"Alerted.org

About Gleason

With more than 2,200 employees and 13 manufacturing facilities worldwide, Gleason Corporation is a leader in gear technology. Gleason's product and service offerings include gear and transmission design software, gear manufacturing machines and related accessories, gear metrology equipment and automation systems. Gleason products are used by customers in e-mobility, commercial vehicles, aerospace, agriculture, mining, sustainable energy, construction, power tools, marine and many other industries

Working for Gleason, you will be connected to work that matters, putting your expertise to its best use while developing skills for the future. The result is a career defined by you, supported by Gleason and built on tangible accomplishments. As we continue to grow and evolve, we are looking for the right people to join us on our mission. If you are interested in being part of our team, there are a few things you should know: We are energized by challenges and the effort needed to solve them. We like working with people who are positive, adaptable and growth-minded. We care how work gets accomplished and are deeply invested in the success of our customers and colleagues. If this sounds like you, we invite you to read on and learn more.

Why work at Gleason?

+ Excellent benefits package including a 6% Company 401(k) match

+ Flexible scheduling

+ Tuition Assistance Program

+ Employee Assistance Program

+ Formal and informal Development opportunities.

Position Overview

We are seeking an experienced Cybersecurity Analyst to protect our global manufacturing operations, intellectual property, and critical infrastructure. This role is essential in maintaining our security posture across multiple international locations while ensuring compliance with various standards such as NIST, TISAX and CMMC. The ideal candidate will have hands-on experience with enterprise security tools, a strong understanding of manufacturing environments, and the ability to translate complex security requirements into practical controls.

Key Responsibilities

Security Infrastructure & Operations

+ Endpoint Detection & Response (EDR): Manage and optimize CrowdStrike Falcon platform across 3,000+ endpoints globally, including configuration, policy management, threat hunting, incident response, and integration with SIEM

+ Next-Generation SIEM Management: Administer and tune next-gen Crowdstrike SIEM platform, develop correlation rules, create custom dashboards, investigate security events, and coordinate incident response workflows

+ Firewall Administration: Configure, manage, and optimize enterprise firewalls (Palo Alto, SonicWall, Sophos), including rule development, change management, VPN connections, segmentation strategies, and regular policy reviews

+ Identity & Access Management: Administer Azure Active Directory (Entra ID) including user provisioning, conditional access policies, group policies, privileged identity management (PIM), role-based access control (RBAC), and hybrid identity synchronization

+ Multi-Factor Authentication (MFA): Deploy, manage, and enforce MFA solutions across all user accounts and privileged access scenarios, ensuring compliance with CMMC Level 2 requirements for authentication controls

+ VPN Infrastructure: Manage site-to-site and remote access VPN solutions, ensuring secure connectivity for remote manufacturing sites and mobile workforce

+ Microsoft 365 Security: Configure and manage M365 security features including Defender for Office 365, Intune and Purview, Data Loss Prevention (DLP), sensitivity labels, information protection policies, secure score optimization, and compliance center management

Compliance & Framework Implementation

NIST Framework Compliance:

+ Implement controls based on NIST SP 800-171 (Protecting CUI in Nonfederal Systems), NIST SP 800-53 (Security and Privacy Controls), and NIST Cybersecurity Framework

+ What this means for the role: You will map existing security controls to NIST control families (Access Control, Incident Response, System and Communications Protection, etc.), conduct annual assessments of control effectiveness, implement compensating controls where needed, and maintain System Security Plans (SSPs) documenting how each NIST control is satisfied in our manufacturing environment. This includes technical implementations like encryption for data at rest and in transit (SC-13, SC-28), audit logging (AU family), and system hardening (CM family)

+ Ensure industrial control systems (ICS) and operational technology (OT) environments align with NIST guidelines while maintaining production uptime

+ Lead quarterly self-assessments and coordinate with third-party assessors for independent validation

+ Establish and maintain Plan of Actions & Milestones (POA&M) for any identified deficiencies

Security Monitoring & Incident Response

+ Monitor security alerts from CrowdStrike, NG SIEM, firewalls, Azure AD, and M365 security tools

+ Lead or support security incident investigations, root cause analysis, and remediation efforts

+ Develop and maintain incident response playbooks specific to manufacturing environments

+ Conduct threat hunting activities to proactively identify indicators of compromise

+ Coordinate with plant IT teams during security events to minimize production impact

+ Provide guidance and training for plant IT teams on security monitoring and incident response best practices

Vulnerability & Risk Management

+ Perform regular vulnerability assessments and coordinate patch management activities

+ Conduct security configuration reviews of critical systems and network devices

+ Assess cybersecurity risks specific to manufacturing operations, including OT/ICS environments

+ Support penetration testing activities and remediation of identified vulnerabilities

+ Maintain asset inventory and classification in accordance with CMMC and NIST requirements

Security Awareness & Training

+ Develop and deliver cybersecurity awareness training for employees world wide

+ Create role-based training for privileged users handling CUI and sensitive manufacturing data

+ Conduct phishing simulation campaigns and analyze results for improvement opportunities

+ Serve as security liaison for all operations and sites

Documentation & Reporting

+ Maintain comprehensive security documentation including policies, procedures, network diagrams, and system configurations

