Cybersecurity Director - Baltimore, MD

Cybersecurity Director - Baltimore, MD

Join to apply for the Cybersecurity Director - Baltimore, MD role at VetJobs

2 days ago – Be among the first 25 applicants

All positions are onsite unless otherwise stated.

Purpose

Responsible for strategic direction of cybersecurity programs and monitoring of programs to ensure that risks associated with corporate systems and processes are anticipated, recognized, and appropriately managed and mitigated. This role requires the ability to work cross‑functionally with IT teams and key stakeholders, delivering clear recommendations to improve results. Responsible for planning, developing, mentoring, leading and monitoring work of the department and its management.

Essential Functions

• Partner with internal and external groups that periodically assess control effectiveness to ensure that these assessments are conducted in a smooth and efficient manner and that any issues and exceptions identified in the operation of controls are promptly and enduringly corrected.
• Develop and maintain strategy and approach for improving efficiency and value add of the team. Ensure organizational procedures are aligned to maintain compliance with industry standards, contractual and regulatory requirements. Act as a trusted advisor to business and technology leadership on the design and effective operation of controls.
• Work with senior and executive leadership to determine long‑range goals and develop action plans for implementation. Determine and pursue courses of action essential in obtaining desired organizational results. Take calculated risks.
• Represent the organization as the primary contact. Interact with management and senior value‑chain partners on matters requiring coordination across organizational lines. Influence others both internally and potentially externally. Hold internal and external stakeholders accountable for cybersecurity effectiveness and make recommendations for improvement as appropriate.
• Direct managers and other subordinate staff members in the day‑to‑day operations of cybersecurity.

Supervisory Responsibility

• This position manages people.

Required Knowledge, Skills and Abilities (KSAs)

• Ability to multitask and manage multiple IT vendor relationships.
• Ability to lead and work as part of a team.
• Ability to execute technology and tool automation processes.
• Deep knowledge of risk treatment and mitigation strategies.
• Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity.
• Thorough understanding of cyber threats and vulnerabilities.
• Must be able to meet established deadlines and handle multiple customer service demands from internal and external customers, within set expectations for service excellence. Communicate effectively and provide positive customer service to every internal and external customer, including those who may be demanding or challenging.

Qualifications

Education Level

• Bachelor's Degree in Computer Science, Information Technology, or related field OR, in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.

Experience

• 8 years related professional experience. 3 years management experience.

Preferred Qualifications

• Master's degree.
• Knowledge and work experience managing resources using several of the following frameworks/regulations: NIST 800‑53 Rev. 4/5, HIPAA Security and Privacy Final Rule (45 C.F.R. Part 164), NIST 800‑171, HITRUST, FedRAMP, SOC Reports, NIST CSF, NIST RMF, CIS benchmarks, CIS Top 20, CCM, COBIT, CMMC, CMMI, ISO 27001.
• Various privacy frameworks: GDPR, CCPA, others.
• Knowledge of System Security Plans based on NIST 800‑171, 800‑53, and FedRAMP.
• Experience managing staff responsible for cybersecurity and privacy risk assessments, risk exception and acceptance requests.
• Familiarity with SIG, SOC2 Type 2, and other security attestation documents and software systems to support vendor assessments and third‑party risk management.
• Skilled at working with a variety of stakeholders (internal and external) to influence change, understand and assess cybersecurity strengths, weaknesses, and gaps in adherence to controls, and deliver solutions addressing identified security coverage gaps with a proven ability to deliver desired results.
• Disciplined and seasoned in change management practices.
• Cybersecurity business and systems subject‑matter expertise in Application Security, Data Security, Data Governance, and Network Security domains.
• Experience with responding to internal and external audit requests, working with, and communicating to auditors and assessors.
• Experience with cybersecurity‑specific risk registers and analyzing risks to the organization on a cost/benefit basis.
• Experience with GRC or ITRM systems.
• Excellent written skills to develop, review, and refine cybersecurity standards, SOPs, and policies with strong communication skills.
• Excellent interpersonal skills, including the ability to build consensus, agreement, and resolve contentious issues and entrenched interests.
• Proven experience supporting cybersecurity risk and governance teams and peer management with demonstrated business process, workflow, task analysis, and metrics/results measurement.
• Excellent organizational, analytical, and problem‑solving skills with the ability to set staff and direct line management priorities and handle multiple projects concurrently with attention to detail.
• Ability to anticipate cybersecurity governance needs and enact action plans before they become organizational problems.
• Knowledge of Agile and/or other SDLC methodologies.
• Knowledge of cloud security controls (AWS / Azure).
• Experience reviewing and performing/supervising risk analysis for AI‑based projects, applications, and models to discover and design or usage issues that may expose the organization to undue risk.

Salary Range

• $164,240 – $304,871

Location : Baltimore, MD

Job Code : Cyber_Security IT

Affiliate Sponsor : CareFirst

Salary Range : >$100,000

Seniority level : Director

Employment type : Full‑time

Job function : Engineering and Information Technology

Referrals increase your chances of interviewing at VetJobs by 2x

Get notified about new Cyber Security Specialist jobs in Baltimore, MD .

#J-18808-Ljbffr