Client: State Of NY - Expert Security Manager in Albany, NY - Locals only

Hybrid in Albany, NY, US • Posted 7 hours ago • Updated 7 hours ago
Contract Independent
Contract Corp To Corp
Contract W2
30 Months
No Travel Required
Hybrid
Depends on Experience
Fitment

Dice Job Match Score™

⏳ Almost there, hang tight...

Job Details

Skills

  • Security

Summary

Published Description
Video Interview
Rate: $75/hr on C2C/ $67/hr on W2

Tech Valley Talent (TVT) is a HBITS PRIME Vendor, and we have an opening for an Expert Security Manager HBITS-08-14870
DURATION: 24 Months
LOCATION: Albany, NY – Hybrid
The incumbent will act as the Cybersecurity Manager for the DOT Transportation Safety Management and Operations (TSMO) Technology Program to lead our efforts in securing our integrated Information Technology (IT) and Operational Technology (OT) environments within transportation systems management and operations. This role is critical in protecting our critical infrastructure from evolving cyber threats, ensuring the safety, reliability, and efficiency of our transportation networks.
Qualifications
  • Security Manager - Monitors networks for security breaches and investigates violations when they occurs. Helps to design, implement, and maintain the organization's cybersecurity plan.
  • Expert- 84+ Months: Candidate is able to provide guidance to large teams and/or has extensive industry experience and is considered at the top of his/her field.
  • 84 months of experience in cybersecurity, with at least 3-5 years in a management or leadership role.
  • 84 months of experience in securing IT and OT environments, IT/OT convergence challenges and solutions specifically in the Transportation Systems Management and Operations.
  • 72 months of experience in developing and implementing cybersecurity strategies, policies, and procedures in IT and OT environments specifically in the Transportation Systems Management and Operations.
  • 60 months of experience with risk assessment methodologies and frameworks (e.g., NIST RMF, ISO 27001).
  • 60 months of experience with incident response, threat hunting, and digital forensics.
  • 60 months of experience with vulnerability management tools and processes.
  • 60 months of experience collaboration with cross-functional teams; and producing both written and verbal communication articulating security concepts to both technical and non-technical audiences
  • MUST hold at least one of these Certifications:
  • **CISSP
  • **CISM
  • **GIAC
  • **GICSP
Day-to-Day tasks                                            
  • Develop and Implement Security Strategy: Design, implement, and maintain a comprehensive cybersecurity strategy specifically tailored for IT/OT convergence in transportation systems. This includes risk assessments, vulnerability management, and incident response planning.
  • IT/OT Security Architecture: Oversee the design and implementation of secure IT/OT architectures, ensuring that security controls are integrated at all levels, from enterprise networks to industrial control systems (ICS) and SCADA environments.
  • Risk Management and Compliance: Conduct regular risk assessments of IT and OT systems, identify potential vulnerabilities, and develop mitigation strategies. Ensure compliance with relevant industry standards, regulations (e.g., TSA directives, NERC CIP if applicable, NIST frameworks), and best practices.
  • Threat Intelligence and Monitoring: Establish and manage a robust threat intelligence program to proactively identify and respond to emerging cyber threats targeting transportation infrastructure. Implement and oversee security monitoring tools and processes for both IT and OT environments.
  • Incident Response and Forensics: Develop and lead the incident response plan for cybersecurity events affecting IT/OT systems. Coordinate response efforts, conduct forensic investigations, and implement corrective actions to prevent recurrence.
  • Vulnerability Management: Implement and manage a comprehensive vulnerability management program for all IT and OT assets, including regular scanning, penetration testing, and patch management.
  • Security Awareness and Training: Develop and deliver cybersecurity awareness training programs for IT, OT, and operational staff, emphasizing the unique risks associated with IT/OT convergence.
  • Vendor and Third-Party Risk Management: Assess and manage the cybersecurity risks associated with third-party vendors and service providers who have access to or interact with IT/OT systems.
  • Collaboration and Stakeholder Management: Collaborate closely with IT, OT engineering, operations, and other relevant departments to ensure security is a core consideration in all system design, development, and operational activities. Communicate security risks and strategies effectively to senior management and stakeholders.
  • Budget Management: Develop and manage the cybersecurity budget for IT/OT convergence initiatives.
  • Stay Current: Continuously research and stay abreast of the latest cybersecurity threats, vulnerabilities, technologies, and best practices relevant to transportation and critical infrastructure.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 91172378
  • Position Id: 1062-44286-
  • Posted 7 hours ago
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Albany, New York

Today

Contract, Third Party

DOE

Hybrid in Albany, New York

Yesterday

Easy Apply

Contract

Depends on Experience

Albany, New York

Yesterday

Easy Apply

Contract, Third Party

Depends on Experience

Albany, New York

Yesterday

Easy Apply

Contract

Depends on Experience

Search all similar jobs