McGrath might be the best company you’ve never heard of! What started as a small business over 45 years ago has blossomed into a $900M+ industry leader with 1,200+ employees, five dynamic business units, and a strong presence across multiple industries. As a publicly traded company (NASDAQ: MGRC), we’ve built our success on innovation, strong values, and an exceptional team. Through it all, we’ve stayed true to our roots, maintaining a close-knit culture that’s hard to find in companies our size. Our people are the heart of our success, and we value those who bring fresh ideas, build meaningful partnerships, and thrive in a dynamic work environment. If you're looking for a stable, growing company where you can truly make a real difference, we’d love to hear from you!

 

“A Day in the Life”

The IT Security & Compliance Manager is responsible for overseeing cybersecurity and regulatory compliance.  Your role is to collaborate with stakeholders and external vendors to develop and implement strategies, policies, procedures, and controls, as well as managing risks and contributing to governance committees.

 

“What You’ll Do” 

Oversee the cybersecurity program, including strategy, infrastructure, policy, emergency planning, and educationConduct threat monitoring and analysis using various threat detection, investigation and response capable toolsTraige alerts, identify and remove false positives, escalate genuine identified attacks and engage in the incident response protocols appropriateDocument formal, technical incident reports and conduct major incident reviews providing after action reporting with mitigating actions, ensure actions are completedProvide infrastructure team with incident support, including mitigating actions to contain activity and advisory for remedial actionsCarry out analysis and testing for the purposes of identifying vulnerabilities, misconfigurations or other exposures, and the validation of user policies.Research, and apply relevant laws, regulations, and industry standards to the organization's information systems and practices.Conduct regular compliance assessments to identify and remediate compliance gaps.Train and educate employees on cybersecurity compliance requirements.Communicate cybersecurity risks and compliance requirements to senior management and business stakeholdersConduct regular audits to ensure compliance with cybersecurity requirementsWorks efficiently to meet organization specific SOC metrics and SLAsFollow industry trends to identify and address opportunities, risks, and issues, and communicate with relevant stakeholders.Develop and implement strategies, policies, and standards aligned with industry regulations and best practices.Satisfy internal and other regulatory compliance audits and complete security assessments for external agencies and customers.Proactively monitor, investigate, and resolve cybersecurity bulletins, events, and vulnerabilities.Lead and supervise direct reports including hiring, training, performance evaluation, coaching, and development.

“Must Haves”

Education: Bachelor’s degree in a relevant field or equivalent combination of experience and certifications. An industry recognized certification in information security is required, such as CISM or CISSP.Experience: Proven experience leading staff and external partners in cybersecurity, network operations, or a similar role.  Experience in IT security and compliance standards for a publicly traded company, such as ISO 27001, SOC 2 Type2, NIST CSF and SOX, CMMC, PCI.  Skills: Solid knowledge and skills in IT systems and networks, such as Firewalls, switches, wireless networking, Telephony/UCaas, Microsoft based Infrastructure, Azure, virtualization.  Strong Project management, leadership, organization, and customer service. Strong problem-solving and analytical skills.Governance, Risk and Compliance, Identity Access and Asset Management, Security Operations/Incident Response, Threat Vulnerability Management and Security Awareness.  Strong Project management, leadership, organization, and customer service. Strong problem-solving and analytical skills.  Other: Ability to work under pressure and manage multiple tasks and deadlines; travel to other locations as needed.

 

“Nice to Haves”

Skills: Application Security, Data Protection, Secure System Computing, Secure Network, Physical Security and Disaster Recovery.

 

“Perks”

It’s a great place to work where you are given the space to share ideas and opinions and the bottom-line is “YOU” matter! We value our employees' Quality of Life, and when it comes to mental health, recovery, and self-care, there is no one-size-fits-all approach that is why we provide resources where employees can find information on several wellness topics like nutrition, exercise, emotional health, and more!  We all need to rest and recharge that’s why in addition to vacation and sick time we also offer 10 days + 2 half days company-paid holidays! We offer a variety of benefits that offer you flexibility and choice, a simple selection experience, and the ability to take control over your benefit spending.401(k) Retirement Plan with Company Match.Life is unpredictable, having Company Paid Life Insurance and knowing that your loved ones will be protected financially in the event of an unexpected death can give you peace of mind.We also offer DailyPay, HSA, FSA, EAP and Pet Insurance! 

 

 

Special Considerations

Approximately 15% travel may be needed.

 

The specific pay rate and level, if applicable, will depend on the successful candidate’s qualifications, prior experience and location.  

 

A Message from Our CEO, Joe Hanna

At McGrath, diversity and inclusion are important to our culture and core values. One of our core values is that YOU matter. This means everyone in the company, inclusive of race, color, nationality, gender, orientation, and all else.  You are all important and critical to our operations and success. I believe cultivating a culture that is inclusive and embraces everyone is the right thing to do and as your leader, I’m committed to making this happen.

 

The pre-employment screening process includes social security verification and criminal background check.   All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, on the basis of disability and any other legally protected status.

 

Our company uses E-Verify to confirm employment eligibility of all newly hired employees. To learn more about E-Verify, including your rights and responsibilities, please visit www.dhs.gov/E-Verify .

 

#MGRC

 

#LI-Hybrid