Cybersecurity and Trade Compliance Manager

Kensington Electronics, Inc. is seeking a Cybersecurity and Trade Compliance Manager to help develop, manage, and strengthen our cybersecurity, information security, and trade compliance programs.

This is a cross-functional role for someone who understands both risk and business operations. The ideal candidate is practical, organized, detail-oriented, and comfortable working across departments, outside IT providers, software vendors, customers, and leadership.

Kensington Electronics serves high-reliability and mission-critical markets, including aerospace, defense, medical, industrial, and advanced technology applications. This position will play an important role in protecting company systems, sensitive information, customer data, and compliance-related processes as the company continues to grow.

Due to the nature of Kensington Electronics’ customer base, systems access, and regulatory environment, this position may require access to export-controlled information, technical data, systems, or materials subject to U.S. export control laws and regulations, including the International Traffic in Arms Regulations (ITAR) and Export Administration Regulations (EAR). Eligibility for this role may therefore be limited to individuals who meet applicable U.S. export control authorization requirements and company compliance standards.

Responsibilities

Cybersecurity and Information Security

The Cybersecurity and Trade Compliance Manager will help develop, implement, and maintain cybersecurity policies, procedures, and internal controls. This includes assessing risk across company systems, endpoints, email platforms, cloud applications, ERP systems, website infrastructure, and third-party vendors.

Responsibilities include:

• Managing controls related to user access, permissions, password standards, multi-factor authentication, endpoint protection, backups, disaster recovery, and secure data handling
• Coordinating with outside IT providers, software vendors, ERP partners, website partners, and other service providers
• Identifying, documenting, investigating, and responding to cybersecurity incidents, suspicious activity, vulnerabilities, and control gaps
• Maintaining and testing incident response, business continuity, and disaster recovery procedures
• Developing and administering employee cybersecurity awareness training, including phishing, social engineering, password hygiene, and data protection practices
• Supporting customer, supplier, insurance, and contractual cybersecurity questionnaires, assessments, and compliance reviews
• Maintaining cybersecurity documentation, including risk assessments, audits, corrective actions, vendor oversight, and incident records
• Recommending practical improvements to reduce cybersecurity risk while supporting business continuity and operational efficiency

CUI, CMMC, and Security Compliance

This role will support Kensington’s cybersecurity compliance posture related to Controlled Unclassified Information, CMMC readiness, NIST SP 800-171-aligned controls, and customer or contract-driven security requirements.

Responsibilities include:

• Developing and maintaining policies and procedures for the handling, storage, transmission, and protection of sensitive or regulated information
• Supporting CMMC readiness activities and related customer or contractual cybersecurity requirements
• Assisting with documentation and maintenance of security controls aligned with NIST SP 800-171, where applicable
• Maintaining records related to security practices, gap assessments, remediation tracking, and compliance activities
• Helping ensure appropriate access restrictions, user controls, and secure handling procedures are in place for systems or processes involving sensitive data
• Coordinating with outside consultants, advisors, and service providers as needed

Trade Compliance

The Cybersecurity and Trade Compliance Manager will also help manage and improve Kensington’s trade compliance program.

Responsibilities include:

• Developing and maintaining procedures and internal controls for trade compliance
• Supporting compliance with U.S. import/export laws and regulations, including export controls, sanctions, customs documentation, tariffs, and recordkeeping
• Reviewing and maintaining documentation related to HTS codes, ECCN information, country of origin, product classifications, and other trade compliance data
• Supporting denied party and sanctions screening processes for customers, vendors, and other counterparties
• Reviewing supplier tariff charges, pass-through costs, and supporting documentation
• Monitoring regulatory changes, tariff developments, and trade compliance risks affecting the business
• Maintaining organized trade compliance records, certifications, statements, and supporting files
• Providing trade compliance guidance to purchasing, sales, operations, finance, and leadership

ITAR and Export-Controlled Data

This position will support compliance related to ITAR-controlled technical data and other export-controlled information, where applicable.

