Cybersecurity Program Manager Job at InnovitUSA in Boise
InnovitUSA, Boise, ID, US
Job Description
Cybersecurity Program Manager
Boise, ID 83702
Hybrid
In Person interview
Candidate Must Be Local
Tax Terms: C2C,W2 And 1099
General Position Summary:
The Cybersecurity Program Manager is responsible for ensuring the CISO's strategy for protecting the Judiciary's networks, systems, and applications are effectively implemented. This position will assist with determining, analyzing, and proposing security requirements, policies, and technical solutions. This position will work as the liaison for the Information Division to other functional business units representing security concerns and initiatives. This position works under the direction of the CISO.
Major Duties and Responsibilities:
Assists with obtaining approval of security systems for the Idaho Courts;
Tracks and monitors the implementation of security policies and procedures;
Ensures tracking of personnel compliance with cybersecurity policies;
Works with AOC functional business units to track outstanding security compliance questions;
Ensures cybersecurity strategy, initiative, and solutions are effectively implemented;
Tracks proposed solutions and coordinates actions to mitigate system security threats and risks;
Assists with security product evaluation and recommendations to improve the Court's security posture;
Assist with leading and tracking the status of the development of security incident response plans and organizes incident response exercises and testing;
Assists with review and identification of root causes of security incidents, identifies and tracks corrective actions, risks, and future proactive/preventive actions;
Ensures vulnerability/risk management processes are being documented in order to improve vulnerability assessments, penetration testing, vulnerability remediation and compliance testing;
Ensures reporting and tracks vulnerability and threat trends, including metrics for tracking and analyzing vulnerability remediation efforts.
Minimum Qualifications:
The Judicial Branch reserves the right to consider an equivalent combination of education, training, and/or experience in determining whether an applicant is capable of performing the assigned duties and fulfilling the assigned responsibilities of this position.
Education and Experience
Five (5) years of experience in cybersecurity
Two (2) years of experience in a program management or leadership role;
Cybersecurity certifications such as CISSP, CISM, CISA, or equivalent, preferred;
Project Management Professional (PMP) or equivalent project management certification, preferred;
Experience with risk management, incident response, and threat assessment;
Familiarity with security tools and technologies (e.g., firewalls, intrusion detection systems).
Knowledge, Skills, and Abilities
Knowledge of enterprise security architecture and compliance principles;
Knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001);
Knowledge of infrastructure and application security design;
Knowledge of operating systems such as Windows, Windows Server, and VMware as well as Linux and Unix;
Knowledge of security compliance and risk management;
Knowledge of security awareness, education, and training programs;
Knowledge of application and operating systems security configuration and best practices;
Skill in communicating complex information in an understandable manner;
Skill in identifying complex issues and proposing feasible, cost-effective solutions;
Skill in project management, including planning, execution, and monitoring of cybersecurity initiatives;
Ability to work independently;
Ability to provide leadership to staff;
Ability to communicate effectively verbally and in writing, including developing reports and using metrics for illustration;
Ability to match system solutions to specific user requirements and functions;
Ability to develop and interpret complex policies and procedures;
Ability to display an attitude of cooperation and work harmoniously with all levels of court employees, the general public, and other organizations.