Manager, Cyber Security
mSupply · United States · 2 mo ago
RemoteRemoteFinance$135k–$155k/yrFull-time
About the role
mSupply is North America’s leading distributor of OEM repair parts and equipment, serving professionals in the appliance, HVAC, plumbing, commercial kitchen, and pool/spa industries. Headquartered in St. Louis, MO, mSupply is a multi-billion-dollar enterprise offering an extensive product range, industry expertise, and seamless service. With more than 2,000 associates across the U.S. and Canada, mSupply’s family of brands delivers with speed, reliability, and precision through its branches, distribution centers, and extensive fleet of delivery vehicles. Shipped orders reach 93% of U.S. customers via next-day ground delivery and 100% within two days.
Job Duties & Responsibilities
- Lead daily alert triage, threat monitoring, and incident response across endpoint, server, network, cloud, and branch environments spanning corporate, warehouse, distribution, and field locations
- Manage EDR/MDR and SIEM operations across a large distributed enterprise; serve as the primary operational contact for MSSPs and ensure coverage for branch offices, core infrastructure, and critical business systems
- Own the incident response process — contain, investigate, remediate, and document security events; coordinate cross-functional response with infrastructure, network, service desk, ERP, and application teams, and conduct post-incident reviews with clear remediation plans
- Oversee security monitoring and response for identity, remote access, privileged access, and email security platforms; coordinate with the Security Administrator and service desk teams on escalations, recurring issues, and operational support processes
- Direct and develop two Security Analysts — set priorities, manage workload, conduct performance reviews, and serve as the escalation point for investigations, operational decisions, and security engineering support
- Execute and maintain PCI DSS controls within the defined scope, including environments supporting payment processing, branch operations, and customer-facing systems; coordinate evidence gathering and support annual assessment activities
- Support ISO 27001 control execution, documentation, and operational readiness across a complex enterprise environment with multiple business systems, infrastructure platforms, and support teams
- Conduct and oversee vulnerability scanning across servers, endpoints, network devices, externally exposed assets, and critical internal platforms; drive remediation to closure in coordination with infrastructure, network, desktop, ERP, and application owners
- Manage logistics, remediation tracking, and validation activities for external penetration tests, internal security assessments, and targeted reviews of critical applications, remote access paths, and segmented networks
- Administer and optimize core security tools including EDR, SIEM, vulnerability scanning, email security, and access control solutions within the enterprise architecture defined by the VP
- Partner with infrastructure and network teams on firewall rule reviews, network segmentation, secure configuration baselines, site connectivity protections, and hardening of critical infrastructure supporting branches, warehouses, and shared services
- Participate in security reviews for new technology initiatives, ERP changes, infrastructure upgrades, software development efforts, vendor onboarding, and significant system integrations; ensure security requirements are identified early and escalated when needed
- Work with application development and ERP teams to improve secure development, vulnerability remediation, access controls, logging, and change management practices for internally managed and third-party platforms
- Prepare security metrics, operational status reports, incident summaries, and risk trend reporting for the VP and broader IT leadership, with reporting that reflects operational realities across a large multi-site enterprise
- Maintain day-to-day working relationships with security vendors, MSSPs, and assessment providers; track service quality, issue resolution, and operational follow-through, escalating strategic or commercial concerns to the VP
- Support cyber insurance activities, security questionnaires, audits, and customer or partner assurance requests by coordinating documentation and responses across security, infrastructure, network, and business application teams
- Collaborate with IT, legal, HR, operations, and business leaders on day-to-day security matters, balancing security requirements with uptime, branch support, order processing, distribution operations, and customer service priorities
Qualifications
- Bachelor's degree in Cybersecurity, IT, or related field — or equivalent experience
- 5+ years in information security with at least 2 years in a lead or supervisory role
- Experience supporting cybersecurity operations in a large, distributed enterprise environment with multiple locations, diverse infrastructure, and broad IT stakeholder groups
- Hands-on experience with PCI DSS and ISO 27001 required
- Experience working across infrastructure, network, service desk, ERP, and application development teams to drive remediation and operational security improvements
Technical Skills
- EDR/MDR platforms — SentinelOne, CrowdStrike, Arctic Wolf, or similar
- SIEM, log management, and security monitoring in complex enterprise environments
- Email security platforms — Proofpoint, Mimecast, or similar
- Identity and access management — Okta required; strong experience with SSO, MFA, RBAC, privileged access, and remote access controls
- Vulnerability management tools — Tenable, Qualys, Rapid7, or similar
- Strong network security fundamentals including segmentation, firewalls, site connectivity, and branch office security
- Cloud and SaaS security basics — Microsoft 365, Azure, AWS, and common enterprise business applications
- Experience securing or supporting complex business application environments such as ERP platforms, internally developed applications, e-commerce systems, and third-party hosted solutions
What We Offer
- Medical, dental, vision, and prescription coverage effective immediately
- 401(k) plan with company contributions
- Life insurance and short- and long-term disability coverage
- HSA/FSA options and an Employee Assistance Program (EAP)
- Paid time off, including vacation, holidays, and personal days
- Weekly pay, employee discounts, and more
Pay Range
$135,000 - $155,000 per year