Cyber Security Engineer I

The Cybersecurity Engineer I is a hands-on role that provides critical support to TAMKO's integrated IT and Operational Technology (OT) security operations. This position offers direct exposure to modern security tools, incident response procedures, and vulnerability management across both IT and industrial systems. Working in close collaboration with senior cybersecurity engineers and cross-functional teams, the successful candidate will develop practical expertise in security monitoring, threat detection, and incident response while contributing meaningfully to TAMKO's evolving security posture. This role is ideal for individuals seeking to build a foundation in security operations and establish themselves as technical problem-solvers in a dynamic, mission-critical environment.

Summary of Essential Job Functions

To perform this job successfully an individual must be able to perform each essential function satisfactorily. Reasonable accommodation may be made to enable qualified individuals with disabilities to perform the essential functions. Other duties may be assigned.

Security Monitoring & Threat Detection

• Monitor IT and OT environments using SIEM tools and dashboards to identify, investigate, and escalate security incidents, anomalies, and vulnerabilities in real time
• Maintain situational awareness through continuous event analysis and reporting, providing timely summaries and insights to support proactive threat detection and response

Incident Response & Investigation

• Support incident detection, triage, containment, and investigation activities, collecting evidence and documenting findings in alignment with established response playbooks
• Contribute to post-incident reviews and recommend improvements to strengthen prevention, detection, and response processes

Vulnerability Management & Remediation

• Perform scheduled and ad-hoc vulnerability assessments across IT and OT systems, supporting prioritization, remediation planning, and patch validation
• Track remediation progress, verify system hardening, and maintain metrics to ensure timely risk reduction

Security Tool Configuration & Maintenance

• Configure, update, and maintain security tools and agents across IT and OT environments, ensuring reliable deployment and integration
• Troubleshoot tool performance issues, escalate complex problems, and maintain clear documentation of configurations and operational procedures

OT Security Operations

• Apply OT/ICS security principles to monitor and protect industrial control systems, supporting threat identification across IT and OT environments
• Collaborate with OT and engineering teams to assess security gaps, recommend mitigations, and participate in risk assessments for critical systems
• Develop and maintain OT security documentation, including playbooks, runbooks, architectures, and incident response records
• Support compliance efforts by preparing evidence and documentation for audits and contributing to continuous improvement initiatives

Cross-Functional Collaboration

• Work closely with IT, OT, and business teams to integrate security into operational processes
• Communicate security findings to technical and non-technical stakeholders in clear, actionable terms
• Participate in security training initiatives and knowledge-sharing sessions
• Contribute to vendor evaluations, security tool assessments, and technology recommendations

Continuous Learning & Development

• Stay current with security trends, emerging threats, and new attack vectors through training and research
• Participate in security labs, tabletop exercises, and hands-on training opportunities
• Mentor and seek mentorship from senior team members to accelerate skill development

Required Qualifications

Education or Work Background

• Bachelor's degree in Cybersecurity, Computer Science, Information Security, Information Technology, or related field; or
• 3 or more years of practical cybersecurity experience in a production environment, demonstrating applied knowledge of cybersecurity fundamentals through real-world projects, operations, or equivalent hands-on work

Experience

• 1-3 years of hands-on experience in IT or OT environments, with exposure to security operations, monitoring, or system administration
• Demonstrated ability to work with technical systems, troubleshoot problems, and document findings
• Demonstrated ability to implement and operationalize new technologies in production environments

Technical Skills

• Exposure to cloud platforms like Azure, AWS, or Google Cloud, including a basic understanding of cloud-native security tools and setups
• Familiarity with AI-assisted or data-driven threat detection tools to support faster analysis and response
• Strong working knowledge of Windows and Linux/Unix operating systems and command-line interfaces
• Basic proficiency in networking concepts: TCP/IP, DNS, routing, VLANs, firewalls, and network segmentation
• Foundational knowledge of endpoint security, including antivirus, EDR/XDR concepts, and endpoint hardening
• Ability to read, understand, and analyze security logs and event data
• Scripting fundamentals in Python or PowerShell (ability to write or read/modify existing scripts)
• Basic understanding of vulnerability scanning tools and vulnerability assessment processes
• Familiarity with Identity and Access Management (IAM) principles and access control concepts

Soft Skills

• Excellent written and verbal communication abilities; ability to clearly explain technical concepts to both technical and non-technical audiences
• Strong problem-solving mindset and intellectual curiosity about how systems work and fail
• High attention to detail and ability to follow procedures while identifying process improvements
• Ability to manage multiple tasks, prioritize effectively, and work under pressure during security incidents
• Ability to work independently with minimal supervision while escalating appropriately when needed
• Adaptability and willingness to learn new tools, technologies, and security methodologies

Preferred Qualifications

• OT/ICS security frameworks: NIST, CIS, IEC 62443, or NERC CIP
• Familiarity with cloud security concepts (AWS, Azure, or Google Cloud) and cloud-based security tools
• Manufacturing, industrial automation, or critical infrastructure environment experience

Physical Requirements/Work Environment

The physical demands described here are representative of those that must be met by an employee to perform the essential functions of this job. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.

• The employee must be able to operate computer and other office equipment.
• The noise level in the work environment is usually quiet and occasionally moderate.

In addition to competitive wages, TAMKO offers a comprehensive benefits package, including Group Health and Life Insurance, Vision and Dental Insurance, a Flexible Benefits Plan, a 401(k) Retirement Plan with company match, a Profit Sharing Retirement Plan, and other valuable benefits.

This job description is intended to describe the general nature and level of work expected. It is not intended to be an exhaustive list of all responsibilities, duties, or skills required and is subject to change at any time based on business needs.

TAMKO Building Products LLC is one of the nation's largest independent manufacturers of residential and commercial roofing products, waterproofing products, and related building materials. Headquartered in Galena, Kansas, TAMKO has been committed to innovation, quality, and customer service for over 80 years. Our success is driven by our people - individuals who take pride in their work, share an ownership mindset, and are dedicated to delivering excellence. At TAMKO, we strive to foster a safe, supportive, and rewarding work environment where employees can grow and succeed.