Vice President, Cybersecurity Operations
Leidos
2021-12-04 03:00:03
Reston, Virginia, United States
Job type: fulltime
Job industry: Executive Positions
Job description
Description
Job Description:
Senior leader responsible for the operational cybersecurity of the Leidos global computing environment including the Cybersecurity Intelligence and Response Center, enterprise vulnerability management, security capability development and perimeter operations (cloud and on-premise), Security Orchestration Automation and Response (SOAR) integrations, threat intelligence and correlation, and threat hunting. Accountable for the recruitment, development, and retention of a world-class cybersecurity operations team.
***This role will require travel for customer, Team, and Training meetings***
Primary Responsibilities
- Develop and enhance an information security management framework based on the NIST Cybersecurity Framework, NSIT 800-171 (DFARs -7012), AIA NAS 9933, and the International Organization for Standardization (ISO) 27001 standards to integrate and
normalize the wide variety and ever-changing requirements resulting from laws, standards and regulations.
- Develop the metrics and reporting framework to provide status of the information security operations program to the CISO, enterprise risk teams, senior business leaders, and when required to the Leidos Executive Leadership Team and/or Board of Directors. Drive continuous improvement in maturity and operational resiliency and implement approved/funded new technology enhancements for cybersecurity operations.
- Monitor the external threat environment for emerging threats, advising relevant stakeholders, and coordinating with industry peer groups, Information Sharing and Analysis Centers, external agencies (such as regulatory and law enforcement), and other advisory bodies, to ensure that the organization maintains a strong security posture.
- Partner with the CIO Services functional senior leaders as well as Corporate and Group leadership to operationalize Corporate Information Security policies, procedures, and risk directives across the global computing environment.
- Develop and maintain technical and process roadmaps for all operational services and capabilities with appropriate test plans
- Develop operational metrics and drive continuous improvement in maturity and capability as well as leading implementation of
- Mentor and train cyber operations staff and new hires, manage staffing levels and performance
- Assist in strategic growth and with scoping prospective engagements and developing proposals (where appropriate and tactically aligned)
Basic Qualifications
Bachelor's degree with minimum 15 years of experience relevant to Information Technology and Cybersecurity.
- US Citizenship with an active SECRET clearance is required, but must be able to obtain and sustain a TS/SCI clearance.
- Must have demonstrated track record of competency with experience including cybersecurity, information security
technologies, risk management, and IT.
- Demonstrated knowledge of common information security management frameworks such as ISO/IEC 27001, ITIL,
NIST, and an understanding of relevant legal and regulatory requirements such as DFARs, Health Insurance Portability
and Accountability Act (HIPAA) and the EU General Data Protection Requirements.
- Experience planning and executing structured project management lifecycles and processes.
- Ability to write and verbally communicate information security and risk-related concepts effectively to both technical and
non-technical audiences is essential.
- Must have strong problem-solving and analytical skills and demonstrate poise and ability to act calmly and competently in
high-pressure, high-stress situations.
- Must have strong interpersonal and networking skills.
- Must be a Certified Information Security Systems Professional (CISSP).
Preferred Qualifications
- Active TS/SCI with Polygraph clearance.
- Information security experience as a DoD and/or Intelligence Community employee or contractor.
- Experience with Hybrid Cloud-based information protection.
- Led a diverse and capable cybersecurity incident response team facing nation-state threat actors.
- Actively engaged with the ND-ISAC (or related industry ISAC).
Pay Range: