Job Specifications
Position Summary
The Cybersecurity Manager will lead the development, implementation, and continuous improvement of Vessco Water’s enterprise cybersecurity program. This role is responsible for ensuring the security, confidentiality, integrity, and availability of company systems and data across a diverse, multi-entity environment.
The Cybersecurity Manager will translate strategic goals into actionable programs and controls, coordinate with technical teams and external partners to execute a multi-year cybersecurity roadmap and oversee compliance with internal policies and external standards (e.g., NIST CSF, CMMC, and other relevant frameworks).
This leader will also chair the Cybersecurity Risk Committee, partnering with key stakeholders from Finance, Legal, and HR to align priorities, investments, and reporting with enterprise risk and business goals.
Key Duties
Strategic Leadership
Develop, gain ratification, and operationalize the enterprise cybersecurity roadmap based on findings from the ongoing gap assessment.
Define and track KPIs/KRIs that measure risk reduction, maturity, and alignment to business objectives.
Partner with the VP of IT Infrastructure & Operations to integrate cybersecurity into infrastructure design, IT operations, and M&A onboarding processes.
Provide quarterly cybersecurity briefings to executive leadership, including progress on initiatives, risk posture, and investment recommendations.
Maintain alignment with the organization’s broader IT strategy, digital transformation goals, and private-equity value creation plan.
Governance, Risk & Compliance (GRC)
Chair and manage the Cybersecurity Risk Committee, including preparation of agendas, materials, and action tracking.
Develop and enforce enterprise security policies, standards, and controls, aligned with NIST CSF and other applicable frameworks.
Oversee ongoing risk assessments, vulnerability management, and compliance initiatives (e.g., CMMC readiness, SOC 2, or other frameworks as applicable).
Coordinate incident response planning, tabletop exercises, and post-incident reviews.
Support Legal and HR on data privacy, acceptable use, and regulatory compliance (e.g., data retention, vendor risk management, and employee awareness).
Cybersecurity Engineering & Operations
Partner with network and systems engineers to design and implement secure architectures and configurations across servers, networks, endpoints, and cloud environments (Microsoft 365/Azure, AWS, etc.).
Lead the selection, implementation, and optimization of security tools and services, such as:
Endpoint Detection & Response (EDR)
Security Information & Event Management (SIEM)
Identity and Access Management (IAM/MFA)
Privileged Account Management (PAM)
Vulnerability management and patching
Data loss prevention (DLP) and email security
Backup/recovery and business continuity systems
Manage external MSSP/SOC partners to ensure effective 24x7 monitoring, escalation, and remediation.
Collaborate on security architecture reviews for new systems, integrations, and acquisitions.
Awareness & Culture
Partner with HR and Communications to enhance security awareness and training across all business units (e.g., phishing simulations, KnowBe4 campaigns).
Develop playbooks, FAQs, and user-friendly communications to embed cybersecurity into daily operations.
Serve as a visible advocate for cybersecurity across the enterprise, helping leaders and employees understand their role in protecting the organization.
Required Qualifications
Bachelor’s degree in Information Security, Computer Science, or related field (Master’s preferred).
7+ years of experience in cybersecurity, including at least 3 years in a management or lead role.
Demonstrated success leading security programs in multi-entity or distributed organizations (experience in manufacturing, distribution, or industrial sectors preferred).
Strong knowledge of security frameworks (NIST CSF, CIS Controls, ISO 27001, CMMC).
Experience managing external partners (MSSP, penetration testing firms, compliance assessors, etc.).
Hands-on familiarity with common enterprise technologies (Microsoft 365, Azure, Active Directory, firewalls, network segmentation, vulnerability management, etc.).
Preferred Qualifications
CISSP, CISM, or CISA
CompTIA Security+ or equivalent
NIST CSF or CMMC practitioner credentials a plus
Physical Demands And Work Environment
While performing the duties of this job, the employee is regularly required to sit. The employee frequently is required to talk or hear. The employee is occasionally required to stand and use hands to finger, handle, or feel objects, tools or controls. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, distance vision, peripheral vision, depth perception, and the ability to adjust focus. Standard office environment. While performing the duties of this job, the employee is occasionally exposed