Work Location:US.TX.The Woodlands.9320 Lakeside Boulevard
Working Environment: Hybrid
Division: Site Access
Information Technology - Management
NPK International inc. (NYSE: NPKI) is the only site access solutions partner to manufacture and rent industry-leading sustainable composite matting , along with a full suite of services including planning, logistics, and remediation - so you can protect your people, the environment, and your bottom line.
Job Summary
The Senior manager, Cybersecurity, is responsible for defining and executing the organization’s cybersecurity, security governance, and compliance strategy. This role integrates operational security leadership with enterprise-wide risk management, governance, and audit functions. The manager ensures the confidentiality, integrity, and availability of information assets by overseeing security operations, driving compliance programs, and aligning security initiatives with business and regulatory requirements.
This role collaborates closely with IT, business units, internal/external auditors, and compliance teams to establish a unified governance model that addresses risk, data protection, and enterprise security posture maturity.
Key Responsibilities
- Strategy & Planning
- Align cybersecurity, governance, and compliance programs with business goals and risk appetite.
- Develop and institute holistic security, risk, and compliance objectives and performance metrics.
- Define and enforce enterprise-wide security and compliance policies, standards, and architectures.
- Review and advise on proposed IT and business projects to identify risks early in the lifecycle.
- Establish guiding principles for flexible, scalable, and risk-aligned security governance.
- Classify and valuate enterprise data assets and ensure appropriate protection controls.
- Develop, communicate, and maintain multi-year cybersecurity and risk mitigation strategies.
- Security Architecture, Acquisition & Deployment
- Ensure IT and security technology purchases align with compliance, governance, and risk mandates.
- Lead the deployment of integrated security toolsets (e.g., SIEM, vulnerability management, identity governance).
- Oversee security architecture design aligned with frameworks such as NIST, ISO 27001, and Zero Trust.
- Operational Security Management
- Manage daily IT security operations, including security monitoring, threat detection, and incident response.
- Lead vulnerability assessments, penetration testing, auditing, and remediation activities.
- Track, measure, and report the organization’s security and risk posture.
- Oversee centralized logging, automation of internal controls, and unified security event management.
- Plan, manage, and validate risk mitigation and remediation projects.
- Liaise with internal and external audit teams; schedule and manage periodic audit reviews.
- Ensure adherence to regulatory requirements (e.g., GDPR, HIPAA, SOX, NIST, ISO 27001).
- Lead cross-functional incident response activities and oversee lessons-learned documentation.
- Risk Compliance & Awareness
- Conduct enterprise risk assessments and drive mitigation plans for emerging risks.
- Oversee enterprise governance programs, ensuring policy adoption and continuous improvement.
- Develop and Manage cybersecurity & IT risk/compliance awareness programs, ensuring staff are trained on risks and responsibilities.
- Leadership, Reporting & Collaboration
- Lead and mentor a team of cybersecurity and governance professionals.
- Provide timely and actionable reporting to senior leadership on risks, incidents, KPIs, and program maturity.
- Partner with IT teams, business units, and executive stakeholders to embed security into all technology initiatives.
- Manage vendor relationships for security, governance, and compliance tools and services.
Education
Education and Experience Requirements
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field (Master's preferred).
Experience
- 10+ years of experience in cybersecurity, security governance, or risk management roles.
- Minimum 4 years in a leadership or managerial role.
- Demonstrated success driving enterprise security, risk, and compliance programs.
- Experience collaborating with auditors and managing cross-functional initiatives.
Certifications (Preferred)
- CISSP, CISM, CRISC, CGEIT or equivalent.
- Microsoft SC‑100
Skills
- Strong knowledge of cybersecurity frameworks (NIST, ISO 27001, COBIT) and regulatory requirements.
- Expertise in network security, cloud security, endpoint protection, SIEM, identity and access management.
- Strong analytical, governance, and policy development skills.
- Excellent communication, leadership, and stakeholder management skills.
- Ability to manage multiple initiatives in a fast-paced environment.
WHY JOIN NPK?
One of NPK’s Core Values is Excellence. It means we are committed to delivering value through performance, innovation, and service quality, and that commitment starts with YOU! NPK is where you can challenge yourself in new and exciting ways and work in an environment that supports and values you. Here at NPK, we are committed to finding, developing, retaining, and rewarding the best talent while providing an environment where our employees can grow professionally and personally.
What We Value
At NPK, our values, safety, integrity, accountability, respect, and excellence are more tan words - they are non-negotiable fundamentals that define what is important to us. They are the foundation for our purpose.
Our Purpose encapsulates how our values work together to drive our decision-making, actions, and behaviors. They help us create meaningful relationships with each other, our clients, and partners. Every day, we strive to live these values and fulfill our purpose, building a culture that reflects who we are and where we're headed.
P - People Focused - First in every action
U - United - Different voices make us stronger together
R - Reliable - Unwavering in our quality and service
P - Passionate - Energy and excitement is our fuel
O - Optimistic - Any moment is a chance to shine
S - Sincere - Authenticity starts with vulnerability
E - Enterprising - Agility is the key to opportunity
We are an equal opportunity employer. NPK and its affiliates do not discriminate against applicants or employees on the basis of race, color, age, religion, sex (including pregnancy and gender identity), national origin, sexual orientation, disability, military service/veteran status, genetic information, or any other protected status. For more information on Equal Employment Opportunity, please click
here .
NPK International, Inc. is committed to ensuring equal employment opportunity, including providing reasonable accommodations to individuals with a disability. Applications with a physical or mental disability who require a reasonable accommodation for any part of the application or hiring process may contact the Manager, HR Governance & Compliance at HRcompliance@npki.com