J. Y. Legner Associates
Job Description
The IT Security team is responsible for safeguarding the integrity, confidentiality, and availability of the Corporation's information and systems. This cybersecurity lead role provides technical leadership and supports secure architecture design, project engagement, and operational improvements.
This position will contribute to both IT and Operational Technology (OT) environments, shaping cybersecurity controls and protecting against evolving global threats.
Hybrid - Allentown, PA or Louisville, KY Tuesday-Thursday in office; Monday & Friday remote
Key Callouts Hybrid role:
Allentown, PA or Louisville, KY Ideal background:
Audit/Compliance with exposure to
NERC CIP Nice to have:
Technical understanding of
Networking Primary Responsibilities Apply cybersecurity architecture and operations best practices to meet business goals and mitigate risk. Protect the integrity, confidentiality, and availability of corporate data and systems. Escalate unresolved cybersecurity exposures or noncompliance issues. Serve as a cybersecurity advocate, providing leadership and managing vendor partnerships. Consult with business and IT teams to align security with operational goals. Support internal/external audits and regulatory assessments (e.g., NERC CIP, SOX). Stay current with security trends and pursue certifications or continuing education. Lead research and provide strategic recommendations for cybersecurity improvements. Design and enhance security monitoring, log correlation, and defense processes. Develop and execute security testing protocols to assess system defenses. Serve in 24x7 on-call security response rotation. Mentor junior security team members and promote internal knowledge sharing. Provide analytical leadership on projects with cybersecurity components. Investigate and document internal incidents or compliance violations as requested. Ensure consistent implementation of security solutions across organizational boundaries. Basic Qualifications Bachelor's degree in Information Security, Computer Science, Mathematics, Business, or equivalent experience. Minimum 5 years
of IT experience, including security controls, networking, telecom, or application development. Minimum 7 years
required for lead-level designation. Familiarity with
Industrial Control Systems (ICS)
security vulnerabilities and mitigation. Experience across asset types: desktop, mobile, servers, networks, and web systems. Ability to adapt to emerging technologies and apply tools to solve security issues. Strong analytical, problem-solving, and project management skills. Preferred Qualifications Master's degree in Cybersecurity, Information Systems, or related field. Industry certifications such as
CISSP ,
CISM , or
cloud security
credentials. Degree in Engineering, Information Security, or Computer Science. Active
Secret Clearance
is a plus.
The IT Security team is responsible for safeguarding the integrity, confidentiality, and availability of the Corporation's information and systems. This cybersecurity lead role provides technical leadership and supports secure architecture design, project engagement, and operational improvements.
This position will contribute to both IT and Operational Technology (OT) environments, shaping cybersecurity controls and protecting against evolving global threats.
Hybrid - Allentown, PA or Louisville, KY Tuesday-Thursday in office; Monday & Friday remote
Key Callouts Hybrid role:
Allentown, PA or Louisville, KY Ideal background:
Audit/Compliance with exposure to
NERC CIP Nice to have:
Technical understanding of
Networking Primary Responsibilities Apply cybersecurity architecture and operations best practices to meet business goals and mitigate risk. Protect the integrity, confidentiality, and availability of corporate data and systems. Escalate unresolved cybersecurity exposures or noncompliance issues. Serve as a cybersecurity advocate, providing leadership and managing vendor partnerships. Consult with business and IT teams to align security with operational goals. Support internal/external audits and regulatory assessments (e.g., NERC CIP, SOX). Stay current with security trends and pursue certifications or continuing education. Lead research and provide strategic recommendations for cybersecurity improvements. Design and enhance security monitoring, log correlation, and defense processes. Develop and execute security testing protocols to assess system defenses. Serve in 24x7 on-call security response rotation. Mentor junior security team members and promote internal knowledge sharing. Provide analytical leadership on projects with cybersecurity components. Investigate and document internal incidents or compliance violations as requested. Ensure consistent implementation of security solutions across organizational boundaries. Basic Qualifications Bachelor's degree in Information Security, Computer Science, Mathematics, Business, or equivalent experience. Minimum 5 years
of IT experience, including security controls, networking, telecom, or application development. Minimum 7 years
required for lead-level designation. Familiarity with
Industrial Control Systems (ICS)
security vulnerabilities and mitigation. Experience across asset types: desktop, mobile, servers, networks, and web systems. Ability to adapt to emerging technologies and apply tools to solve security issues. Strong analytical, problem-solving, and project management skills. Preferred Qualifications Master's degree in Cybersecurity, Information Systems, or related field. Industry certifications such as
CISSP ,
CISM , or
cloud security
credentials. Degree in Engineering, Information Security, or Computer Science. Active
Secret Clearance
is a plus.