Job Description
This managing level position manages the development, implementation and maintenance of assigned ITRM process and/or serviceportfolio by influencing leadership in the development of the ITRM strategy. This role is responsible for managing team members,resources, schedules, and task assignments in multiple ITRM service delivery and engagements. This position also organizes overallplans for the execution of ITRM compliance assessments and consulting projects, monitoring the progress of ongoing assessmentsand projects and driving the design and implementation of appropriate controls through the sustainment phase.
This manager level position leads members of the Cyber Security Testing Services (CSTS) who perform and consult on cyber and risk assessments against our assets. This position is responsible for managing team members, resources, schedules, and task assignments in executing multiple cyber service delivery engagements to guide individual performance and team effectiveness to meet organizational goals and objectives. This managing level position manages team and project resources toward the development, implementation and maintenance of assigned cyber assessment process and/or service portfolio by influencing leadership in the development of the assessment strategy. This role facilitates a closed loop processes on assessment efforts by providing feedback to CSTS members, leadership, and key stakeholders. The manager will also support employee development and providing input to core and investment budgets.
As a CSTS leader, this position is a key partner in the assessment processes, including intake, discovery, assessment, reporting and consulting/analysis activities. This role also leverages partnerships with other teams and leadership to ensure the identification and resolution of issues, improvement areas, or security/architectural gaps.
Essential Responsibilities
- Manages individuals by developing individual development and training plans, assisting with skills development and improvement, monitor individual performance, and leverage feedback and performance appraisal processes
- Establish, drive, and track team effectiveness to meet team goals, alignment with organizational objectives, performance targets, and other criteria established by leadership
- Manage team administrative tasks including on-boarding, shift scheduling, knowledge management, training and exercise participation, audit/compliance support, investment project support, and team business continuity/disaster recovery planning
- Translate business plans into tactical action items; overseeing the completion of work assignments; building accountability for and measuring progress in achieving results; identifying and addressing improvement opportunities; removing obstacles that impact performance; and guiding performance and developing contingency plans accordingly.
- Ensures cyber security team(s) proactively monitor and/or respond to known or emerging threats against the enterprise
- Pursues professional growth and provides developmental opportunities for others by soliciting and acting on performance feedback; building collaborative, cross-functional relationships; training and developing talent for growth opportunities; delegating tasks and decisions; fostering open dialogue amongst team members; supporting execution of performance management guidelines and expectations; and working closely with employees to set goals and provide open feedback and coaching to drive performance improvement.
- Effectively communicates investigative findings to non-technical audiences.
- Oversees regular operations meeting with organizational teams as needed.
- Provides guidance and feedback on continuous improvement to CSTS members and/or leadership.
- Manages information fusion procedures across operations and engineering, including activities such as Use Case planning/ development, Use Case quality assurance validation, and response procedure documentation.
- Manages partnerships between stage teams and upper management to ensure the identification and resolution of issues, improvement areas, or security/architectural gaps.
- Assists with the development of process or procedure improvements, consulting on training sessions, and assisting with the development of new training documents.
- Builds partnerships with key teams to foster collaborative approaches for improving cybersecurity posture.
- Ensures the proper deployment of incident response plans which may include after-hours support and coordination amongresponsible teams.
- Partners and establishes productive, effective working relationships with multiple key stakeholders, working cross-functionally across departments, functions, or business lines.
- Clearly and concisely communicates verbally and in writing. Speaks up by offering input and suggestions, asking questions and raising concerns.
- Communicates goals, monitors progress, and manages people and resources to achieve quality outcomes for the team.
- Gives direct, constructive feedback to improve team performance and grow capability.
- Ability to learn new applications to support the execution of team business objectives.
- Pursues professional growth and provides developmental opportunities for others by soliciting and acting onperformance feedback; building collaborative, cross-functional relationships; training and developing talent for growthopportunities; delegating tasks and decisions; fostering open dialogue amongst team members; executing performance management guidelines and expectations; and working closely with employees to set goals and provide open feedback and coaching to drive performance improvement
- Manages designated work unit by translating business plans into tactical action items; ensuring all policies and procedures are followed; delegating tasks to meet goals and objectives; overseeing the completion of work assignments; aligning team efforts; building accountability for and measuring progress in achieving results; identifying and addressing improvement opportunities; removing obstacles that impact performance; and guiding performance and developing contingency plans accordingly
- Manages the development, implementation and maintenance of assigned ITRM process and/or service portfolio by influencing leadership in the development of the ITRM strategy; ensuring the development and implementation of efficient, effective, measurable, and sustainable ITRM processes and controls within the governance framework; and managing team members in the development and implementation of performance metrics and measurement tools.
- Organizes plans for the execution of ITRM compliance assessments and consulting projects by monitoring the progress of ongoing assessments and projects; performing quality control and review of project deliverables; managing intake, planning and coordination activities for new or revisions to technology systems or services; and driving the design and implementation of appropriate controls through the sustainment phase.
- Manages the delivery of multiple ITRM service delivery and engagements by managing multiple workstreams, including stakeholder communications and team mentorship; managing and monitoring financials of assigned ITRM service delivery and engagements; and managing the allocation of resources, schedules, and task assignments.
Minimum Qualifications
- Bachelor’s degree in Business Administration, MIS, Information Security, Computer Science, Social Science, Mathematics, Arts, or related field and Minimum six (6) year’s experience in IT or a related field
- Additional equivalent work experience of three years of work experience may be substituted for degree requirement, in addition to minimum years of experience (9 years total)
- Minimum three (3) years in a leadership role working with project or technical teams.
- Minimum two (2) years in information security or Information technology governance or similar
Preferred Qualifications
- Two (2) years supervisory experience managing cross-functional teams
- Three (3) years’ experience working with information systems and security technologies.
- Two (2) or more cybersecurity certifications (Security+, CISSP, CISA, etc.).
- Two (2) years of work experience in a role requiring interaction with senior leadership (e.g., Director level and above)
- Three (3) years’ work experience requiring the development of technical documents or presentations.
- Master’s degree in business administration, MIS, Information Security, Audit, or related field, or related field.
- Two (2) years managing Information Technology projects
Benefits
- Transportation.
- Life insurance.
- Medical insurance.
- Solidarity association.
- Growth plans.
- Additional days off
M2