+ Generate metrics and reports on security posture for executive leadership

+ Document security incidents, lessons learned, and continuous improvement initiatives

+ Create and maintain security runbooks and standard operating procedures

Required Qualifications

Education & Certifications

+ Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field

+ Required Certifications (one or more):

+ Security+, CISSP, CISM, or GIAC Security Essentials (GSEC)

+ CrowdStrike Certified Falcon Administrator (CCFA) preferred

+ Highly Desired:

+ Certified Information Systems Auditor (CISA)

+ CMMC Certified Professional (CCP) or CMMC Certified Assessor (CCA)

+ Microsoft Certified: Security Operations Analyst Associate or Azure Security Engineer Associate

+ GIAC Certified Incident Handler (GCIH) or GIAC Continuous Monitoring Certification (GMON)

Technical Experience

+ 5+ years of hands-on cybersecurity experience in enterprise environments

+ 2+ years implementing or managing CMMC and/or NIST 800-171 compliance programs

+ Proven experience with:

+ CrowdStrike EDR platform (administration, threat hunting, incident response)

+ Next-generation SIEM platforms (Splunk, Azure Sentinel, LogRhythm, QRadar, or similar)

+ Enterprise firewall platforms (Palo Alto, SonicWall, Fortinet, Cisco ASA/Firepower)

+ Azure Active Directory administration including conditional access and MFA

+ VPN technologies (site-to-site, remote access, IPsec, SSL VPN)

+ Microsoft 365 security and compliance features

+ Experience implementing and administering M365 security and compliance tools including Microsoft Purview for data loss prevention and information protection, and Intune for endpoint and mobile device management

+ Experience with manufacturing or critical infrastructure environments preferred

+ Understanding of OT/ICS security concepts and industrial network segmentation

Technical Skills

+ Strong knowledge of network protocols, architecture, and security controls

+ Experience with scripting/automation (PowerShell, Python) for security tasks

+ Proficiency with security frameworks and standards (CMMC, NIST, ISO 27001, CIS Controls)

+ Understanding of encryption technologies, PKI, and certificate management

+ Familiarity with cloud security principles (Azure, AWS) and hybrid environments

+ Knowledge of secure software development practices and vulnerability management

Professional Skills

+ Excellent analytical and problem-solving abilities

+ Strong written and verbal communication skills for both technical and non-technical audiences

+ Ability to work independently and manage multiple priorities in a fast-paced environment

+ Experience working across time zones with global teams

+ Strong documentation skills and attention to detail

+ Ability to balance security requirements with business operational needs

Preferred Qualifications

+ Knowledge of ICS/SCADA security standards (IEC 62443, NIST 800-82)

+ Experience with zero trust architecture implementation

+ Familiarity with Purdue Model for industrial network segmentation

+ Previous experience in manufacturing, aerospace, or defense industries

+ Understanding of data classification and information protection programs

+ Experience with security orchestration, automation, and response (SOAR) platforms

Physical Requirements & Work Environment

+ Ability to sit for extended periods while monitoring security systems

+ May require availability outside standard business hours for security incidents or maintenance windows

+ Ability to travel domestically and internationally (up to 15%) for site assessments

Security Clearance

+ U.S. Citizenship may be required for access to certain systems containing CUI

The salary range in this posting depends on qualifications and experience. Actual compensation may vary, and this job posting is not necessarily reflective of actual compensation that may be earned, nor a promise of any specific pay for any specific employee, which is always dependent on relevant experience, qualifications/education, and other factors including work schedule, shift premiums, and overtime.

Gleason is an Equal Opportunity Employer and considers applicants for all positions without regard to age, disability, genetic information and/or predisposing genetic characteristics, marital status, national origin, race/color, religion, sex/gender, sexual orientation, military or veteran status, victim of domestic violence status, arrest or conviction record, or any other characteristic protected by applicable laws.

OFFICE ENVIRONMENT

PHYSICAL DEMANDS

The physical demands described here are representative of those that would need to be met by an employee to successfully perform the essential functions of this job in an office environment. While performing the duties of this job, the employee is occasionally required to stand; walk; sit; use hands to finger, handle, or feel; and talk or hear. The employee may occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job may include close vision, distance vision, color vision, peripheral vision, depth perception, and ability to adjust focus.

WORK ENVIRONMENT

The work environment characteristics described here are representative of those an employee may encounter while performing the essential functions of this job in an office environment. While performing the duties of this job, the employee is occasionally exposed to moving mechanical parts. The noise level in the work environment is usually moderate.

REASONABLE ACCOMMODATIONS

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed above are representative of the knowledge, skill, experience and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

This job description in no way states or implies that these are the only duties to be performed. Employees are required to follow any other instructions and to perform any other duties requested by their manager or supervisor.

DISCLAIMER

The duties listed in this job description are intended only as illustrations of the various types of work that may be performed and is not an all inclusive summary of job duties and responsibilities. The omission of specific statements or duties and responsibilities does not exclude them from the position if the work is similar, related or a logical assignment to the position. This job description does not constitute an employment agreement between the employer and employee and is subject to change by the Company as the needs of the Company and requirements of the job change.

Job Details

Job Family GWR & GSAC

Job Function Indirect

Pay Type Salary

Hiring Min Rate 82,000 USD

Hiring Max Rate 130,000 USD