JOB The Cybersecurity Operations Lead supports the County’s overall cybersecurity infrastructure and operational effectiveness through cybersecurity preparedness, threat prediction and detection, incident response and recovery, effective cybersecurity governance, policies, processes, and guidance throughout the local government EXAMPLE OF DUTIES
- Manage, lead, and develop a team of technical IT professionals
-
Manage and prioritize tasks and projects to ensure deadlines are met and resources are allocated effectively.
-
Protect Racine County information, intellectual assets, and business operations from accidental or intentional disruption, disclosure, or destruction.
-
Conceptualize, design, and/or build secure information technology (IT) systems, with responsibility for system and/or network development per reference architectures, configuration standards, compliance requirements and cybersecurity best practices as it relates to external and internal security.
-
Perform highly specialized review and evaluation of incoming cybersecurity information to determine its usefulness for intelligence.
-
Manage the collection and analysis of information from various applications, endpoints, and network sources to identify vulnerabilities and potential for exploitation while taking a risk-based approach when determining what gaps to address.
-
Conduct assessments of threats and vulnerabilities and develop and/or recommend appropriate mitigation countermeasures.
-
Involved in developing, modifying, and executing company policies and procedures that affect cybersecurity operations and ensure compliance with applicable standards and regulations.
-
Keep leadership updated to maintain awareness of the cybersecurity operating environment. Collect, process, analyze, and disseminate cyber threat/warning assessments to County personnel.
-
Develop/plan and execute regular incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
-
Development and maintenance of Incidence response plan.
-
IDS monitoring and analysis, analyze network traffic, log analysis, prioritize and differentiate between potential intrusion attempts, and false alarms.
-
Monitor and process responses for security events on a 24x7 basis.
-
Assist in developing security awareness materials, security presentations, and information security training sessions.
-
Other duties as required
SUPPLEMENTAL INFORMATION
- Candidate must have good analytical and creative problem-solving skills
-
Must be customer focused and demonstrate initiative
-
Keep up to date with current software and hardware network security threat
-
Understanding of the RMF and NIST CSF (800-53)