Directs a large technology-based office responsible for cybersecurity; plans, organizes, supervises, and evaluates all activities, program functions, personnel, and physical and fiscal resources of the assigned office; identifies, evaluates, and reports on information security risks in a manner that meets all compliance and regulatory requirements; translates complex IT risk requirements and constraints of the Division into technical control requirements and specifications; is responsible and accountable for highly visible strategic planning and outcomes; develops metrics for ongoing performance measurement and reporting; reviews and develops security policies and procedures that provide system and application protection and balances security needs with the Division Strategic Plan. To view the major duties/essential functions of this position, view the job specifications on the FCPS website.
Any combination of education and experience equal to a master's degree in computer science, information technology, or a field appropriate to assignment. Seven years of progressively more responsible experience in information technology, five years of which shall have been in information security, and three years in information security architecture. Three years in a supervisory capacity. Experience and expertise in technology implementation and integration in one or more of the following: Identity and access management, cloud security, endpoint security, data protection, network security, and application security. Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM), or other relevant industry certifications. Knowledge of principles, practices, and procedures relating to industry security standards. Knowledge of NIST Cyber Security Framework and Center for Internet Security (CIS) Critical Security Controls. An understanding of system internals and network protocols. Expertise in application technology security testing (white box, black box and code review). Expertise in system technology security testing (vulnerability scanning and penetration testing). Familiarity with the principles of cryptography and cryptanalysis. Effective interpersonal and conflict management skills. Knowledge of applicable local, state, and federal laws related to IT security framework. Ability to adapt to ever-changing IT landscape and new security technologies and strategies. Ability to align IT security priorities and plans with key business objectives to balance real-world risks with drivers such as speed, agility, flexibility and performance. Ability to manage numerous information sources and provide regular data analysis reports. Ability to set, communicate, and assess program priorities and performance standards. Ability to manage, supervise, motivate, lead, and challenge a team. Ability to work with various IT teams and members of other division teams. Proficiency in the use of technology and data compilation, analysis, and reporting. Ability to facilitate meetings and/or present information to groups. Ability to absorb complex technical information and communicate effectively with technical and non-technical audience, both orally and in writing.
Interested candidates should apply online:
Equal Opportunity Employer