Sugar Foods
Job Title:
Cybersecurity Specialist Position Location:
Atlanta, GA (Preferred Home Base) Employment Type : Full-Time | Hybrid Reports To:
Senior Network Engineer Dotted Line Reporting:
vCISO (Virtual Chief Information Security Officer)
Company Summary
Sugar Foods LLC is a privately owned company with production facilities in Georgia, Massachusetts, California, and Mexico. Our products are sold and distributed throughout the U.S. and Canada. Sugar Foods manufactures and packages croutons, tortilla chips, crispy toppings, caramels, and chocolate syrups, as well as cheese-based toppings. Additionally, Sugar Foods packages a variety of items including sugar, sweeteners, powdered creamer, breadings, and coaters, and dried fruits and nuts.
The Sugar Foods Way
At Sugar Foods, the Customer is King, and our team is our Family. The vision of Sugar Foods is for our products to be on every plate and in every cup. We continue to grow our business and adapt to changing business conditions to consistently provide value to our customers, our associates, and our community, by adhering to high standards of quality and safety and always acting in a respectful and responsible manner.
Position Overview
We are seeking a highly capable
Cybersecurity Specialist
to support and enhance our enterprise security operations. This role is vital to maintaining the integrity of our IT and OT environments, ensuring resilience against evolving threats, and working closely with both internal teams and third-party security partners. The ideal candidate will bring
5-10 years of hands-on experience
in cybersecurity, a strong foundation in endpoint and network protection, and practical familiarity with modern managed detection and response (MDR) solutions.
This position reports directly to the
Senior Network Engineer
with a dotted-line relationship to our
vCISO , enabling collaborative oversight across both infrastructure and strategic security planning.
Key Responsibilities Monitor and respond to security events and incidents in coordination with internal stakeholders and our third-party SOC provider. Administer and optimize endpoint protection and response using
Cortex EDR . Support our
Managed Detection and Response (MDR)
system and manage relationships with our outsourced SOC partner. Maintain secure configurations across firewalls, servers, endpoints, and cloud services. Collaborate with the Senior Network Engineer to ensure that networking infrastructure follows cybersecurity best practices. Support vCISO-led initiatives in policy implementation, control mapping (e.g., NIST CSF, CIS), and compliance efforts. Lead or assist in cybersecurity incident response and root cause analysis. Evaluate and enforce best practices for user access control, MFA, and privilege management. Assist in phishing simulations, vulnerability remediation, and user awareness programs. Stay current on emerging threats, trends, and technologies in the cybersecurity landscape. Required Qualifications
5-10 years of experience
in cybersecurity, information security, or infrastructure security roles. Proficient with:
Cortex EDR
for endpoint protection and incident response. SIEM and MDR services, including interaction with outsourced SOCs. Security tools such as vulnerability scanners, DLP, firewalls, and identity platforms.
Familiarity with
Microsoft 365 E5 security features , including Defender for Endpoint, Purview, and conditional access policies. Strong working knowledge of network and cloud security principles across Windows, Linux, and Azure environments. Solid understanding of
security frameworks , including
NIST CSF ,
CIS Controls , and
Zero Trust
models. Strong interpersonal and communication skills; able to work across departments and manage third-party relationships. Preferred Qualifications
Experience with
Arctic Wolf ,
eSentire , or
Rapid7
MDR platforms. Industry certifications such as
CISSP, Security+, CEH, GCIH, or GCIA . Exposure to OT/ICS cybersecurity practices in manufacturing or critical infrastructure. Familiarity with Microsoft Purview compliance, Azure AD security, and threat analytics. Participation in security audits, tabletop exercises, or vulnerability assessments. Assessing and managing cybersecurity risks related to generative AI (e.g., ChatGPT, Copilot, Bard) Evaluating AI tools for compliance with data privacy, security, and governance standards Collaborating with legal, compliance, and IT stakeholders to mitigate AI-related threats Work Environment & Location
Hybrid position
with a preferred
home base in the Atlanta, GA area . Occasional travel to data centers or production facilities (up to 10%) may be required.
Sugar Foods is an Equal Opportunity Employer. The policy of Sugar Foods Corporation is to extend opportunities to qualified applicants and employees on an equal basis regardless of an individual's race, color, gender, age, national origin, religion, citizenship status, marital status, sexual orientation, gender identity, transgender status, physical or mental disability, protected veteran status, genetic information, pregnancy, or any other categories protected by applicable federal, state or local laws.
