Take your career to the next level and join our exciting team. Franz offers employees excellent benefits including:
- Competitive Wages:
- $100,000.00 - $105,000.00 annual salary
- Comprehensive Healthcare
- 100% employer paid healthcare premiums for employee and all eligible dependents
- Generous Holiday and Vacation
- 401K and Profit Sharing funds
- 50% Discount Franz Products
- Growth and Development Opportunities
Primary Duties and ResponsibilitiesSecurity Operations- Monitor security events across cloud, network, endpoint, and application environment.
- Investigate suspicious activity and security alerts.
- Coordinate incident response activities and remediation efforts.
- Maintain cybersecurity monitoring tools and dashboards.
- Escalate significant security events to IT leadership and executive management.
Vulnerability and Risk Management- Conduct vulnerability assessments and coordinate remediation activities.
- Monitor external threats and identify potential impacts to the organization.
- Track and report security risks and mitigation plans.
- Evaluate security implications of new technologies, applications, and projects.
- Assist with cybersecurity risk assessments across business and IT functions.
Identity and Access Security- Review user access permissions and privileged accounts.
- Support Identity and Access Management (IAM) controls and governance.
- Participate in periodic access reviews and security audits.
- Recommend improvements to authentication, authorization, and account management processes.
Security Awareness and Training- Develop and deliver cybersecurity awareness programs.
- Conduct phishing simulations and employee security training.
- Promote security best practices throughout the organization.
- Assist in creating cybersecurity policies, standards, and procedures.
Compliance and Governance- Support regulatory, insurance, and audit requirements.
- Assist with cybersecurity documentation and evidence collection.
- Participate in policy development and enforcement.
- Support disaster recovery and business continuity planning initiatives.
Infrastructure and Application Security- Partner with Infrastructure Services to secure networks, servers, cloud services, and endpoints.
- Collaborate with Business Systems teams to ensure ERP, EDI, integrations, and applications follow security best practices.
- Review security configurations and recommend improvements.
- Assist in securing Microsoft 365, Azure, and related cloud technologies.
Vendor and Third-Party Security- Evaluate vendor security controls and risks.
- Participate in third-party risk assessments.
- Support contract reviews involving cybersecurity requirements.
Reporting and Metrics- Produce monthly cybersecurity scorecards and risk reports.
- Track security incidents, vulnerabilities, remediation efforts, and compliance status.
- Present cybersecurity findings and recommendations to IT leadership.
Preferred Education/Experience - Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field preferred.
- 3-5 years of experience in cybersecurity, information security, infrastructure administration, or related IT disciplines.
- Experience supporting Microsoft 365, Azure, Active Directory, and cloud security platforms.
- Experience with vulnerability management and endpoint protection solutions.
- Experience in manufacturing, distribution, logistics, or enterprise business environments preferred.
- Preferred Certifications
- Security+
- CySA+
- CISSP
- GIAC Certifications
- Microsoft Security Certifications
- Certified Ethical Hacker (CEH)
- Certified Information Security Manager (CISM
Critical Skills and Expertise- Strong understanding of cybersecurity principles and frameworks.
- Knowledge of network security, endpoint security, identity management, and cloud security.
- Experience with incident response and threat analysis.
- Understanding of ransomware, phishing, malware, and emerging cyber threats.
- Excellent analytical and problem-solving skills.
- Strong written and verbal communication abilities.
- Ability to explain technical security concepts to non-technical audiences.
- High level of integrity and confidentiality.
- Ability to prioritize multiple security initiatives simultaneously.
- Read and interpret documents such as safety rules, operating and maintenance instructions and procedure manuals.
- Write routine reports and correspondence.
- Speak effectively before groups of customers or employees of organization.
- Ability to remain effective and productive with limited instructions in written, oral, or diagram form.
- Ability to effectively troubleshoot under stressful conditions
- Long periods sitting, typing, and reading from a computer screen may be required
- Uphold and integrate Company's Core Values
- Other duties as assigned.