Cybersecurity and Compliance Manager - Remote

Overview

Cadrex is seeking a highly skilled and experienced Cybersecurity and Compliance Manager to join our team. As the Cybersecurity and Compliance Officer, you will be responsible for developing and implementing robust cybersecurity measures and ensuring IT related regulatory compliance. This role requires a strong understanding of cybersecurity best practices such as NIST publications, compliance frameworks such as CMMC, and risk management methodologies. The ideal candidate will possess excellent leadership and communication skills, with a proven ability to develop and maintain effective security policies and procedures.

In Short

• Develop and implement a comprehensive cybersecurity strategy to protect the organization's sensitive data, information systems, and networks
• Stay up to date with emerging cyber threats, vulnerabilities, and industry best practices to proactively identify and mitigate potential risks.
• Define and enforce security policies, standards, and procedures, ensuring compliance with applicable regulations and industry standards (e.g., GDPR, HIPAA, ISO 27001, NIST, CMMC)
• Conduct regular audits and assessments to evaluate the effectiveness of security controls, identify vulnerabilities, and recommend corrective actions
• Collaborate with cross-functional teams to design and implement security measures, including network security, access controls, encryption, data loss prevention, and incident response
• Lead the incident response process, including investigation, containment, mitigation, and recovery, in the event of a cybersecurity incident or breach
• Conduct regular security awareness and training programs to educate employees on cybersecurity best practices
• Establish and maintain relationships with external stakeholders for compliance and information sharing
• Monitor and analyze security logs, reports, and alerts to identify and respond to potential security incidents
• Collaborate with internal teams to develop and maintain business continuity and disaster recovery plans

Requirements

• Extensive experience in cybersecurity, information security, or a similar role, with a focus on compliance management
• Strong knowledge of cybersecurity frameworks (e.g., NIST Cybersecurity Framework, CIS Controls) and industry standards (e.g., ISO 27001, PCI DSS)
• Familiarity with applicable privacy and data protection regulations (e.g., GDPR, CCPA)
• Professional certifications such as CISSP, CISM, or CIPP are highly desirable
• Proven experience in developing and implementing security policies, procedures, and standards
• Deep understanding of network security, firewalls, and other security technologies
• Experience in conducting risk assessments, security audits, and compliance assessments
• Strong analytical and problem-solving skills
• Excellent communication skills
• Strong leadership and team management abilities

Benefits

• Health/dental/vision coverage
• Employer-paid and supplemental life insurance
• Short- and long-term disability insurance
• Generous paid time off and holiday pay
• Monthly remote work stipend for qualifying remote employees
• 401(k) investment plan with employer match
• Education support program
• Safety eyeglasses/shoe reimbursement
• Referral bonuses
• Bonus plan for all full-time employees