Cyber Security Operations Lead

Position: Cyber Security Operations Lead

Duration: 1 Year (onsite from day 1)

Location: Montgomery, AL

Responsibilities:

1. Develop and Oversee Security Programs

• Create and maintain an agency-wide IT security program.
• Ensure alignment with applicable regulations and industry best practices.
• Running point on all incident response.

2. Policy and Compliance

• Develop and enforce security policies, procedures, and control techniques.
• Ensure compliance with directives from the Office of Information Technology, Internal Revenue Service (IRS), Social Security Administration (SSA), and agency-specific requirements.

3. Risk Management

• Assess risks to information systems and data.
• Implement cost-effective measures to reduce risks to acceptable levels.

4. Incident Response

• Detect, report, contain, and mitigate cybersecurity incidents.
• Coordinate incident response efforts with the Agency's Safeguards Coordinator and federal entities like the IRS and SSA.

5. Continuous Monitoring

• Oversee automated and continuous monitoring of systems for vulnerabilities and threats.

6. Strategic Integration

• Ensure security processes are integrated into strategic, budgetary, and operational planning.

7. Collaboration

• Work closely with the Agency CIO, senior deputies, and staff to enhance security measures.
• Participate in inter-agency councils, such as the OIT Security Council, to align security strategies.
• There will be 6 staff that will directly report to this resource (System Administrators and mainframe security personnel).

Required Skills:

• 7 years- Experience in information security or related field including leadership role
• 7 years- Hands on experience in risk management, incident response, vulnerability assessment, security architecture
• 4 years- Experience in managing cybersecurity teams or IT security professionals
• 4 years- Experience in incident response, including detection, containment, and mitigation of cybersecurity threats
• 4 Years- Have you conducted regular vulnerability assessments for information systems?
• 4 Years- Have you applied risk management methodologies in compliance with industry standards?
• 3 Years- Experience developing security policies.

PREFERRED QUALIFICATIONS:

• Bachelor's degree in a relevant field.
• 7 10 years of experience in information security or a related field, including leadership roles.
• Hands-on experience in risk management, incident response, vulnerability assessment, and security architecture.
• Strong knowledge of infrastructure systems is a plus.
• Familiarity with NIST standards is a plus but not required.
• Relevant certifications in cybersecurity are a plus (e.g., CISSP, CISM, CISA).
• Familiarity with technologies such as Splunk, SolarWinds, and Azure Arc is desirable.
• Firewall knowledge is a plus.