“The CISO will direct the Cybersecurity Office as the city’s principal executive leader for information and systems security. In partnership with the chief information officer (CIO), they will manage risk identification, protection and compliance, threat detection, incident response (IR), and recovery services for all city departments to ensure business resilience,” the job posting reads.
A successful candidate will come to the position with a bachelor degree in “computer science, management information systems, business/public administration, or a closely related field as well as seven years of increasingly responsible experience in cybersecurity application and infrastructure technology management, or telecommunications,” the posting reads.
In addition, applicants should have five years of “supervisory and project personnel management experience,” at least three years of which included “supervision experience in direct support of information security programs of significant scale and scope similar to a large government.”
In the Oct. 1 job posting, ITD also outlined the certification requirements, which include Certified Information Systems Security Professional (CISSP); Certified Information Systems Auditor (CISA); Certified Information Security Manager (CISM); Certified in the Governance of Enterprise IT (CGEIT); Certified in Risk and Information Systems Control (CRISC); or an equivalent professional, industry-recognized certification acceptable to the city. A successful candidate must also be able to get and keep secret security clearance.
Some of the key responsibilities for this position include:
- Lead and mentor the cybersecurity team
- Collaborate with business units and solution providers to provide optimal security measures
- Coordinate with stakeholders within the city and partners/vendors outside of the city to ensure information and systems meet standards for threat identification, protection and risk detection
- Develop, operationalize and enhance the city’s cybersecurity strategic plan, programs, policies and architecture
- Conduct training programs to educate city personnel on relevant security best practices
- Provide expert security guidance to city departments and officials
- Provide expert guidance on regulations and standards (FISMA, FedRAMP, CJIS, PCI-DSS, HIPAA, etc.) the city must meet in providing municipal services
- Oversee and lead incident management/response processes
Applications are due by 12 p.m. Oct. 28. Applicants that pass that review stage will be invited to interview for the position during the week of Nov. 18.
The full job description can be found here. More information about the position can be found here.
