The Cyber Security Manager oversees the selection, development, implementation, monitoring, maintenance and enhancement of IDA’s cyber security systems and architecture. Provides strategic direction for the Cyber Security Office (CSO). Develops and administers security policies, procedure, and strategies.
This position supervises 8 staff members and administers the Cyber Security Office budget. #ITatIDA
- Manages Cyber Security Office (CSO) staff to ensure the functionality and security of all information systems. Use risk management based approach to cyber security management of applications, data, information systems, and networks.
- Develops IDA cyber security architecture and security systems operations, including cyber security software and hardware; ensures integrity of security systems architecture. Coordinates with third parties (outside vendors, security providers, etc.) to ensure security architecture is adequately tested and verified.
- Collaborates with commercial, industry, and government entities on cyber security incident preparedness and remediation, with industry partners on cyber security strategy and awareness, and with IDA research staff on task related cyber security issues.
- Initiates, implements and develops incident response plans and recovery programs; evaluates and obtains forensics tools; reviews intrusion and misuse detection reports, and provides guidance for corrective action.
Manages Cyber Security Monitoring including:
- Monitoring and analysis of cyber security alerts from cyber security tools, network devices, and information systems.
- Response and/or direction of the response to cyber security incidents.
- Analysis of indicators of compromise for use in detection and prevention.
- Reporting of risk posture of information systems.
- Collaboration with industry and government entities on threat intelligence.
Manages Media Forensics and Malware Analysis including:
- Network traffic and flow collection for analysis.
- Forensic analysis of information systems and portable devices.
- Forensic recovery of data using government and industry tools.
- Behavioral analysis of malware to provide indicators for monitoring.
Manages Information System Security Evaluation and Hardening including:
- Evaluation of new cyber security technologies to remediate vulnerabilities.
- Configuration and implementation of cyber security technologies.
- Validation of system hardening and provide guidance for security configuration based on best practices and DoD policy.
- Evaluation of network and system security configuration for best practices and risk based access controls.
Manages Cyber Security Training and Projects including:
- Development of employee awareness training for relevant cyber security trends.
- Evaluation of cyber security trends, tools and techniques for potential application to infrastructure and research areas.
- Information technology and cyber security projects.
- Manages, plans, and projects CSO budget.
- Performs other duties as required.
- Bachelor’s degree or higher in Computer/Electrical Engineering, Computer Science, Cyber Security, Information Assurance or related area; coupled with ten or more years’ experience working with Information Technology or related technical field; five or more years’ experience with Cyber/Information Security.
- Knowledge of Certification and Accreditation/Evaluation and Authorization process for government systems.
- Knowledge of forensic processes, evidence handling, and malware analysis.
- Ability to develop and assist in the implementation of Information Technology Security procedures and guidelines.
- Detailed knowledge of Cyber/Information Security technologies.
- In-depth understanding of networking and operating system configuration to provide Information Technology Security procedures and guidelines.
- Excellent written and oral communication skills, interpersonal skills, and the ability to interface with all levels of employees.
U.S. Citizenship is required
Ability to obtain and maintain a security clearance is required
Equal Opportunity Employer