Share this Job

Cyber Security Manager

Date: Apr 28, 2019

Location: Lancaster, PA Pennsylvania, US, 17603

Apply now »

You’ll see it in the vibrant colors of your school hallway, doctors and nurses will walk it while caring for your loved ones, your family will gather on it while creating everlasting memories.  We are North America’s largest producer of resilient flooring products and our mission is to inspire great spaces.


That’s us. That’s Armstrong Flooring.



Community & Philanthropy: We have a heritage of investing millions of dollars in programs that enhance the neighborhoods where we live and work. Additionally, we’re proud that our employees regularly and willingly give of their time and talents to support the efforts of local organizations

Sustainability: Armstrong Flooring has a long-standing reputation for sustainable innovation, starting with using cork waste to make linoleum floors over 100 years ago. We continue to develop products that have lower environmental footprints, and in some cases, reduce the environmental footprints of the buildings where they are installed.




Who you’ll be working with:

  • Reporting directly to the SVP & CIO
  • Directly responsible for one Architect/Analyst and indirect responsibile for additional 5-20 individual contributors and contractors
  • You'll functions as a liaison with both business and technical resources in infrastructure and network


How you’ll contribute to the team:

  • Build an IT brand within all levels of the organization
  • Develop and deliver a portfolio of IT Security Management Programs that supports our business objectives
  • Define, design and deliver IT security that takes into consideration business unit strategic goals, internal customer needs, and the overall technology strategy
  • Establish a Cybersecurity Governance program with the following objectives:
    • Ensure that the organization's risk posture, with respect to information security, is within the defined risk tolerance
    • Ensure alignment of information security policies, principles and personal accountabilities with both business objectives and other relevant policies
    • Provide input on proposed significant information security projects and to provide feedback on their success and realized benefits.
    • Provide Information Security awareness, education and training to employees to ensure an understanding of their role in protecting organizational data and systems
  • Execute the IT Security Program to protect Armstrong Flooring data and critical information technology resources from a wide range of threats in order to ensure business continuity, minimize the business risk, and maximize return on investments and business opportunities
  • Develop and enhance an up-to-date information security management framework based on the NIST Cybersecurity Framework. Identifying and proposing projects/initiatives on an annual basis to improve the organizations security posture.
    • Develop an information security vision and strategy that is aligned to organizational priorities and enables and facilitates the organization's business objectives, and ensure senior stakeholder buy-in and mandate
    • Develop and maintain information security process metrics to demonstrate the effectiveness of the controls put in place.  Track key performance indicators to drive ongoing improvements in service delivery
  • Complete security assessments for new and existing applications and services that will integrate into the IT systems and/or provide services for the organization
  • Maintain existing and define new information security policies as required
  • Oversight and management of the Vulnerability Management Program for devices and applications that support the business
  • Manage and contain information security incidents and events to protect organization assets, intellectual property, regulated data and the company's reputation
    • Coordinate the development of implementation of incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event; provide direction, support and in-house consulting in these areas
  • Create a risk-based process for the assessment and mitigation of any information security risk in your ecosystem consisting of supply chain partners, vendors, consumers and any other third parties
  • Regularly evaluate industry trends, changes, innovations, and maturity to recommend and plan the introduction of new technologies.  Stay abreast of technological developments to provide business partners with best in class economics for necessary infrastructure
  • Budget, track and allocate IT security costs to align with strategic objectives and improve cost transparency for business stakeholders
    • Provide guidance, input, and management of direct and indirect budget spending
  • Collaborate with multiple technology architecture and engineering teams to tie technology investments and process improvement to the business experience of services
  • Oversee the selection testing, deployment, and maintenance of security hardware and software products as well as outsourced arrangements
  • Lead and coach IT delivery resources to manage project scope and issues, to result in successful project implementations and program delivery
  • Manage the organizations IT security staff and consultants/contractors that support the IT Security Management Program
  • Define and facilitate the processes for information security risk and for legal and regulatory assessments, including the reporting and oversight of treatment efforts to address negative findings
  • Directs and responds to security audits, vulnerability assessments, and related tasks
  • Support operational and functional areas of compliance, including all SOX regulatory requirements for the organization
  • The role will serve as the chair of the Cybersecurity Governance Committee
  • Serve as one of the key organizational representatives when dealing with law enforcement agencies while pursuing the sources of systems or data breaches


What you’ll bring to the table:

  • Bachelor’s degree or equivalent combination of education and experience in Computer Science, Engineering or a related field
  • 5+ years of recent experience as a manager or team leader in the information technology field
  • 8-10 years of business analysis or management experience; 3-5 years in cybersecurity
  • Strong technical grasp of SAP or similar ERP system preferred in a manufacturing environment
  • Desired certifications would include Certified Information System Security Professional (CISSP), Certified Information System Auditor / Manager (CISA / CISM)
  • Working experience of organizational and management practices as applied to the analysis and evaluation of security programs, policies, and operational needs
  • Working experience with security information management (SIM) and governance, risk and compliance (GRC) tools
  • Knowledge of pertinent Federal, State and local laws as well as other industry specific compliance requirements such as PCI


We’ll be excited if you have:

  • Certification in a process discipline (ITIL, PMI, Six Sigma) or technical discipline (Information Security, SAP)
  • Experience with DLP, IRM and MDM/EMM security solutions


At Armstrong Flooring, every employee has a development plan and discussions around career growth. We have many long-tenured employees with diverse career paths. We offer the following opportunities to promote a growth culture:


On-the-job training

 Tuition reimbursement

 Online learning

 Instructor lead courses

Job shadowing



Competitive medical, dental and vision plans

401k with company match

Health Savings Accounts

Flexible Spending Accounts

Ability to purchase additional vacation

Employee discoutn program

Paid holidays

Employee Assistance Program

Mothers Rooms



Company celebrations
Family picnics
Department gatherings
Casual work environment


In addition, our world headquarters office offers:

Campus-like environment

3 mile wooded walking path

Fitness Center

Lunchtime Café

Disc golf, volleyball, bocce ball



Equal Opportunity Employer: Armstrong Flooring is an Equal Opportunity Employer M/F/Disabled/Vets


Notice to Staffing Agencies, Placement Services, and Professional Recruiters

Armstrong Flooring, Inc. has an internal Staffing Department. Recruiters are hereby specifically directed NOT to contact Armstrong Flooring employees directly in an attempt to present candidates.

Armstrong Flooring will not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to Armstrong Flooring, including unsolicited resumes sent to an Armstrong Flooring mailing address, fax machine or email address, directly to Armstrong Flooring employees, or to Armstrong Flooring’s resume database will be considered Armstrong Flooring property. Armstrong Flooring will NOT pay a fee for any placement resulting from the receipt of an unsolicited resume. Armstrong Flooring will consider any candidate for whom a Recruiter has submitted an unsolicited resume to have been referred by the Recruiter free of any charges or fees.

Armstrong Flooring partners with Scout for all direct hire search firm activity. 

 Armstrong Flooring has a partnership with Scout for all of our direct hire search firm activity and as such, all inquiries and resumes must be submitted through Scout. Scout is an easy to use recruitment marketplace integrated within Bullhorn, PCRecruiter or accessible via Scout Connect. Accordingly, we respectfully ask agencies not to solicit our business managers or Talent Acquisition team directly and to reach out to Scout at

Nearest Major Market: Lancaster

Job Segment: Engineer, Consulting, ERP, Computer Science, SAP, Engineering, Technology

Apply now »