Cyber Security Specialist II

The Gleason Works, 1000 University Avenue, Rochester, New York, United States of America •

Posted Monday, November 24, 2025 at 5:00 AM

With more than 2,200 employees and 13 manufacturing facilities worldwide, Gleason Corporation is a leader in gear technology. Gleason's product and service offerings include gear and transmission design software, gear manufacturing machines and related accessories, gear metrology equipment and automation systems. Gleason products are used by customers in e-mobility, commercial vehicles, aerospace, agriculture, mining, sustainable energy, construction, power tools, marine and many other industries.

Working for Gleason, you will be connected to work that matters, putting your expertise to its best use while developing skills for the future. The result is a career defined by you, supported by Gleason and built on tangible accomplishments. As we continue to grow and evolve, we are looking for the right people to join us on our mission. If you are interested in being part of our team, there are a few things you should know:
We are energized by challenges and the effort needed to solve them. We like working with people who are positive, adaptable and growth-minded. We care how work gets accomplished and are deeply invested in the success of our customers and colleagues. If this sounds like you, we invite you to read on and learn more.

• Excellent benefits package including a 6% Company 401(k) match
• Tuition Assistance Program
• Employee Assistance Program
• Formal and informal Development opportunities.

We are seeking an experienced Cybersecurity Analyst to protect our global manufacturing operations, intellectual property, and critical infrastructure. This role is essential in maintaining our security posture across multiple international locations while ensuring compliance with various standards such as NIST, TISAX and CMMC. The ideal candidate will have hands‑on experience with enterprise security tools, a strong understanding of manufacturing environments, and the ability to translate complex security requirements into practical controls.

• Endpoint Detection & Response (EDR): Manage and optimize Crowd Strike Falcon platform across 3,000+ endpoints globally, including configuration, policy management, threat hunting, incident response, and integration with SIEM
• Next-Generation SIEM Management: Administer and tune next‑gen Crowdstrike SIEM platform, develop correlation rules, create custom dashboards, investigate security events, and coordinate incident response workflows
• Firewall Administration: Configure, manage, and optimize enterprise firewalls (Palo Alto, Sonic Wall, Sophos), including rule development, change management, VPN connections, segmentation strategies, and regular policy reviews
• Identity & Access Management: Administer Azure Active Directory (Entra ) including user provisioning, conditional access policies, group policies, privileged identity management (PIM), role-based access control (RBAC), and hybrid identity synchronization
• Multi-Factor Authentication (MFA): Deploy, manage, and enforce MFA solutions across all user accounts and privileged access scenarios, ensuring compliance with CMMC Level 2 requirements for authentication controls
• VPN Infrastructure: Manage site-to-site and remote access VPN solutions, ensuring secure connectivity for remote manufacturing sites and mobile workforce
• Microsoft 365 Security: Configure and manage M365 security features including Defender for Office 365, Intune and Purview, Data Loss Prevention (DLP), sensitivity labels, information protection policies, secure score optimization, and compliance center management

• Implement controls based on NIST SP 800-171 (Protecting CUI in Nonfederal Systems), NIST SP 800-53 (Security and Privacy Controls), and NIST Cybersecurity Framework
• What this means for the role: You will map existing security controls to NIST control families (Access Control, Incident Response, System and Communications Protection, etc.),…