JOB
Cybersecurity Risk Manager
The Cybersecurity Specialist has a strategic role within the Division of Risk Management, acting as the bridge between technical IT vulnerabilities and
organizational risk strategy. We are seeking an abstract thinker capable of linking emerging external threats with current internal IT protocols and software. This position focuses on proactive risk analysis, risk transference, and the continuous monitoring of the City’s cyber-risk landscape.
EXAMPLE OF DUTIES
Typical duties performed, include, but are not limited to oversight of daily operations to ensure alignment with departmental objectives and organizational priorities. Dependent upon service area, may manage and direct staff to maintain efficient workflows, ensuring productivity and high-quality outcomes. Develop, implement, and evaluate operational strategies, procedures, and best practices to improve efficiency and effectiveness. Monitor performance metrics and identify opportunities for process improvement. Collaborate with leadership and cross-functional teams to support departmental initiatives. Perform other job-related duties as required.
SUPPLEMENTAL INFORMATION
Key Responsibilities-
Vulnerability & Threat Analysis: Identify potential cyber-related compromises, points of entry, and system vulnerabilities. Link external global threats to the City’s specific IT risk protocols.
-
Control Implementation: Establish, maintain, and test robust cybersecurity controls to safeguard municipal data.
-
KPI & KRI Management: Maintain rigorous tracking and reporting of Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs).
-
Supply Chain Risk: Identify and mitigate third-party supply chain risk vulnerabilities.
-
Risk Transference: Assist in the analysis and execution of risk transference strategies, including cyber insurance management and coverage alignment.
Qualifications
-
Education: Bachelor’s degree in information technology, Enterprise Risk Management, Accounting, Finance, or Business (with a specific emphasis on IT and Cybersecurity).
Driver’s License: Must possess a valid State of Ohio Driver’s License.
Preferred Qualifications & Requirements-
Experience: 3–5 years of professional experience in cybersecurity, risk analysis, or insurance.
-
Government Expertise: Prior experience working within a government or public sector environment is highly preferred.
-
Certifications: Possession of (or progress toward) relevant industry certifications such as CISSP, CISM, CISA, COSA, or CRISC.
-
Systems Knowledge: Familiarity with ERP systems and their integration into organizational workflows.
-
Interpersonal Skills: Exceptional ability to build and maintain interdepartmental relationships, translating complex technical risks into actionable insights for non-technical stakeholders
-
Strategic Thinking: Proven ability to manage complex projects with a "Finisher-style" approach to execution and tracking. Physical & Mental Requirements
-
Ability to think abstractly and solve non-linear problems.
-
High level of attention to detail for tracking and documentation.
The City's guiding principles are as follows: Placing Clevelanders at the Center, Empowering Employees to Do Purposeful Work, Defining Clear and Pragmatic Objectives, Leading with Trust and Transparency, Striving for Equity in All We Do, and Embracing Change. All City employees are responsible for embracing and carrying out these principles in all that they do. The City of Cleveland makes available a variety of benefit options depending upon your employment status and any applicable union membership. In general, benefit options include comprehensive medical, dental, vision, prescription medical and life insurance. Specific information regarding benefit eligibility will be discussed and reviewed at the time of hire