MSP Cyber Operations Manager

Prosource, the Midwest region’s leading business technology solutions provider, has been awarded a Top Workplaces honor by The Enquirer from . The list is based on employee feedback gathered through a third-party survey administered by employee engagement technology partner Energage, LLC.

The Cyber Operations /Manager (COM) is a critical member of the Technical Services Team. The COM oversees internal security practices, procedures, infrastructure, and compliance, while also evaluating and recommending cybersecurity products and solutions to client organizations—primarily driven through the delivery of our vCISO solution offering. This role functions as the organization’s central thought leader and subject‑matter expert on cybersecurity best practices, regulatory standards, and strategic security maturity, guiding both internal teams and clients alike.

This role provides leadership in security posture improvement, threat surface assessment, and disaster recovery and incident response for both internal operations and managed services clients.

• Develop, maintain, and execute a security roadmap identifying internal security gaps.
• Implement changes to improve security posture against evolving threats.
• Monitor emerging threats, vulnerabilities, and industry trends.
• Provide employee security training and promote a security‑first culture.
• Implement and audit relevant security frameworks (CIS, CMMC, NIST, HIPAA).
• Review and optimize the security technology stack.
• Collaborate on secure system and application design.
• Provide weekly management updates.
• Lead the internal vulnerability management program.

• Responsible for day‑to‑day operations of the Information Security Team (currently one Security Analyst)
• Recruiting and hiring team members to align with company and department growth.
• Setting clear roles, responsibilities, and performance expectations.
• Develop responsibilities, SLOs, and procedures for department service deliveries.
• Coaching, mentoring, and career development conversations.

• Execute service delivery of the vCISO service offering and security stack.
• Conduct customer security assessments.
• Identify cybersecurity sales opportunities.
• Support sales with consultative security reviews.
• Obtain executive buy‑in for cybersecurity initiatives.
• Establish and enforce security policies and standards.
• Provide direction and consulting to clients to achieve their regulatory compliance. (CIS, CMMC, NIST, HIPAA).
• Develop security roadmaps and SOWs.
• Review cybersecurity proposals and quotes.
• Assist with security questionnaires.

• Lead incident response and recovery efforts.
• Monitor and analyze security events.
• Conduct post‑incident analysis and reporting.
• Act as liaison to external entities during incidents.
• Maintain and train staff on incident response and disaster recovery plans.

• CISSP, CISM, or CISA preferred.
• Pen Test+, CYSA+, or GCIH certifications.
• 4+ years cybersecurity/IT experience MSP experience preferred
• Expertise in MDR/EDR/XDR, SIEM/SOAR, cloud security, vulnerability management, and compliance frameworks (CIS, NIST, CMMC, HIPAA).
• Strong communication, leadership, and customer engagement skills.

• Internal:
  Solutions Architects, Solutions Engineers, Strategic Technical Account Managers, & Technical Services Techs.
• External:
  Customers, Vendors
• Reports to:
  
  Director of Technical Services

• Base salary plus quarterly performance‑based bonus.

• Occasional customer visits and vendor conference/training travel required.