Cybersecurity Manager

ABOUT LOZIER

Headquartered in Omaha, Nebraska, with facilities across the U.S., Lozier Corporation is the leading manufacturer of products used by retailers in stores and warehouses, with a vision to be operationally excellent in support of retailâ??s present and future. Retailers have relied on our quality products and service for more than 65 years.

Benefits

• Company bonus potential.
• PTO (Paid Time Off) plus paid holidays.
• Competitive benefits package (Eligible for medical, dental, and vision benefits on the first day of employment).
• Onsite Health Clinic.
• 401(k) with employer match.
• Employee Assistance Program.
• Educational Assistance Program.
• Career Development Programs.
• Casual dress.
• Relocation benefits available, (as applicable).

POSITION SUMMARY:

The Cybersecurity Manager provides hands-on leadership in developing, implementing, and maintaining organizational cybersecurity programs for both information and operational technology. This role manages the daily activities of the cybersecurity team while performing advanced technical work to protect enterprise systems, data, and networks. The Cybersecurity Manager collaborates with leadership and key business stakeholders to assess risk, enhance the organizationâ??s security posture, and effectively respond to emerging threats. The role leads the development and ongoing maturation of company cybersecurity programs, including governance, risk management, security engineering, and operational security functions. This position also ensures consistent implementation of security policies, standards, and controls across the enterprise while mentoring the cybersecurity team and driving continuous improvement.

ESSENTIAL JOB FUNCTIONS

• Demonstrate leadership by championing Lozierâ??s Mission, Vision, and Values and living the Lozier Leadership Model.
• Lead daily activities of cybersecurity team, providing technical direction, assigning work, and ensuring effective execution of security operations and projects.
• Perform hands-on cybersecurity engineering work, including threat analysis, vulnerability remediation, incident response, and security architecture reviews.
• Maintain and enhance the organizationâ??s cybersecurity framework, including development or amendment of policies, standards, procedures, and guidelines.
• Monitor and analyze security alerts, events, and logs to identify potential threats, breaches, or unusual activity.
• Oversee incident response activities, conduct table top exercises, coordinate investigations, ensure root-cause analysis is completed, and report findings to IT leadership.
• Conduct regular assessments and simulations to identify vulnerabilities and test security controls, including penetration testing and adversarial emulation.
• Administer and optimize security tools, systems, and platforms, including SIEM, endpoint protection, cloud security tools, and identity management solutions.
• Collaborate cross functionally to strengthen security practices, embed controls in systems and processes, and remediate identified risks.
• Track and report key cybersecurity metrics, program progress, incident trends, and risk posture to leadership.
• Stay current with emerging threats, evolving technologies, and industry best practices to ensure the organization maintains a proactive security posture.
• Demonstrate regular attendance and timeliness in reporting to work, meetings, and completing assignments.
• Ability to work and interact well with others.

OTHER JOB FUNCTIONS

• Provide user awareness training and promote a strong cybersecurity culture across the organization.
• Support compliance initiatives and audit activities related to cybersecurity and data protection.
• Assist in developing cybersecurity budgets, forecasts, and strategic plans.
• Lead third-party cybersecurity assessments and manage relationships with MSSPs or security vendors.
• Support cybersecurity awareness and training program development.

JOB QUALIFICATIONS

Education: Bachelor degree in computer science, cybersecurity, information systems, information technology or a related field is preferred. Master degree in computer science, information systems, information technology or a related field is highly desired.

Experience: Minimum of 6 years of experience in cybersecurity and/or digital forensics, if degreed. Minimum of 10 years of experience with cybersecurity, information technology incidents, or digital forensics, if non-degreed. Previous experience with investigating security events in cloud environments, such as Microsoft Azure, Amazon AWS, and Google Cloud Platforms is preferred.

Required Skills:

• One or more industry-recognized certifications such as CISSP, CISM, CCSP, CRISC, CASP+, CISM, GCIH, Security+, or SSCP.
• Advanced understanding of cybersecurity principles, including threat detection, incident response, malware behavior, exploitation methods, and vulnerability management.
• Strong ability to analyze network traffic, logs, and security events to identify risks and suspicious behavior.
• Demonstrated hands-on expertise with security tools, platforms, and modern cloud environments.
• Excellent communication skills with the ability to explain technical concepts to a variety of audiences, including executive leadership.
• Experience building security programs and managing teams

Preferred Skills:

• Knowledge of common compliance frameworks such as ISO 27001/2, NIST 800-series, PCI, HITRUST, or CoBIT.
• Understanding of Operational Technology (OT) and Industrial Control System (ICS) security such as ISA-62443 and the Purdue Model
• Strong technical writing and presentation skills, including the ability to brief executive leadership.
• Experience managing security projects, tools, and implementations.
• Oracle and cloud security engineering experience.

SPECIAL DEMANDS

• Must maintain a valid driverâ??s license.
• Must be able to work effectively in both office and manufacturing environments.
• Must demonstrate adaptability and responsiveness to off-schedule requests or emergencies in support of business-critical functions.
• May require occasional travel to support projects or cross-site coordination at offsite plant locations.
• Occasional time spent working a flexible schedule.

The above job description is meant to describe the general nature and level of work being performed. It is not intended to be an exhaustive list of all responsibilities, duties and skills required for the position. Employees will be required to follow any other job-related instructions and to perform other job-related duties as assigned by their supervisor. Lozier reserves the right to modify, interpret, or apply this job description in any way desired and the essential job functions may be modified to reasonably accommodate qualified individuals with a disability. Requirements are representative of minimum levels of knowledge, skills and/or abilities. To perform this job successfully, the employee must possess the abilities or aptitudes to perform each duty proficiently. Successful completion of pre-hire drug screen and post offer background screen is required to obtain employment. Continued employment remains on an â??at-willâ? basis.