Information Technology (IT) Manager, Cyber Security Services (CSS)
Ampcus Inc · Hampton, VA · 2 wk ago
On-siteInformation TechnologyFull-time
About the role
The Manager of Cyber Security Services (CSS) will be hands-on and responsible for managing Client’s information security and compliance related activities.
Responsibilities
- Utilizing a risk-based approach to manage information security related aspects of operations.
- Assuring compliance with information security, privacy, and industry standards and regulations.
- Designing, establishing, and maintaining reasonable organizational cyber security and information privacy postures.
- Implementing the NIST Cybersecurity Framework within the organization to improve cyber resilience.
- In coordination with key stakeholders, this position communicates, prepares for, and responds to geopolitical, international, and national cyber threats from an Agency perspective.
- This role is responsible for ensuring systems are secure, are compliant as per established regulatory frameworks, and audited as per established cadence.
Qualifications
- Bachelor’s degree in computer science, information technology, or related field.
- 10 years of experience in IT security, including 5 years in a management or lead role.
- Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) Certification or similar certification.
- Experience with a diverse body of technical cyber tools and software.
- In-depth knowledge of cyber security principles and best practices.
- Experience developing and implementing security policies and procedures.
- Demonstrated Experience in Network Engineering.
- Project management experience.
- Certification in CompTIA Security.
Skills
- Working knowledge with industry standards such as HIPAA, ITIL, NIST, SANS, COBIT, OWASP, and ISO.
- Own the entire IT audit process for SOC & PCI reporting across the enterprise.
- Leading vulnerability audits, forensic investigations, and mitigation procedures.
- Responding immediately to security-related incidents, leading response team, and providing post-event analysis.
- Evaluating new cybersecurity threat and IT trends and developing effective security controls.
- Evaluating potential security breaches, coordinating response, and recommending corrective actions.
- Maintaining compliance with security policies and procedures.
- Investigating security breaches and incidents.
- Coordinating incident response activities.
- Training and educating employees on security awareness.
- Managing security vendors and service providers.
- Taking a proactive role in the procurement process from the cyber security perspective.
- Managing department budget, participating in annual capital expenditures planning exercises.
- Managing records created and received in compliance with the Records Management Policies and Procedures.
Benefits
Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veterans or individuals with disabilities.