Responsibilities include:

• Helping establish and maintain procedures for access restriction, handling, storage, recordkeeping, and transmission of ITAR-controlled technical data
• Supporting processes related to U.S. person and foreign person access considerations
• Assisting with data-sharing restrictions and export-control-related handling requirements
• Coordinating with leadership and outside advisors on export-controlled data, licensing considerations, and related compliance matters
• Ability to satisfy applicable export control, customer, and company authorization requirements associated with access to controlled systems, technical data, and regulated information, where required by the position.

Cross-Functional Risk Management

This role will partner with leadership and department managers to identify operational, compliance, and security risks and develop practical mitigation plans.

Responsibilities include:

• Conducting internal reviews and periodic risk assessments
• Identifying process gaps, documentation deficiencies, and control improvement opportunities
• Supporting due diligence efforts, internal reviews, insurance applications, customer audits, vendor reviews, and compliance inquiries
• Reviewing contracts, customer requirements, vendor requirements, and related documents from a cybersecurity and trade compliance perspective
• Preparing reports, summaries, metrics, and recommendations for leadership
• Helping build scalable, documented processes that support company growth, customer confidence, and operational discipline

QualificationsRequired

• Bachelor’s degree in Cybersecurity, Information Systems, Business, Supply Chain, International Trade, Operations, or a related field preferred
• Minimum of 5 years of relevant experience in cybersecurity, IT risk, trade compliance, import/export compliance, information security, or a related business risk role
• Working knowledge of cybersecurity controls, including access management, endpoint protection, phishing prevention, backup and recovery, incident response, and vendor risk management
• Working knowledge of U.S. import/export compliance concepts, including customs documentation, tariffs, denied party screening, export controls, and record retention
• Strong analytical, organizational, and documentation skills
• Strong written and verbal communication skills
• Ability to handle confidential and sensitive business information with discretion
• Ability to work independently, exercise sound judgment, and collaborate effectively across departments

Preferred

• Experience in electronics, manufacturing, industrial, distribution, aerospace, defense, medical, or high-reliability product environments
• Experience supporting small to mid-sized businesses without large internal legal, compliance, or IT departments
• Familiarity with customer or contractual cybersecurity requirements in aerospace, defense, medical, industrial, or test and measurement markets
• Experience with or working knowledge of ITAR, Controlled Unclassified Information, CMMC, and NIST SP 800-171 requirements
• Experience responding to customer cybersecurity assessments, supplier compliance requests, or trade compliance questionnaires
• Professional certifications such as CISSP, CISM, Security+, or trade compliance-related credentials are a plus

Ideal Candidate

The ideal candidate is someone who can translate technical, regulatory, and contractual requirements into practical business procedures. This person should be comfortable working in a hands-on environment, building processes, documenting controls, coordinating with outside providers, and helping a growing company strengthen its risk and compliance posture.

This is a good fit for someone who enjoys both strategy and execution, can communicate clearly with non-technical teams, and has the judgment to balance compliance requirements with real-world business operations.

Work Environment

This position is primarily performed in an office environment with routine use of computers, business systems, phones, and standard office equipment. Occasional interaction with vendors, service providers, auditors, customers, and regulatory-related documentation may be required.

Pay: $80,000.00 - $100,000.00 per year

Benefits:

• 401(k)
• 401(k) matching
• Dental insurance
• Health insurance
• Health savings account
• Life insurance
• Paid time off
• Vision insurance

Application Question(s):

• This position requires access to ITAR-controlled technical data and/or products. Are you a “U.S. Person” as defined under ITAR, meaning a U.S. citizen, U.S. lawful permanent resident, or protected individual under 8 U.S.C. § 1324b(a)(3)?

Ability to Relocate:

• Austin, TX 78758: Relocate before starting work (Required)

Work Location: In person