"Alerted.org

Department:** **Information Security / Operational Technology (OT) Cybersecurity

Job Summary:

The Cybersecurity Implementation and Compliance Specialist is responsible for the execution, training, documentation, and continuous improvement of cybersecurity procedures within industrial control environments. This role ensures compliance with cybersecurity requirements through procedure implementation, asset inventory management, gap analysis, metrics reporting, remote access governance, and incident response coordination. Additionally, the position supports the deployment and maintenance of new cybersecurity and IIoT technologies.

Key Responsibilities:

Cybersecurity Procedure Implementation & Compliance

+ Implement and execute ICS cybersecurity procedures across control environments.

+ Train control staff on new and updated cybersecurity procedures.

+ Ensure compliance with documentation, retention, and audit readiness.

+ Monitor ongoing adherence to procedure requirements and provide corrective support.

Training Management

+ Deliver and document all training sessions (Title, Date/Time, Instructor, Attendance).

+ Maintain comprehensive records of training including class rosters and locations.

+ Act as SME for global cybersecurity training courses; ensure completion of SABA training modules.

Asset Inventory Management

+ Collect, maintain, and validate inventory of ICS assets including updates and decommissioning.

+ Assist with testing and deployment of automated asset inventory tools.

+ Document inventory collection methods and tools.

+ Manage and support access to inventory database solutions.

Gap Analysis and Compliance Reporting

+ Conduct cybersecurity compliance assessments and identify gaps.

+ Report and document gaps, exceptions, and remediation actions to relevant stakeholders.

+ Coordinate with internal controls and compliance teams for resolution.

Metrics and Reporting

+ Prepare and submit cybersecurity metrics reports (weekly, bi-weekly, quarterly).

+ Track compliance progress and risk exposure via defined metrics.

Remote Access and Security Management

+ Install and manage remote access endpoints for various use cases.

+ Conduct risk assessments and ensure compliance with remote access policies.

+ Provide support for remote access sessions and user management.

Incident Response and Patch Management

+ Coordinate with Emergency Response Teams (ERT) and Disaster Recovery stakeholders.

+ Support patch deployment and identify technology upgrades.

+ Participate in network traffic monitoring and review anomalies.

Access Control and Anti-Malware Management

+ Implement and manage user access controls and password solutions.

+ Support ACL changes, documentation, and audit processes.

+ Deploy and monitor anti-malware solutions and ensure endpoint protection.

Support for Cybersecurity Pilots and IIoT Projects

+ Facilitate in-plant pilot implementations for new cybersecurity/IIoT tools.

+ Support tools such as network monitoring, secure remote access, anti-malware, logging, backups, and automated inventory.

+ Assist with rollout and support for Octoplant and other new tools.

Qualifications:

+ Bachelor's degree in Cybersecurity, Information Technology, Engineering, or related field.

+ 3+ years of experience in industrial control systems cybersecurity or IT/OT environments.

+ Experience with cybersecurity procedures implementation, training, and audits.

+ Strong understanding of asset inventory tools, remote access technologies, and compliance frameworks.

+ Familiarity with cybersecurity metrics, gap analysis, and incident response processes.

+ Experience with antivirus and anti-malware deployment and monitoring tools.

Preferred Skills:

+ Certifications: CISSP, CISM, GICSP, or similar.

+ Experience with industrial cybersecurity standards (NIST, IEC 62443).

+ Knowledge of Octoplant, SABA training platform, and IIoT systems.

ManpowerGroup is committed to providing equal employment opportunities in a professional, high quality work environment. It is the policy of ManpowerGroup and all of its subsidiaries to recruit, train, promote, transfer, pay and take all employment actions without regard to an employee's race, color, national origin, ancestry, sex, sexual orientation, gender identity, genetic information, religion, age, disability, protected veteran status, or any other basis protected by applicable law.