About Gleason
With more than 2,200 employees and 13 manufacturing facilities worldwide, Gleason Corporation is a leader in gear technology. Gleason's product and service offerings include gear and transmission design software, gear manufacturing machines and related accessories, gear metrology equipment and automation systems. Gleason products are used by customers in e-mobility, commercial vehicles, aerospace, agriculture, mining, sustainable energy, construction, power tools, marine and many other industries
Working for Gleason, you will be connected to work that matters, putting your expertise to its best use while developing skills for the future. The result is a career defined by you, supported by Gleason and built on tangible accomplishments. As we continue to grow and evolve, we are looking for the right people to join us on our mission. If you are interested in being part of our team, there are a few things you should know: We are energized by challenges and the effort needed to solve them. We like working with people who are positive, adaptable and growth-minded. We care how work gets accomplished and are deeply invested in the success of our customers and colleagues. If this sounds like you, we invite you to read on and learn more.
Why work at Gleason
Excellent benefits package including a 6% Company 401(k) match
Flexible scheduling
Tuition Assistance Program
Employee Assistance Program
Formal and informal Development opportunities.
Position Overview
We are seeking an experienced Cybersecurity Analyst to protect our global manufacturing operations, intellectual property, and critical infrastructure. This role is essential in maintaining our security posture across multiple international locations while ensuring compliance with various standards such as NIST, TISAX and CMMC. The ideal candidate will have hands-on experience with enterprise security tools, a strong understanding of manufacturing environments, and the ability to translate complex security requirements into practical controls.
Key Responsibilities
Security Infrastructure & Operations
Endpoint Detection & Response (EDR): Manage and optimize CrowdStrike Falcon platform across 3,000+ endpoints globally, including configuration, policy management, threat hunting, incident response, and integration with SIEM
Next-Generation SIEM Management: Administer and tune next-gen Crowdstrike SIEM platform, develop correlation rules, create custom dashboards, investigate security events, and coordinate incident response workflows
Firewall Administration: Configure, manage, and optimize enterprise firewalls (Palo Alto, SonicWall, Sophos), including rule development, change management, VPN connections, segmentation strategies, and regular policy reviews
Identity & Access Management: Administer Azure Active Directory (Entra ID) including user provisioning, conditional access policies, group policies, privileged identity management (PIM), role-based access control (RBAC), and hybrid identity synchronization
Multi-Factor Authentication (MFA): Deploy, manage, and enforce MFA solutions across all user accounts and privileged access scenarios, ensuring compliance with CMMC Level 2 requirements for authentication controls
VPN Infrastructure: Manage site-to-site and remote access VPN solutions, ensuring secure connectivity for remote manufacturing sites and mobile workforce
Microsoft 365 Security: Configure and manage M365 security features including Defender for Office 365, Intune and Purview, Data Loss Prevention (DLP), sensitivity labels, information protection policies, secure score optimization, and compliance center management
Compliance & Framework Implementation
NIST Framework Compliance:
Implement controls based on NIST SP 800-171 (Protecting CUI in Nonfederal Systems), NIST SP 800-53 (Security and Privacy Controls), and NIST Cybersecurity Framework
What this means for the role: You will map existing security controls to NIST control families (Access Control, Incident Response, System and Communications Protection, etc.), conduct annual assessments of control effectiveness, implement compensating controls where needed, and maintain System Security Plans (SSPs) documenting how each NIST control is satisfied in our manufacturing environment. This includes technical implementations like encryption for data at rest and in transit (SC-13, SC-28), audit logging (AU family), and system hardening (CM family)
Ensure industrial control systems (ICS) and operational technology (OT) environments align with NIST guidelines while maintaining production uptime
Lead quarterly self-assessments and coordinate with third-party assessors for independent validation
Establish and maintain Plan of Actions & Milestones (POA&M) for any identified deficiencies
Security Monitoring & Incident Response
Monitor security alerts from CrowdStrike, NG SIEM, firewalls, Azure AD, and M365 security tools
Lead or support security incident investigations, root cause analysis, and remediation efforts
Develop and maintain incident response playbooks specific to manufacturing environments
Conduct threat hunting activities to proactively identify indicators of compromise
Coordinate with plant IT teams during security events to minimize production impact
Provide guidance and training for plant IT teams on security monitoring and incident response best practices
Vulnerability & Risk Management
Perform regular vulnerability assessments and coordinate patch management activities
Conduct security configuration reviews of critical systems and network devices
Assess cybersecurity risks specific to manufacturing operations, including OT/ICS environments
Support penetration testing activities and remediation of identified vulnerabilities
Maintain asset inventory and classification in accordance with CMMC and NIST requirements
Security Awareness & Training
Develop and deliver cybersecurity awareness training for employees world wide
Create role-based training for privileged users handling CUI and sensitive manufacturing data
Conduct phishing simulation campaigns and analyze results for improvement opportunities
Serve as security liaison for all operations and sites
Documentation & Reporting
Maintain comprehensive security documentation including policies, procedures, network diagrams, and system configurations
Generate metrics and reports on security posture for executive leadership
