Cyber Security Manager

Cyber Security Manager Direct Companies Sioux Falls, SD Posted/Updated:

Today Job Description Join Our Team as a Cyber Security Manager! Workplace by Direct is seeking a driven and experienced Cyber Security Manager to join our team in Sioux Falls, SD. In this role, you'll lead cybersecurity operations across both traditional IT and Operational Technology (OT) environments, including industrial control systems (ICS), SCADA networks, and connected infrastructure. You'll oversee day-to-day security operations within our Managed Services and Managed Security Services environment, ensuring high-quality security outcomes for both internal systems and external clients. This role blends hands-on technical expertise with leadership, client engagement, and strategic direction to ensure environments remain secure, compliant, and resilient across both IT and OT domains. About Workplace by Direct Workplace by Direct is part of the Direct Companies family, a trusted business technology solutions provider serving small and mid-sized businesses. We deliver professional IT and OT consulting and management services, with a focus on reliability, innovation, and customer success. We foster a team-oriented, trust-driven workplace that values collaboration, excellence, and long-term relationships. Our mission is to create secure, scalable technology solutions that empower businesses and industrial operations alike. Why You'll Love Working Here You'll have the opportunity to shape and expand our cybersecurity program into OT and critical infrastructure security, mentor team members, and drive innovation in both IT and industrial environments—supported by a collaborative and forward-thinking organization. Key Responsibilities Security Operations & Leadership Lead daily cybersecurity operations across IT and OT/ICS environments, including monitoring, alert triage, and incident response Oversee security visibility into industrial networks, PLCs, HMIs, and SCADA systems Provide team leadership, scheduling, and operational oversight to ensure full coverage and rapid response Act as an escalation point for complex IT and OT security incidents Coordinate people, tools, and technologies across hybrid IT/OT environments Monitor and report on SLAs, KPIs, and client security posture Incident Response & Threat Management Lead incident response efforts across enterprise and industrial control system environments Conduct root cause analysis for both IT breaches and OT disruptions (e.g., process anomalies, unauthorized control changes) Utilize threat intelligence, MITRE ATT&CK and

MITRE ATT&CK

for ICS, and adversary TTPs Analyze logs, network traffic, and OT protocol data (Modbus, DNP3, OPC, etc.) Support detection and response for threats targeting critical infrastructure and production systems Security Solutions & Client Delivery Support multi-tenant MSSP environments, including segmented OT networks and Purdue Model architectures Advise clients on securing industrial environments, IIoT devices, and edge systems Assist in onboarding clients with OT asset discovery, network mapping, and risk assessments Collaborate across engineering, sales, and customer success to deliver integrated IT/OT security solutions Communicate with stakeholders during incidents, including executive-level briefings Process Improvement & Compliance Develop and maintain playbooks for both IT and OT incident response scenarios Ensure alignment with frameworks such as

NIST, CIS

Controls, ISO 27001, and

NIST 800-82

(ICS security) Improve processes around vulnerability management, including patching constraints in OT environments Support compliance initiatives (HIPAA, PCI

DSS, SOC 2

) and critical infrastructure standards where applicable Identify automation opportunities including SOAR for hybrid IT/OT workflows Mentorship & Team Development Lead and mentor analysts across IT and OT security disciplines Build internal capability in industrial cybersecurity awareness and response Provide coaching, training, and career development Foster a collaborative, high-performance culture Support hiring and onboarding of cybersecurity talent Qualifications 5-8+ years of experience in cybersecurity or security operations 1-3+ years in a leadership or senior role Strong background in SOC operations, incident response, and monitoring Experience with OT/ICS security, industrial networks, or critical infrastructure environments (preferred) Hands-on experience with SIEM platforms and detection methodologies Strong understanding of: Network security (firewalls, IDS/IPS, segmentation strategies) Endpoint security (EDR/XDR) Cloud platforms (AWS, Azure, GCP) OT networking concepts (Purdue Model, air-gapped systems, industrial protocols) Vulnerability management and security frameworks Familiarity with threat intelligence and attacker methodologies Strong communication, leadership, and decision-making skills Ability to operate in fast-paced, multi-tenant IT/OT environments Bachelor's degree preferred (or equivalent experience) Preferred Certifications (Optional) CISSP, CISM, or

GSLC GIAC

certifications (GCIH, GCED, GCIA, GRID, GICSP) Security+, CySA+, or equivalent Our Benefits Competitive compensation Health, dental, and vision insurance 401(k) with company match Paid time off (PTO) and holidays Life and disability insurance If you're a proactive leader passionate about cybersecurity across both enterprise IT and industrial/OT environments, we'd love to hear from you. Join us and help secure the future of modern workplaces and connected operations.