Senior Director of Information Security
The Corporate Security Advisor/Information Security Senior Director serves as the senior strategic advisor in the area of Cybersecurity Operations and Enterprise Security Management for the Department. This position interfaces with the Department’s Chief Information Security Officer (CISO) and Senior Enterprise Security Management Team and provides advice, guidance and recommendations on IT security topics, policies and trends as well as IT security technological innovations. Serves in an advisory role guiding the Federal Customer on policy, implementation, and oversight of the Federal Department’s information systems security operation/program.Advises and supports the Department on how to secure the Department’s information systems by dealing with electronic threats and vulnerabilities, privacy issues, physical security, and operations continuity; applying security forensic technologies; monitoring network and systems management processes; maintaining security platforms with certification authority; and state-of-the-art security management products, tools, and offerings.The Corporate Security Advisor/Information Security Senior Director applies broad background in intrusion analysis, cyber threat intelligence analysis, security systems engineering, cyber data analytics, and incident response to the Department’s enterprise security challenges. Other responsibilities include:
- Provides leadership to the program and Federal Customer in a visionary, collaborative, and stake-holder-focused manner to leverage IT resources in order to improve the security of the Department’s information systems. Proposes IT policies, standards, and procedures related to information systems security. Advises senior management on major information systems security decisions. Advises/guides the assessment of information systems to ensure that appropriate security functions have been included in the systems design and architecture. Maintains current knowledge of relevant technology as assigned. Participates in special projects as required.
- A Master’s degree in Computer Science, Information Systems, Systems Engineering, or other related technical discipline.
- Certified Information Security Manager (CISM) or CISSP certification required.
- More than 20 years of cybersecurity/enterprise security management experience. A minimum of 10 years of program management experience.Must have an active Top Secret Clearance.Certified Information Security Manager (CISM) or CISSP certification required.Experience advising Federal Agencies or Customers on cybersecurity and enterprise security topics and trends, as well as providing guidance on security technological innovations.Experience providing security engineering, governance, and information risk management expertise to customers and federal systems service providers.Technical or managerial leadership on large-scale cybersecurity/enterprise operations. Able to design and develop sustainable and coherent security strategies and solutions aligned with customers’ business objectives and mission.Subject Matter Expert (SME) for Information Assurance and Cybersecurity with key collaborative efforts with Chief Technology Officer (CTO), Chief Information Officer (CIO) and Chief Information Security Officer (CISO) providing technical expertise and leadership, guidance and technology-driven vision across a Federal enterprise ensuring data and cybersecurity are strictly enforced.Successfully performs continuous research on emerging technologies/solutions that could either affect or enhance current technology security functions.Technical expertise in incident response, forensics, penetration testing, security architecture, vulnerability management, and risk management.Robust experience developing and implementing security architectures and programs to address advanced persistent threats (APT) and breach notifications resulting from exposed, protected personally identifiable information (PII) and other protected data.Experience providing security engineering, governance, and information risk management expertise to Federal Customers and Federal systems service providers.Ability to work across multi-disciplined teams.Effective written and verbal communications.