Manager, Digital Security

JOB TITLE: Manager, Digital Security

Location: North Fort Myers, FL

Work Hours: 8:00 to 5:00 pm; Monday through Friday

Our benefits include:

• Company-wide annual incentive plan
• Medical, vision and dental insurance
• 401(k) plan with a generous 6% company match
• Company funded Pension Plan
• On-site wellness/medical facility
• Company paid Short & Long-Term Disability insurance
• Health Savings Account with an employer contribution
• Flexible Spending Accounts
• Paid time off and paid holidays
• Wellness program with financial rewards
• Tuition reimbursement
• Group life insurance
• Critical Illness and Accident Insurance

LCEC provides reliable, cost-competitive electricity to more than 250,000 members throughout a five-county service territory located in Southwest Florida. We employ approximately 460 skilled employees and are one of more than 900 electric distribution cooperatives located throughout the United States. LCEC has been recognized locally and statewide as an industry leader and continually receives acknowledgment for the work that our employees do in the community along with other civic, environmental and professional honors.

Position Summary: The Manager, Digital Security is responsible for defining and leading the organization's digital security strategies to ensure protection of critical systems, networks, and data assets. This leadership role oversees cybersecurity operations, IT risk management, IT compliance efforts, and IT incident response planning while driving innovation in digital security technologies. Acting as a bridge between technical security teams and executive leadership, the Manager ensures security policies align with business goals and regulatory requirements. They lead and mentor digital security professionals in the design, implementation, and management of robust, multi-layered, defense-in-depth, zero-trust, security architecture.

Position Responsibilities

• Develop, execute, and continuously refine a comprehensive multi-year cybersecurity strategy to address emerging threats.
• Serve as a key advisor to executive leadership, translating cybersecurity risks into business impacts and implications.
• Align security initiatives with enterprise IT strategy, ensuring long-term sustainability and growth.
• Establish and maintain cybersecurity policies, governance frameworks, and compliance programs.
• Define security metrics and reporting standards to measure risk exposure and program effectiveness.
• Ensure alignment between Enterprise Digital Security and Operational Digital Security to ensure critical infrastructure is secure and protected.
• Establish and foster a healthy cybersecurity culture across all areas of the organization.
• Establish, monitor, and continuously improve user-based cybersecurity training programs.
• Serve as the IT Incident Response Lead, as well as leader of the Computer Emergency Response Team (CERT) during cybersecurity incident response situations.
• Oversee enterprise security architecture, ensuring secure design and implementation of applications, infrastructure, and cloud environments.)
• Direct penetration testing, threat modeling, and security audits to identify vulnerabilities and proactively mitigate risks.
• Lead the evaluation and adoption of new security technologies, ensuring alignment with business objectives.
• Supervise incident detection and response protocols, minimizing impact and ensuring rapid remediation.
• In collaboration with the Manager, Infrastructure. Operations & Support, develop and ensure execution of a structured and proactive systems and network patch management program.
• Regulatory Compliance & Industry Standards:
  
  
  
  • Ensure alignment with security frameworks and regulations such as NIST, ISO 27001, CIS, NACHA, PCI DSS, HIPAA, and FIPA.
  • Guide internal security assessments and partner with Auditors to ensure for regulatory and legal compliance.
  • Oversee privacy and data protection initiatives, ensuring secure handling of sensitive information.
  • Ensure compliance with Critical Infrastructure Protection (CIP) requirements as determined appropriate by the company.
  
  
  
  
• Manage a team of cybersecurity professionals, providing mentorship and development opportunities.
• Work closely with IT, legal, and risk management teams to foster a security-conscious organizational culture.
• Engage with vendors and third-party providers to evaluate, implement, and manage security technologies.
• Represent the organization in industry conferences, regulatory discussions, and professional associations.
• Maintain effective working relationships with employees and customers at all levels within LCEC. Ensure smooth operations, productive communications, and effective understanding during all interpersonal contacts. Provide current and accurate information to all requesters, courteously and in a timely manner.
• Provide support to LCEC's emergency recovery efforts, e.g., hurricane recovery. This requires extended working hours (>12 hours per day) for continuous days (multiple weeks), as needed. Restoration duties may not be aligned with regular work duties.

Education

• Bachelor's Degree in Cybersecurity, Computer Science, Information Security, or related field. (Required)
• Master's Degree in Cybersecurity, Computer Science, Information Security, or related field. (Preferred)

Work Experience

• 7+ years of experience in cybersecurity leadership roles, preferably within a large-scale, complex enterprise environment. (Required)
• 5+ years of experience in the energy transmission or delivery space, with emphases on electric utilities or cooperatives. (Required)
• 5+ years of experience administering cloud-bases Microsoft platforms, such as Microsoft 365, SharePoint, OneDrive, Purview, Sentinel, etc. (Preferred)

Knowledge, Skills, and Abilities

• Extensive knowledge of security and control frameworks, threat intelligence, incident response, and digital risk management. (Required)
• Strong understanding of secure cloud architectures, DevSecOps, Identity & Access Management (IAM), and cryptography. (Required)
• Excellent leadership, problem-solving, and interpersonal communication skills. (Required)

Certifications

• Industry security certifications such as CISSP, CISM, CCISO, or similar. (Required)

Physical Demands and Working Environment: The physical demands and working environment characteristics described here must be met by an employee to successfully perform the essential functions of the job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Physical Demands: Standing Occasionally,
  Walking Occasionally,
  Sitting Frequently,
  Lifting Rarely,
  Carrying Rarely,
  Pushing Rarely,
  Pulling Rarely,
  Climbing Rarely,
  Balancing Rarely,
  Stooping Rarely,
  Kneeling Rarely,
  Crouching Rarely,
  Crawling Rarely,
  Reaching Occasionally,
  Handling Occasionally,
  Grasping Occasionally,
  Feeling Occasionally,
  Talking Constantly,
  Hearing Constantly,
  Repetitive Motions Frequently,
  Eye/Hand/Foot Coordination Frequently.

• Working Environment: Constantly Air-conditioned office environment, Rarely Extreme cold, Rarely Extreme heat, Rarely Humidity, Rarely Wet, Occasionally Noise, Rarely Hazards, Rarely Temperature Change, Rarely Atmospheric Conditions, Rarely Vibration.

STORM DUTY REQUIREMENTS.... Responding to storms may be considered a condition of employment: LCEC provides critical services to our community during an emergency. Employees may be required to participate in the response/recovery activities related to emergencies/disasters to maintain service to our LCEC members. Employees are required to work in their normal job duties or other assigned activities. Proper compensation will be made in accordance with the company's guidelines and procedures.

Please note that at the time a candidate is made a job offer, the candidate will be subject to a background check and a drug screening.