Manager, IT - Product & Operational Technology Security

About The Position

Requirements

• Bachelor’s degree in Information Security, Computer Science, Engineering, or a related field preferred, or equivalent relevant experience in lieu of formal education.
• 6+ years of cybersecurity experience, including experience supporting security activities in regulated or operational environments.
• Working knowledge of product security practices such as threat modeling, secure design reviews, vulnerability management, and remediation tracking.
• Experience operating within regulated environments with strong quality, safety, or compliance requirements.
• Ability to clearly communicate technical risks and recommendations to both technical and non technical stakeholders.
• Prior experience providing task leadership or managing a small technical team.
• Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.

Nice To Haves

• Exposure to OT or industrial environments, including manufacturing, laboratory, or R&D systems
• Familiarity with cybersecurity considerations in medical device or regulated product environments
• Experience supporting programs aligned to IEC 81001-5-1 or FDA Cybersecurity in Medical Devices guidance
• Familiarity with Dragos software
• Relevant security certifications (e.g., CISSP, CISM, CSSLP)

Responsibilities

• Support product security activities across the product lifecycle by executing established security processes for design reviews, development, release, and post market support.
• Coordinate and participate in threat modeling, secure architecture reviews, and product security risk assessments in partnership with R&D and Product teams.
• Manage day to day product vulnerability intake, tracking, remediation coordination, and disclosure activities, escalating risks and decisions as needed.
• Support alignment of product cybersecurity documentation and controls with applicable standards and guidance, including IEC 81001-5-1 and FDA cybersecurity expectations.
• Partner with Quality and Regulatory Affairs teams to support cybersecurity inputs for product submissions, audits, and inspections.
• Support OT security activities across manufacturing and R&D environments by implementing and maintaining approved security standards and controls.
• Coordinate OT security assessments and architecture reviews, working with Manufacturing IT and Engineering teams to identify and mitigate risks.
• Assist in implementing OT security controls related to network segmentation, remote access, vendor connectivity, asset visibility, and monitoring.
• Support integration of OT security considerations into plant change management and capital project planning, escalating constraints or risk tradeoffs as needed.
• Act as a primary security point of contact for Product and OT related initiatives, ensuring consistent communication and coordination across stakeholders.
• Translate cybersecurity requirements into practical, implementable guidance for engineering and operations teams.
• Support continuous improvement of security processes, templates, and documentation.
• Directly manage Product Security Engineers or analysts, providing task direction, coaching, and performance feedback.
• Support onboarding, training, and development of team members to promote consistent and repeatable security practices.
• Coordinate vendor and service provider activities related to Product and OT Security under the direction of senior leadership.

Benefits

• medical, dental, vision insurance
• disability and life insurance
• a 401(k) plan and company match
• a tuition reimbursement program (select degrees)
• company holidays
• well-being benefits
• sick time
• floating holidays
• paid vacation