empty

Cybersecurity Threat Program Manager

Georgetown

Job Description

Posted on: 
November 12, 2024

Summary and company overview

Located in a historic neighborhood in the nation's capital, Georgetown offers rigorous academic programs, a global perspective, exciting ways to take advantage of Washington, D.C., and a commitment to social justice. Our community is a tight knit group of remarkable individuals interested in intellectual inquiry and making a difference in the world.

Responsibilities

The Cybersecurity Threat Program Manager leads a comprehensive cyber threat management program across the enterprise; and develops and leads the activities related to detection, correlation, and analysis of internal and external cybersecurity threats to institutional assets, data, systems, and infrastructure. Cyber threat coordination occurs across departmental units to ensure those parties responsible and accountable for data are kept consulted and informed. The Program Manager collaborates as needed with multiple stakeholders, including human resources, system and data owners, legal, physical security, SOC/CIRT, technology support groups. They apply their technical competence and business acumen to foster and maintain strong relationships with departmental units, as well as their constant up-to-date familiarity with cyber threat tactics, techniques and procedures (TTPs) across all lines of business in complex environments.

Job Requirements

Candidate Qualifications• Capability of working with diverse teams and promoting an enterprise-wide positive security culture• Ability to organize, prioritize and complete tasks within defined SLAs• Excellent judgment and the ability to make quick decisions when working with complex situations• Self-starter requiring minimal supervision• Outstanding written and verbal, business and cybersecurity communication skills• Highly organized and efficient, with strong project management, multitasking and organizational skills• Demonstrated understanding and comprehension of a wide range of network and host cybersecurity solutions• Ability to motivate teammates to achieve excellence and willingly shares knowledge• Ability to maintain a high degree of integrity, trustworthiness and confidence; and to represent the organization and its management team with the highest level of professionalism• Trustworthy and leads by example for others to follow• Track record of successful personnel managementPosition Requirements• Experience managing a cyber threat program and leading technical teams• Excellence in communicating business risk from cybersecurity topics• Strong understanding and demonstrated use of best practices following NITTF, NIST and CERT guidance• Proficiency with driving measurable improvement in detection and response capabilities at scale.• Experience managing SIEM, UEBA, IAM, vulnerability management, data loss prevention (DLP), threat intelligence, MITRE ATT&CK framework mapping, security orchestration automation and response (SOAR), and other network and system monitoring tools• Experience supporting investigations using formal chain-of-custody methods, forensic tools and best practices• Proficiency with security analytics and threat data management• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating well• Highly-effective, action-oriented communication up and down the leadership scale• Analytical and problem-solving mindset• Strategic and tactical thinking, along with decision-making skills• Understanding of one or more of the following: ISO 27001, NIST, PCI, HIPAA/HITECH, FERPA, GDPR, CIS Benchmarks, NITTFExperience• At least 5 to 7 years of cybersecurity experience (or information technology coupled with cybersecurity), with at least 3-5 of those years in a threat intelligence or incident response practitioner role, and including a) 5+ years of cybersecurity or information technology practitioner experience; and b) 3+ years of threat intelligence experience.• At least 2+ years cloud computing – for example, Amazon Web Services, Google Cloud Platform or Microsoft Azure) – *preference for security configuration experience• Advanced familiarity with Tenable, Qualys, and/or CrowdStrikeEducationBachelor's degree in computer science, information assurance, MIS or related field, or the equivalentPreferred certifications• CISSP• SANS• CERT ITPM and/or ITVA (current or willingness to obtain)

Additional commentary

Work Mode: Telework. Please note that work mode designations are regularly reviewed in order to meet the evolving needs of the University. Such review may necessitate a change to a position’s mode of work designation. Complete details about Georgetown University’s mode of work designations for staff and AAP positions can be found on the Department of Human Resources Mode of Work Designation. Salary RangeThe expected pay range for this position is $66,783 to $110,000 per annum. Georgetown University provides pay ranges representing its good faith estimate of what the university reasonably expects to pay for a position. The pay offered to a selected candidate will be determined based on factors such as, but not limited to, the scope and responsibilities of the position, the qualifications of the selected candidate, departmental budget availability, internal equity and external market pay for comparable jobs.

Summary and company overview

Located in a historic neighborhood in the nation's capital, Georgetown offers rigorous academic programs, a global perspective, exciting ways to take advantage of Washington, D.C., and a commitment to social justice. Our community is a tight knit group of remarkable individuals interested in intellectual inquiry and making a difference in the world.

Apply now