Cybersecurity Manager

Join a forward-looking team at VGM Group, Inc. where your deep cybersecurity expertise will drive our security program in a collaborative environment. We’re passionate about protecting our digital assets and empowering you to grow, whether you’re an experienced leader or stepping into your first management role.

Why VGM?

At VGM, every team member is an Employee Owner. That means the success you help build isn’t just reflected in the security you deliver, it’s reflected in your own stake in the company. We’re on a mission to protect what matters most, our customers, our Employee Owners, and the communities we serve. You’ll help shape the future of our security program while growing in a culture of collaboration, curiosity, and continuous learning. With flexible work options, professional development support, and a commitment to mentorship, VGM is an environment that supports your continued growth as a cybersecurity professional.

Cybersecurity Manager Summary

The Cybersecurity Manager is a technical and strategic leader responsible for planning, designing, implementing, and managing security programs and technologies to protect VGM’s digital infrastructure. This role leads a team of direct reports and provides strategic guidance to cybersecurity engineers, ensuring alignment with VGM’s cybersecurity and risk management posture while supporting the smooth operation of networks and systems to prevent data loss and financial impact.

Reporting Accountability: Chief Information Security Officer

Working Location: Waterloo, IA (preferred). Candidates in other locations may be considered based on qualifications and business needs.
Work Hours Classification: Full-time, Monday- Friday 8-5pm + On-call as needed with periodic weekend deployments.

Key Responsibilities

Team Leadership & Strategy

• Mentor and develop cybersecurity talent, help set strategic direction aligned with our vision, and communicate priorities across the company

Security Operations & Incident Response

• Oversee day-to-day monitoring, proactively hunt for threats, and coordinate clear response when incidents occur, while building playbooks and readiness through regular drills

Governance, Risk & Compliance

• Develop and implement policies, support audit and compliance efforts, report on key metrics, and work with partners to manage vendor and third-party risk.

Technology & Innovation

• Evaluate and adopt emerging tools, drive scalable improvements, collaborate on secure implementation, and stay ahead of evolving threats.

Resilience & Continuity

• Lead planning and testing for disaster recovery and business continuity so our critical systems come back online quickly and securely.

Key Qualifications

• Bachelor’s degree in computer science, Information Security or related field preferred (advanced degree a plus, or equivalent experience).
• Professional certifications such as CISSP, CISM, CEH or equivalent are recommended; we support your pursuit of these credentials.
• 3-5 years of progressive cybersecurity experience; we welcome applicants who’ve led projects or small teams and those eager to grow into leadership roles.
• Strong foundation in security frameworks and standards (e.g. NIST, ISO) and familiarity with regulatory landscapes like HIPAA, GDPR, SOC, PCI; a willingness to learn what you don’t yet know.
• Comfort with scripting/automation and collaborating across IT, GRC and business units to mitigate risk and build resilience.
• Excellent communication skills and a desire to translate complex topics for varied audiences.
• Leadership experience a plus, passion for mentorship essential.

Physical Requirements

• Sitting at desk, standing, and walking in office and throughout facility.
• Operation of office machinery and equipment.
• Visual abilities to include reading, distance vision, and peripheral vision.

Who we are at VGM Group, Inc.

Headquartered in Waterloo, Iowa, VGM is a 100% employee-owned company providing business and professional services to thousands of business customers across North America. Services include group purchasing, commercial insurance, management of healthcare services and networks in post-acute cases, healthcare distribution direct to patient homes, specialty consulting, online education, digital, print, and traditional marketing and more. VGM employs approximately 1,700 people across 40 states and Canada, with more than 1,100 working in Iowa. VGM has been named the Top Workplace in Iowa on multiple occasions and is proud of its role in the communities in which it serves. For more information visit www.vgmgroup.com.

This job description reflects the general duties of the job but is not a detailed description of all duties which may be inherent to the position. Reasonably related additional duties may be assigned to the individual Associate.

VGM Group, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, pregnancy, national origin, disability, genetic information, military or veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.