Job Seekers, Please send resumes to resumes@hireitpeople.comShort Description:
Works within DTMB’s Michigan Cyber Security (MCS) to provide relationship management, communication, awareness, and oversight to State of Michigan Agencies for some key strategic programs including Vulnerability Management and Analytics.
Complete Description:
Years of Experience: 10 years of experience in the field.
Job Description:
- Builds and maintains key relationships with State of Michigan Agency leaders and managers for key strategic programs, specifically Vulnerability Management and Analytics.
- Ensures stakeholders are educated on the scope, expectations and impacts of key strategic programs and holds them accountable.
- Coordinates stakeholders, facilitates governance routines and provides program oversight.
- Develops and owns the communication plans with the Agencies for various key initiatives.
- Strategizes and plans the program(s) based on best practices and security frameworks.
- Supplements the traditional project team with higher level communications, awareness and relationship management.
- Outlines and facilitates change management
- Collects and communicates key metrics on program progress.
- Assists in resolving high level issues and outlines critical risks in key strategic programs.
- Develops and delivers the operational transition plans for the technology and platforms for Vulnerability Management.
Familiarity and work experience (required) leveraging NIST Moderate and CIS Controls that address Vulnerability and Asset Management (The NIST Framework for Improving Critical Infrastructure Cybersecurity calls out the CIS Controls as one of the “informative references” – a way to help users implement the Framework using an existing, supported methodology. Survey data shows that most users of the NIST Cybersecurity Framework also use the CIS Controls.).
Responsibilities include:
Communication with Senior management including, but not limited to, DTMB’s Michigan Cyber Security (MCS), Infrastructure & Operations and Agency Services to implement the respective programs and develop integrated workplan for their organizations.
- Organize and chair the respective program Steering Committee
- Align, and work with, the EPMO Project Manager on process, deliverable and QA.
- Act as the MCS Lead for what is referred to as a cross-functional “Operational Excellence” (OpEx) program for year
- Eliminate remediation deficit
- Establish and refine scanning and remediation windows and processes
- Establish and refine false positive reporting and close-out
- Establish and refine reporting requirements and dashboards
- Establish and refine Tenable platform requirements and configuration
- Include bi-weekly “office hours” workshops for problem resolution.
Skill | Required / Desired | Amount | of Experience |
Familiarity and work experience leveraging NIST Moderate Controls (addressing Vulnerability Management & Asset Management) | Required | 3 | Years |
Familiarity and work experience leveraging CIS Controls (addressing Vulnerability Management & Asset Management) | Required | 3 | Years |
Proven expertise in NIST Cybersecurity Framework | Required | 5 | Years |
Professional Experience in Large Information Technology environments | Required | 10 | Years |
Professional Experience in IT Security | Required | 5 | Years |
Experience as Manager Director with direct reports | Required | 5 | Years |
Experience in the IT or Security Consulting Field | Highly desired | 5 | Years |
Bachelors or Masters Degree in Computer Science, Information Systems, Business or Engineering | Required | 4 | Years |
