Sr Manager - Cybersecurity Operational Technology

The Senior Manager of Cybersecurity Operational Technology is a pivotal role that involves the protection and safeguarding of our organization’s industrial control systems (ICS), SCADA (Supervisory Control and Data Acquisition), and other critical infrastructure. This individual will be responsible for driving the development, and implementation, of cybersecurity strategies tailored to OT environments in addition to delivering metrics and analytics. They will lead a team of cyber professionals in managing risk for critical infrastructure, including supervising the deployment of security measures, managing incident response, and ensuring compliance with relevant cybersecurity standards and regulations. 

The incumbent will navigate cross-functionally with senior leadership to align Cybersecurity OT initiatives with business objectives and ensure the seamless integration of technology into all facets of operations. Partnering with multiple teams and dependents, the Senior Manager will help drive the research and development of new innovating solutions to further enhance the technology landscape, processes, and procedures.

Strategy and Planning

• Lead the design and implementation of secure OT architectures.
• Integrate security into OT solutions.
• Install, configure, and tune cybersecurity tools in the OT environment.
• Provide domain expertise in various cybersecurity areas.
• Assist in identifying, responding to, investigating, and remediating cybersecurity events and incidents.
• Drive opportunities to closure while working with a national, and often global, teams.
• Implement cybersecurity programs and strategies using proprietary solutions.
• Deploy solutions to remediate gaps or enhance the maturity of specific cybersecurity capabilities.
• Operate cybersecurity measurements and monitoring.
• Develop sustainable processes tailored to the cybersecurity environment.
• Leverage cybersecurity frameworks/standards like ISO/IEC 62443, NIST CSF, NIST 800-82, etc.
• Collaborates with Business Stakeholders and Senior Management to assure alignment to goals.
• Provides consistent architectural standards, develops business system strategies and implementation of roadmaps.
• Prepares annual and strategic budgets to support executive level plans. 
• Analyzes financial performance and variances.
• Partner with business unit leadership regarding risks, objectives and process improvements.
• Oversee detailed research of vendor products and assists with general project management.
• Provide direction, development, and implementation of software solutions.
• Participate in regular planning sessions to ensure alignment of resources and Cyber strategy.
• Actively engage business management to ensure business needs and expectations are met.
• Develop wants/needs for the annual budgeting process in projects, operations and support.
• Provide insight and recommendations on the competitive landscape and business drivers.
• Determine staffing and skills requirements.

Operational Management 

• Engages with Business Stakeholders to develop and document the requirements and manage the development, delivery and ongoing support via the IT development organization and its supporting vendor partners.
• Provides leadership and mentorship to develop high performance teams.  Implements management metrics to support goal achievement.
• Develop management dashboards to ensure tasks are completed timely and effectively.
• Support the Regional DT Team to perform cybersecurity risk assessment on running projects/programs.
• Support the Regional DT Teams to assist with any questions/concerns pertaining to both internal and external Cybersecurity Audits.
• Develop solutions to leverage IT application functionality for supported applications and suggest improvements. 
• Communicate effectively, improve relationships, and manage customers cross functionally.
• Participate in global steering committees, preparing and presenting to leadership for the company.
• Ensure timely remediation of system issues.
• Provides leadership and work guidance to less experienced personnel.
• Maintain effective service level agreements with business units. 
• Conduct activities such as staffing, performance and resource management, and strategic direction of the team.
• Set employee objectives, monitor and evaluate performance, Individual Development Planning and provide feedback and mentoring.
• Manage, develop and mentor subordinates toward the building of a strong team.
• Help Develop and maintain incident response and Business Continuity specific to OT environments.
• Lead investigations into security incidents, coordinate response efforts, and drive recovery.
• Collaborate with vendors to evaluate and select OT security solutions.
• Manage vendor relationships and contracts.
• Conduct training sessions for OT staff on security best practices.
• Foster a security-aware culture within the organization.
• Identify and assess risks related to OT systems, networks, and devices.
• Implement risk mitigation measures, including vulnerability assessments, threat modeling, and incident response planning.
• Monitor and evaluate the effectiveness of security controls.

Incidental Functions

• Prepare and lead presentations as requested.
• Research or prototype new tools and/or technologies.
• Lead internal teams/task forces on initiatives as assigned.
• Assist with other projects as necessary to contribute to efficiency and effectiveness of the work.
• Responsible for in hiring activities and fulfilling affirmative action obligations and ensuring compliance with the equal employment opportunity policy.

This position is not eligible for sponsorship for work authorization now or in the future, including conversion to H1-B visa.

This position has a hybrid work schedule with three days in the office and the option for working remotely two days.

