Director, IT & OT Security Operations and Governance

Location: Carrollton, GA (HQ) or Atlanta Battery Office

The Director, IT/OT Security Operations & Governance leads day-to-day cybersecurity operations across enterprise IT and manufacturing operational technology (OT) environments while establishing governance, risk oversight, and measurable security performance. The role partners closely with IT, plant engineering/operations, and business leaders to reduce cyber risk, strengthen resilience, and ensure security controls, policies, and processes are consistently implemented without compromising safety, quality, or uptime. The position owns the managed detection and response (MDR) service and internal processes that support 24x7 monitoring and response and supports internal and external audit activities through evidence collection, control testing coordination, and remediation tracking.

• Own and mature security monitoring, detection, response, and recovery processes across IT and OT; manage the MDR provider to ensure 24x7 coverage, defined playbooks/runbooks, clear escalation paths, and measurable outcomes aligned to risk and manufacturing operations.
• Lead and coordinate major incident response, including triage, containment, eradication, forensics engagement, executive communications, and post-incident lessons learned.
• Partner with plant/operations engineering to implement practical OT security controls (asset visibility, segmentation, remote access, patching strategy, and compensating controls) aligned to safety, uptime, and operational constraints.
• Govern vulnerability scanning, prioritization, and remediation for IT and OT; manage exception process, risk acceptance, and time-bound remediation plans.
• Establish and maintain security policies, standards, procedures, and control objectives; drive alignment to recognized frameworks (e.g., NIST CSF/800-53, ISO 27001) and OT guidance (e.g., IEC 62443) as applicable.
• Define, produce, and continuously improve operational and risk metrics (KPIs/KRIs) such as MTTD/MTTR, alert fidelity, patch/vulnerability SLAs, phishing performance, endpoint coverage, OT asset coverage, and control effectiveness; deliver dashboards and executive-ready reporting.
• Support internal audit and external assessments by coordinating evidence collection, facilitating walkthroughs, assisting with control testing, and tracking remediation plans to closure; maintain an audit-ready evidence repository for key controls.
• Maintain the security operations tool stack; drive use-case development, tuning, automation/orchestration, integrations, and lifecycle management to improve efficiency and outcomes.
• Collaborate on awareness and behavior-change initiatives; ensure operational teams understand procedures for reporting, response, and secure-by-design practices.
• Facilitate security risk decisions for operational constraints, maintain risk register inputs for SecOps/GRC domains, and ensure compensating controls and timelines are documented.
• * Performs other duties as assigned
• Complies with all policies and standards
• Manages staff performance and development, coaching team members to achieve their full potential incontributing to the department's goals.

Bachelor's Degree

8-11 Years of Experience

Field(s) of Expertise:

Progressive experience in cybersecurity, including IT security operations and/or OT/ICS security

Master's degree

12-14 Years of Experience

Licenses and Certifications:

CISSP, CISM, CRISC, or equivalent. OT/ICS security certifications (e.g., GICSP, IEC 62443)

Does this role manage Southwire team members: Yes

Number of Direct Reports: 5-10

Domestic - up to 25% of time

Moving - 5% of time

Standing - 5% of time

Sitting - 90% of time

Office

Plant/Warehouse Floor

Computer/Keyboard

Safety Glasses

Safety Shoes

Safety Vest