Cyber Security Manager

Join Our Team as a Cyber Security Manager!Workplace by Direct is seeking a driven and experienced Cyber Security Manager to join our team in Sioux Falls, SD. In this role, you’ll lead cybersecurity operations across both traditional IT and Operational Technology (OT) environments, including industrial control systems (ICS), SCADA networks, and connected infrastructure.You’ll oversee day-to-day security operations within our Managed Services and Managed Security Services environment, ensuring high-quality security outcomes for both internal systems and external clients. This role blends hands-on technical expertise with leadership, client engagement, and strategic direction to ensure environments remain secure, compliant, and resilient across both IT and OT domains.About Workplace By DirectWorkplace by Direct is part of the Direct Companies family, a trusted business technology solutions provider serving small and mid-sized businesses. We deliver professional IT and OT consulting and management services, with a focus on reliability, innovation, and customer success.We foster a team-oriented, trust-driven workplace that values collaboration, excellence, and long-term relationships. Our mission is to create secure, scalable technology solutions that empower businesses and industrial operations alike.Why You’ll Love Working HereYou’ll have the opportunity to shape and expand our cybersecurity program into OT and critical infrastructure security, mentor team members, and drive innovation in both IT and industrial environments—supported by a collaborative and forward-thinking organization.Key ResponsibilitiesSecurity Operations & LeadershipLead daily cybersecurity operations across IT and OT/ICS environments, including monitoring, alert triage, and incident responseOversee security visibility into industrial networks, PLCs, HMIs, and SCADA systemsProvide team leadership, scheduling, and operational oversight to ensure full coverage and rapid responseAct as an escalation point for complex IT and OT security incidentsCoordinate people, tools, and technologies across hybrid IT/OT environmentsMonitor and report on SLAs, KPIs, and client security postureIncident Response & Threat ManagementLead incident response efforts across enterprise and industrial control system environmentsConduct root cause analysis for both IT breaches and OT disruptions (e.g., process anomalies, unauthorized control changes)Utilize threat intelligence, MITRE ATT&CK and MITRE ATT&CK for ICS, and adversary TTPsAnalyze logs, network traffic, and OT protocol data (Modbus, DNP3, OPC, etc.)Support detection and response for threats targeting critical infrastructure and production systemsSecurity Solutions & Client DeliverySupport multi-tenant MSSP environments, including segmented OT networks and Purdue Model architecturesAdvise clients on securing industrial environments, IIoT devices, and edge systemsAssist in onboarding clients with OT asset discovery, network mapping, and risk assessmentsCollaborate across engineering, sales, and customer success to deliver integrated IT/OT security solutionsCommunicate with stakeholders during incidents, including executive-level briefingsProcess Improvement & ComplianceDevelop and maintain playbooks for both IT and OT incident response scenariosEnsure alignment with frameworks such as NIST, CIS Controls, ISO 27001, and NIST 800-82 (ICS security)Improve processes around vulnerability management, including patching constraints in OT environmentsSupport compliance initiatives (HIPAA, PCI DSS, SOC 2) and critical infrastructure standards where applicableIdentify automation opportunities including SOAR for hybrid IT/OT workflowsMentorship & Team DevelopmentLead and mentor analysts across IT and OT security disciplinesBuild internal capability in industrial cybersecurity awareness and responseProvide coaching, training, and career developmentFoster a collaborative, high-performance cultureSupport hiring and onboarding of cybersecurity talentQualifications5–8+ years of experience in cybersecurity or security operations1–3+ years in a leadership or senior roleStrong background in SOC operations, incident response, and monitoringExperience with OT/ICS security, industrial networks, or critical infrastructure environments (preferred)Hands-on experience with SIEM platforms and detection methodologiesStrong Understanding OfNetwork security (firewalls, IDS/IPS, segmentation strategies)Endpoint security (EDR/XDR)Cloud platforms (AWS, Azure, GCP)OT networking concepts (Purdue Model, air-gapped systems, industrial protocols)Vulnerability management and security frameworksFamiliarity with threat intelligence and attacker methodologiesStrong communication, leadership, and decision-making skillsAbility to operate in fast-paced, multi-tenant IT/OT environmentsBachelor’s degree preferred (or equivalent experience)Preferred Certifications (Optional)CISSP, CISM, or GSLCGIAC certifications (GCIH, GCED, GCIA, GRID, GICSP)Security+, CySA+, or equivalentOur BenefitsCompetitive compensationHealth, dental, and vision insurance401(k) with company matchPaid time off (PTO) and holidaysLife and disability insuranceIf you’re a proactive leader passionate about cybersecurity across both enterprise IT and industrial/OT environments, we’d love to hear from you. Join us and help secure the future of modern workplaces and connected operations.#hc228535