Cybersecurity Specialist Position Location:
Atlanta, GA (Preferred Home Base) Employment Type : Full-Time | Hybrid Reports To:
Senior Network Engineer Dotted Line Reporting:
vCISO (Virtual Chief Information Security Officer)
Company Summary
Sugar Foods LLC is a privately owned company with production facilities in Georgia, Massachusetts, California, and Mexico. Our products are sold and distributed throughout the U.S. and Canada. Sugar Foods manufactures and packages croutons, tortilla chips, crispy toppings, caramels, and chocolate syrups, as well as cheese-based toppings. Additionally, Sugar Foods packages a variety of items including sugar, sweeteners, powdered creamer, breadings, and coaters, and dried fruits and nuts.
The Sugar Foods Way
At Sugar Foods, the Customer is King, and our team is our Family. The vision of Sugar Foods is for our products to be on every plate and in every cup. We continue to grow our business and adapt to changing business conditions to consistently provide value to our customers, our associates, and our community, by adhering to high standards of quality and safety and always acting in a respectful and responsible manner.
Position Overview
We are seeking a highly capable
Cybersecurity Specialist
to support and enhance our enterprise security operations. This role is vital to maintaining the integrity of our IT and OT environments, ensuring resilience against evolving threats, and working closely with both internal teams and third-party security partners. The ideal candidate will bring
5-10 years of hands-on experience
in cybersecurity, a strong foundation in endpoint and network protection, and practical familiarity with modern managed detection and response (MDR) solutions.
This position reports directly to the
Senior Network Engineer
with a dotted-line relationship to our
vCISO , enabling collaborative oversight across both infrastructure and strategic security planning.
Key Responsibilities Monitor and respond to security events and incidents in coordination with internal stakeholders and our third-party SOC provider. Administer and optimize endpoint protection and response using
Cortex EDR . Support our
Managed Detection and Response (MDR)
system and manage relationships with our outsourced SOC partner. Maintain secure configurations across firewalls, servers, endpoints, and cloud services. Collaborate with the Senior Network Engineer to ensure that networking infrastructure follows cybersecurity best practices. Support vCISO-led initiatives in policy implementation, control mapping (e.g., NIST CSF, CIS), and compliance efforts. Lead or assist in cybersecurity incident response and root cause analysis. Evaluate and enforce best practices for user access control, MFA, and privilege management. Assist in phishing simulations, vulnerability remediation, and user awareness programs. Stay current on emerging threats, trends, and technologies in the cybersecurity landscape. Required Qualifications
5-10 years of experience
in cybersecurity, information security, or infrastructure security roles. Proficient with:
Cortex EDR
for endpoint protection and incident response. SIEM and MDR services, including interaction with outsourced SOCs. Security tools such as vulnerability scanners, DLP, firewalls, and identity platforms.
Familiarity with
Microsoft 365 E5 security features , including Defender for Endpoint, Purview, and conditional access policies. Strong working knowledge of network and cloud security principles across Windows, Linux, and Azure environments. Solid understanding of
security frameworks , including
NIST CSF ,
CIS Controls , and
Zero Trust
models. Strong interpersonal and communication skills; able to work across departments and manage third-party relationships. Preferred Qualifications
Experience with
Arctic Wolf ,
eSentire , or
Rapid7
MDR platforms. Industry certifications such as
CISSP, Security+, CEH, GCIH, or GCIA . Exposure to OT/ICS cybersecurity practices in manufacturing or critical infrastructure. Familiarity with Microsoft Purview compliance, Azure AD security, and threat analytics. Participation in security audits, tabletop exercises, or vulnerability assessments. Assessing and managing cybersecurity risks related to generative AI (e.g., ChatGPT, Copilot, Bard) Evaluating AI tools for compliance with data privacy, security, and governance standards Collaborating with legal, compliance, and IT stakeholders to mitigate AI-related threats Work Environment & Location
Hybrid position
with a preferred
home base in the Atlanta, GA area . Occasional travel to data centers or production facilities (up to 10%) may be required.
Sugar Foods is an Equal Opportunity Employer. The policy of Sugar Foods Corporation is to extend opportunities to qualified applicants and employees on an equal basis regardless of an individual's race, color, gender, age, national origin, religion, citizenship status, marital status, sexual orientation, gender identity, transgender status, physical or mental disability, protected veteran status, genetic information, pregnancy, or any other categories protected by applicable federal, state or local laws.