced proficiency with SIEM platforms, security analytics, and threat detection tools
• Strong experience with incident response, digital forensics, and threat hunting
• Working knowledge of operational technology (OT) and industrial control systems security
• Understanding of cloud security, identity management, and zero-trust architecture
• Familiarity with security automation, threat intelligence, and advanced security tools
• Proven ability to lead and develop cybersecurity teams
• Strong strategic thinking and program management capabilities
• Excellent communication skills for executive and board-level reporting
• Experience with budget management and vendor relationship management
• Ability to translate technical risks into business language
• Deep understanding of NERC-CIP Critical Infrastructure Protection standards
• Experience with SOX IT controls, ISO 27001, and cybersecurity compliance frameworks
• Knowledge of privacy regulations (GDPR, state privacy laws) and data protection
• Familiarity with incident reporting requirements and regulatory coordination
• Understanding of risk management methodologies and quantitative risk analysis

Desired Qualifications:

• Experience with advanced persistent threat (APT) detection and response
• Knowledge of artificial intelligence and machine learning for cybersecurity
• Understanding of deception technologies and active defense strategies
• Experience with cloud security architecture and DevSecOps practices
• Familiarity with emerging threats including AI-powered attacks and quantum computing risks
• Experience in power generation, utilities, or energy sector cybersecurity
• Knowledge of manufacturing and operational technology security
• Understanding of global cybersecurity operations and international regulations
• Experience with merger and acquisition cybersecurity due diligence
• Background in public-private partnerships and government collaboration
• Experience with board-level cybersecurity reporting and communication
• Strategic planning and business case development capabilities
• Crisis leadership during major cybersecurity incidents
• Industry thought leadership and public speaking experience
• Understanding of cyber insurance and business continuity planning

Certifications Required:

• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager) or equivalent management certification
• NERC-CIP certification or demonstrated compliance experience

Preferred

• CISA (Certified Information Systems Auditor)
• Advanced technical certifications (GCIH, GPEN, cloud security certs)
• Project management (PMP) or business management (MBA) credentials

Working Conditions

• Office environment with occasional visits to secure facilities and operations centers
• Standard business hours with 24/7 availability for cybersecurity incidents
• Ultimate accountability for cybersecurity incident response and crisis management