Maryland.gov Phone Directory State Agencies Online Services

Job Seekers

PROGRAM MANAGER SENIOR IV

Director of Cybersecurity Operations

Recruitment #22-005485-0007

Department

DoIT Enterprise Information Systems

Date Opened

11/15/2022 11:59:00 PM

Filing Deadline

12/20/2022 11:59:00 PM

Salary

$102,920.00 - $165,780.00/year

Employment Type

Full-Time

HR Analyst

Cindy Mann

Work Location

Anne Arundel

Telework Eligible

Yes

Go Back View Benefits

Introduction

The Office of Security Management within the Department of Information Technology (DoIT) provides State agencies with a common statewide strategy for secure, effective, and technically sound use of the State's information technology resources. The Office is responsible for the establishment of Security Policies, Security Guidance, Security Awareness, and is a source of IT security information for State agencies.

GRADE

LOCATION OF POSITION

Dept. of Information Technology (DoIT)

100 Community Place

Crownsville, MD 21032

Main Purpose of Job

The Director of Cybersecurity Operations provides the Office of Security Management with cybersecurity, compliance, and regulatory management, leadership, and oversight regarding the State’s Security Operations Center (SOC), managed security services, system security administration, and vendor contracts. This position is critical in helping to achieve the State’s goal of securing the State systems and protecting the data of its citizens.

The Director of Cybersecurity Operations works under the direct supervision of the Director of State Cybersecurity. This individual will be responsible for making recommendations to State IT leadership and contractor personnel, both at DoIT and other agencies, on how to improve the security posture of the State of Maryland.

This position may require work outside of normal office hours and must be able to supervise and manage staff coverage during incidents seven days/week.

This position is 'Management Service' and serves at the pleasure of the Appointing Authority.

POSITION DUTIES

● Lead Office of Security Management’s

○ Security Operation Center (MD-SOC) team

○ Maryland Information Sharing and Analysis Center team (MD-ISAC)

○ Managed Firewall Team

○ Managed Security Services cross-agency delivery and implementation efforts

○ Security Awareness and Training Team

○ SOC Internship Program

● Coordinate with organizational stakeholders to ensure appropriate allocation and distribution of human capital assets.

● Perform research and analysis to identify and prioritize complex security and risk issues.

● Prescribe and oversee the development and training of employees, security staff, and IT operations staff.

● Collaborate on cyber privacy and security policies and procedures.

● Supervise or manage protective, corrective, or response measures when a cybersecurity incident or vulnerability is discovered.

● Lead and oversee information security budget, staffing, and contracting.

● Supervise and assign work to programmers, designers, technologists and technicians, and other engineering and scientific personnel.

● Monitor and evaluate the effectiveness of the enterprise's cybersecurity safeguards to ensure that they provide the intended level of protection.

● Lead and align information technology (IT) security priorities with the security strategy.

● Oversee the development of security requests and works with senior IT employees (CIOs and CISOs) of all executive branch agencies to understand and manage the requests through to approval or denial.

● Apply working knowledge of emerging cybersecurity threats, vulnerabilities, risks, and issues to evaluate and implement new technologies, capabilities, and applications to deliver on operational objectives related to ensuring the confidentiality, availability, and integrity of State data and systems.

MINIMUM QUALIFICATIONS

Education: Graduation from an accredited high school or possession of a high school equivalency certificate.

Experience: Five years of experience in each of the following areas:

Working with and advising executive-level stakeholders on cybersecurity issues, risks, threats, and vulnerabilities in a commercial or government environment.

Supporting or managing a security operations center (SOC) with cybersecurity incident responses within a cloud environment.

Supervising cross-functional teams to ensure adequate coverage, skill development, and successful service delivery.

Certification: Must be certified in one or more of the following:

Certified Information Security Manager (CISM)

Certified Information Systems Security Professional (CISSP)

GIAC Security Leadership Certification (GSLC)

Certified Chief Information Security Officer (CCISO) certification

DESIRED OR PREFERRED QUALIFICATIONS

Our preferred candidate will have the following:

Experience managing security operations in a Federal, State, or Local Government organization.

Working knowledge in creating or involvement with Federal, State, and Local laws, regulations, policies, and ethics related to cybersecurity, privacy, and compliance.

Experience managing next-generation intrusion prevention system (NGIPS) firewall implementations and configurations.

Experience implementing and configuring security controls and tools using a Defense-in-Depth enterprise architecture, addressing data, application, identity, endpoint, network, perimeter, email, and cloud security to effectively monitor, detect, and respond to emerging cybersecurity threats and protect against data misuse or breach.

Hands-on experience developing incident response plans and playbooks, responding to cybersecurity incidents, containing, and eradicating malicious activity, and remediating systems.

SELECTION PROCESS

Please make sure that you provide sufficient information on your application to show that you meet the qualifications for this recruitment. All information concerning your qualifications must be submitted by the closing date. We will not consider information submitted after this date. Successful candidates will be placed on the eligible (employment) list for at least one year.

EXAMINATION PROCESS

The evaluation may consist of a rating of your education, training, and experience related to the requirements of the position. It is important that you provide complete and accurate information on your application. Please report all experience and education that is related to this position.

BENEFITS

STATE OF MARYLAND BENEFITS

FURTHER INSTRUCTIONS

Online applications are highly recommended. However, if you are unable to apply online, the paper application and supplemental questionnaire may be submitted to: Department of Budget and Management, Recruitment and Examination Division, 301 W. Preston St., Baltimore, MD 21201. Paper application materials must be received in our office by the closing date for the recruitment. No postmarks will be accepted.

For questions regarding this recruitment, please contact the DBM Recruitment and Examination Division at Application.Help@maryland.gov or 410-767-4850, MD TTY Relay Service 1-800-735-2258.

We thank our Veterans for their service to our country.

People with disabilities and bilingual candidates are encouraged to apply.

As an equal opportunity employer, Maryland is committed to recruitment, retaining and promoting employees who are reflective of the State's diversity.

45 Calvert Street, Annapolis, MD 21401

300-301 West Preston Street, Baltimore, MD 21201

Toll Free (800) 705-3493