Jobs · himalayas
Lead Cybersecurity Engineer – Vulnerability and Compliance
Ironwood Digital · United States · Posted 22d ago
About the role
Lead cybersecurity compliance and vulnerability management for Ironwood Digital’s Operational Technology portfolio.
Job Description Summary As a Lead Cybersecurity Engineer , you will be responsible for the planning, execution, and departmental operations of product cybersecurity compliance and vulnerability management for Ironwood Digital ’s Operational Technology (OT) portfolio. This role requires a high degree of technical domain expertise to ensure products meet rigorous industry standards and regulations. You will have the autonomy to modify procedures and practices to ensure end results meet standards of quality, volume, and timeliness while maintaining a robust security posture across the product. Job Description Roles and Responsibilities: Compliance & Regulatory Leadership: Program Execution: Lead the development, implementation, and monitoring of cybersecurity policies and procedures aligned with industry standards such as IEC 62443, NERC CIP, ISO 27001, and NIST. Certification Ownership: Develop and execute comprehensive product and system certification plans, serving as the primary technical lead for IEC 62443 certification processes. Gap Assessment: Perform high-level product and system gap assessments, identifying misalignments between current state and regulatory requirements. Audit Management: Coordinate with external auditors and regulatory bodies, ensuring all documentation related to compliance and audit activities is accurate and up-to-date. Vulnerability Management & Technical Analysis: System Ownership: Take ownership of the vulnerability management program, conducting moderate-to-complex system-level analysis to identify and remediate security weaknesses. Advanced Problem Solving: Solve complex technical problems with limited guidance, leveraging cross-product linkages and expertise to develop peer-reviewed remediation solutions. Risk Mitigation: Conduct deep-dive risk assessments to identify potential threats. Develop and implement proactive strategies to mitigate risks and improve the overall security posture of the product portfolio. Execution & Continuous Improvement: Project Planning: Develop and execute program plans, including defining work tasks, project scope, and schedules. Design Reviews: Lead and support technical design reviews, ensuring cybersecurity "secure by design" principles are integrated from inception. Process Innovation: Identify potential improvements in tools and technologies. Proactively solicit feedback from horizontal teams to implement faster, simpler, and more impactful cybersecurity processes. Leadership & Soft Skills: Technical Mentoring: Actively participate in the technical mentoring program, supporting the growth of junior engineers and sharing domain expertise. Customer Centricity: Anticipate internal and external client needs, resolving complex security or compliance issues quickly and effectively. Collaboration: Foster a positive team spirit by sharing ideas and information, and acknowledging the success of others. Required Qualifications: Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. Minimum of 5 years’ experience in cybersecurity compliance, vulnerability management, or a related technical field. Minimum of 3 years’ experience with OT-specific frameworks (e.g., IEC 62443, NERC CIP). Desired Qualifications: Battery Energy Storage design or operations experience. Proficiency in vulnerability scanning tools (e.g., Nessus, Qualys) and risk assessment methodologies. Strong organizational skills with the ability to manage departmental operations and execution independently. CISSP, CISM, or equivalent professional cybersecurity certification. Additional Information Ironwood Digital offers a great work environment, professional development, challenging careers, and competitive compensation. Ironwood Digital is an Equal Opportunity Employer . Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. Ironwood Digital will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable). Relocation Assistance Provided: No - This is a remote positionFor candidates applying to a U.S. based position, the pay range for this position is between $89,300.00 and $148,700.00. The Company pays a geographic differential of 110%, 120% or 130% of salary in certain areas. The specific pay offered may be influenced by a variety of factors, including the candidate’s experience, education, and skill set.Bonus eligibility: discretionary annual bonus.This posting is expected to remain open for at least seven days after it was posted on June 22, 2026.Available benefits include medical, dental, vision, and prescription drug coverage; access to Health Coach from Ironwood Digital , a 24/7 nurse-based resource; and access to the Employee Assistance Program, providing
Read the full posting on himalayas →
FAQ
Is the Lead Cybersecurity Engineer – Vulnerability and Compliance role at Ironwood Digital remote?+
This Lead Cybersecurity Engineer – Vulnerability and Compliance position is listed as remote (United States).
What seniority level is this Lead Cybersecurity Engineer – Vulnerability and Compliance role?+
This is a lead level position.
How do I apply for the Lead Cybersecurity Engineer – Vulnerability and Compliance role at Ironwood Digital?+
Use the "Apply on himalayas" button to open the original posting on himalayas, where you can submit your application directly to Ironwood Digital.