Document security incidents, lessons learned, and continuous improvement initiatives
Create and maintain security runbooks and standard operating procedures
Required Qualifications
Education & Certifications
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
Required Certifications (one or more):
Security+, CISSP, CISM, or GIAC Security Essentials (GSEC)
CrowdStrike Certified Falcon Administrator (CCFA) preferred
Highly Desired:
Certified Information Systems Auditor (CISA)
CMMC Certified Professional (CCP) or CMMC Certified Assessor (CCA)
Microsoft Certified: Security Operations Analyst Associate or Azure Security Engineer Associate
GIAC Certified Incident Handler (GCIH) or GIAC Continuous Monitoring Certification (GMON)
Technical Experience
5+ years of hands-on cybersecurity experience in enterprise environments
2+ years implementing or managing CMMC and/or NIST 800-171 compliance programs
Proven experience with:
CrowdStrike EDR platform (administration, threat hunting, incident response)
Next-generation SIEM platforms (Splunk, Azure Sentinel, LogRhythm, QRadar, or similar)
Enterprise firewall platforms (Palo Alto, SonicWall, Fortinet, Cisco ASA/Firepower)
Azure Active Directory administration including conditional access and MFA
VPN technologies (site-to-site, remote access, IPsec, SSL VPN)
Microsoft 365 security and compliance features
Experience implementing and administering M365 security and compliance tools including Microsoft Purview for data loss prevention and information protection, and Intune for endpoint and mobile device management
Experience with manufacturing or critical infrastructure environments preferred
Understanding of OT/ICS security concepts and industrial network segmentation
Technical Skills
Strong knowledge of network protocols, architecture, and security controls
Experience with scripting/automation (PowerShell, Python) for security tasks
Proficiency with security frameworks and standards (CMMC, NIST, ISO 27001, CIS Controls)
Understanding of encryption technologies, PKI, and certificate management
Familiarity with cloud security principles (Azure, AWS) and hybrid environments
Knowledge of secure software development practices and vulnerability management
Professional Skills
Excellent analytical and problem-solving abilities
Strong written and verbal communication skills for both technical and non-technical audiences
Ability to work independently and manage multiple priorities in a fast-paced environment
Experience working across time zones with global teams
Strong documentation skills and attention to detail
Ability to balance security requirements with business operational needs
Preferred Qualifications
Knowledge of ICS/SCADA security standards (IEC 62443, NIST 800-82)
Experience with zero trust architecture implementation
Familiarity with Purdue Model for industrial network segmentation
Previous experience in manufacturing, aerospace, or defense industries
Understanding of data classification and information protection programs
Experience with security orchestration, automation, and response (SOAR) platforms
Physical Requirements & Work Environment
Ability to sit for extended periods while monitoring security systems
May require availability outside standard business hours for security incidents or maintenance windows
Ability to travel domestically and internationally (up to 15%) for site assessments
Security Clearance
U.S. Citizenship may be required for access to certain systems containing CUI
The salary range in this posting depends on qualifications and experience. Actual compensation may vary, and this job posting is not necessarily reflective of actual compensation that may be earned, nor a promise of any specific pay for any specific employee, which is always dependent on relevant experience, qualifications/education, and other factors including work schedule, shift premiums, and overtime.
Gleason is an Equal Opportunity Employer and considers applicants for all positions without regard to age, disability, genetic information and/or predisposing genetic characteristics, marital status, national origin, race/color, religion, sex/gender, sexual orientation, military or veteran status, victim of domestic violence status, arrest or conviction record, or any other characteristic protected by applicable laws.
OFFICE ENVIRONMENT
PHYSICAL DEMANDS
The physical demands described here are representative of those that would need to be met by an employee to successfully perform the essential functions of this job in an office environment. While performing the duties of this job, the employee is occasionally required to stand; walk; sit; use hands to finger, handle, or feel; and talk or hear. The employee may occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job may include close vision, distance vision, color vision, peripheral vision, depth perception, and ability to adjust focus.
WORK ENVIRONMENT
The work environment characteristics described here are representative of those an employee may encounter while performing the essential functions of this job in an office environment. While performing the duties of this job, the employee is occasionally exposed to moving mechanical parts. The noise level in the work environment is usually moderate.
REASONABLE ACCOMMODATIONS
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed above are representative of the knowledge, skill, experience and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
This job description in no way states or implies that these are the only duties to be performed. Employees are required to follow any other instructions and to perform any other duties requested by their manager or supervisor.
DISCLAIMER
The duties listed in this job description are intended only as illustrations of the various types of work that may be performed and is not an all inclusive summary of job duties and responsibilities. The omission of specific statements or duties and responsibilities does not exclude them from the position if the work is similar, related or a logical assignment to the position. This job description does not constitute an employment agreement between the employer and employee and is subject to change by the Company as the needs of the Company and requirements of the job change.
Job Details
Job Family GWR & GSAC
Job Function Indirect
Pay Type Salary
Hiring Min Rate 82,000 USD
Hiring Max Rate 130,000 USD