Required:

• Bachelor’s Degree (or foreign equivalent) or in lieu of a degree, at least 12 years in experience in the field of Information Technology or Business (work experience or a combination of education and work experience in the field of Information Technology or Business)

Preferred:

• Master’s degree
• Certified Information Systems Security Professional (CISSP)
• ISA/IEC 62443 Cybersecurity Certificates
• Networking certifications (e.g., CCNA, CCNP, JNCIP-ENT, etc.)
• Cybersecurity certification (e.g., CEH, CISA, CISM, CCSP, etc.)
• ICS410: ICS/SCADA Security Essentials
• ICS515: ICS Visibility, Detection, and Response

Knowledge & Experience

• 12+ years IT related work experience.
• 8+ years of managing and leading a team of direct reports
• 6+ years developing and implementing information technology systems.
• 5+ years of solutions or business domain experience with increasing levels of responsibility.
• Proven experience in OT cybersecurity management.
• Strong understanding of ICS and SCADA systems.
• Excellent client relationship building skills.
• Ability to present complex technical ideas to various stakeholders.
• Experience with risk management principles applied to a cybersecurity environment.
• Experience collaborating with design/development teams, internal and/or external.
• Experience delivering programs on scope, on time, on budget and expected quality and benefit to the customer and end users.
• Strong experience in project management and system architecture methodologies(preferred) 
• Experience analyzing functional system requirements and designing and developing solutions that fulfill business requirements.
• Experience applying comprehensive information technology management principles and practices.
• Proven ability to translate strategic directives into tactical initiatives.
• Well versed in Microsoft Office applications.
• Demonstrated skill with presentation and communication tools such as MS PowerPoint, Visio, etc. 

Personal Attributes 

• Outstanding written and oral communications skills.
• Demonstrated leadership ability.
• Exceptional ability and initiative to learn and research new concepts, ideas, and technologies quickly.
• Demonstrated experience with time management and prioritization and ability to balance multiple priorities in a high-pressure environment.
• Experience communicating complex ideas and concepts clearly and concisely to executives, stakeholders and IT resources in both technical and user-friendly language to attain buy-in.
• Demonstrated skill in preparation and maintenance of documentation.
• Motivated and competent to develop objectives and timelines to accomplish goals.
• Well organized and able to manage multiple and changing priorities.
• Exceptional systems/process orientation with demonstrated analytical thinking, organization skills and problem solving skills.
• Ability to work in a team-oriented, collaborative environment.
• Ability to quickly pick up new tools and technologies. 
• Willingness and ability to train and teach others.
• Ability to facilitate meetings and follow up with resulting action items.
• Excellent presentation and interpersonal skills. 
• Ability to work effectively in a multi-cultural environment, and to lead and influence cross-organizationally with and without direct authority.
• Ability to effectively move forward on tasks even with ambiguous or changing requirements.
• Up to 25% travel as required (domestic and international)
• Work outside the standard office 7.5 hour workday may be required.
• Commitment to fostering a culture of inclusion and diversity

Here, we believe there’s not one path to success, we believe in careers that grow with you. Whoever you are or wherever you come from in the world, there’s a place for you at Sherwin-Williams. We provide you with the opportunity to explore your curiosity and drive us forward. Sherwin-Williams values the unique talents and abilities from all backgrounds and characteristics. All qualified individuals are encouraged to apply, including individuals with disabilities and Protected Veterans. We’ll give you the space to share your strengths and we want you show us what you can do. You can innovate, grow and discover in a place where you can thrive and Let Your Colors Show! 
At Sherwin-Williams, part of our mission is to help our employees and their families live healthier, save smarter and feel better. This starts with a wide range of world-class benefits designed for you. From retirement to health care, from total well-being to your daily commute—it matters to us. A general description of benefits offered can be found at http://www.myswbenefits.com/. Click on “Candidates” to view benefit offerings that you may be eligible for if you are hired as a Sherwin-Williams employee.
Compensation decisions are dependent on the facts and circumstances of each case and will impact where actual compensation may fall within the stated wage range. The wage range listed for this role takes into account the wide range of factors considered in making compensation decisions including skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled.
The wage range, other compensation, and benefits information listed is accurate as of the date of this posting. The Company reserves the right to modify this information at any time, with or without notice, subject to applicable law.
Sherwin-Williams is proud to be an Equal Employment Opportunity/Affirmative Action employer committed to an inclusive and diverse workplace. All qualified candidates will receive consideration for employment and will not be discriminated against based on race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, age, pregnancy, genetic information, creed, marital status or any other consideration prohibited by law or by contract.
As a VEVRAA Federal Contractor, Sherwin-Williams requests state and local employment services delivery systems to provide priority referral of Protected Veterans.

Career development, Competitive pay, Health care, Team events, Travel