Job title: Dir, Cybersecurity – Remote
Company: Magellan Health
Job description: This fully remote position for a Cybersecurity Director is contingent on Magellan Federal being awarded the Military OneSource contract.
The Cybersecurity Director is responsible for the implementation, management, security, and availability of all contractor-owned and -operated information systems, networks, applications, security controls, and end-user devices. The Cybersecurity Director will be responsible for all IT/Cyber compliance requirements, operational procedures, documentation, and business processes required to obtain and retain compliance with the DoD RMF.
It is required that the Cybersecurity Director has the following qualifications:
a. Must be a U.S. citizen and must speak fluent English.
b. A minimum of a Bachelor’s degree in Business, Management, or other field related to work under this requirement or equivalent experience.
c. A minimum of 10 years of experience managing IT and cybersecurity programs and projects of similar scope and complexity that directly support the DoD military community.
This position is subject to MC&FP’s IT/Cyber certification, training, and knowledge mandates that are enforced by DoDD 8140.01, “Cyberspace Workforce Management.” As a result, and in accordance with MC&FP ITOD number 23-IA-002 (CUI), the Cybersecurity Director must possess one or more of the following active certifications at the time of proposal:
a. CompTIA Advanced Security Practitioner (CASP+ CE)
b. Cisco Certified Network Professional (Security-focus) (CCNP Security)
c. Certified Information Systems Auditor (CISA)
d. Certified Information Systems Manager (CISM)
e. Certified Information Systems Security Professional (CISSP)
f. GIAC Certified Enterprise Defender (GCED)
g. GIAC Certified Incident Handler (GCIH)
h. GIAC Security Leadership Certification (GSLC)
i. Certified Cloud Security Professional (CCSP)
j. Certified Chief Information Security Officer (CCISO)
This position manages a functional area within the office of the CISO and will take a practical and risk-based approach to manage, maintain, and deploy security solutions throughout the enterprise network. Contributes to the design, development and maintenance of the network security environment and architecture regarding data and voice communications to ensure efficient information flow in a secure systems environment. Promotes a positive security culture for the organization by protecting the confidentiality, integrity, and availability of data and assets while assisting the company to successfully meet its strategic goals. Manages a team or teams which may include Information Security Managers, Engineers and/or Analysts and is accountable for their team(s)’ performance in engineering, implementation, and maintenance of security processes and solutions throughout the enterprise according to policy and risk. Acts as champion to their team and other business units to promote a secure organization through positive knowledge sharing, training, influences, and conduct.
- Responsible for the oversight and management of all elements of a functional area within assigned area of operations, including supervision and mentorship of the team.
- Partner with Information Technology leaders to facilitate compliance with security guidance and guidelines related to their area of expertise/responsibility.
- Support leadership in establishing annual and long-term goals, defining security strategies, metrics, and reporting mechanisms as applicable to your function.
- Act as SME in the strategic sourcing process for acquiring infrastructure security assets and infrastructure services, including selection, negotiations, and contract finalization.
- Manage and ensure compliance with information security policies and procedures for activities within scope of role.
- Research emerging technologies in support of IT security enhancement and development efforts.
- Assist in formalizing and updating security policies, procedures, and technical standards.
- Recommend resource allocations required to securely operate and maintain an organization’s cybersecurity requirements.
Other Job Requirements
Responsibilities 8+ years of IT experience with 6+ in Information Security.
May substitute 2 or more relevant certifications for a year of experience.
Proven in-depth knowledge of network protocols and packet analysis tools such as TCPDUMP and Wireshark.
Detailed knowledge on network and host- based firewalls and intrusion prevention systems. Detailed knowledge on proxy servers, SSL inspection techniques, load- balancers, reverse proxy servers, and web application firewalls.
Proven ability to develop custom threat signatures in response to zero-day and emerging security threats. Strong consensus builder who builds credibility through targeted, accurate, and effective communication. Demonstrated operational and technical skills relating to information security.
Detailed knowledge with security-related systems and applications, firewalls, packet analysis tools, intrusion detection/prevention, and web content filtering.
Detailed digital forensics and eDiscovery skills and experience. Detailed knowledge of network infrastructure, including routers, switches, firewalls. Knowledge of information security publications (e.g., NIST 800-53, 53A, 37). Detailed knowledge of incident response, problem resolution, and vulnerability remediation. Detailed knowledge of automated security testing.
Demonstrated ability to lead/manage direct reports and develop staff.
Ability to lead multi-disciplinary teams and cross-functional management to defined deadlines.
Ability to communicate and engage effectively with a diverse audience, including front line technical staff, non-technical staff, management, executives, and vendors/providers.
Demonstrated in-depth knowledge of PCI, HITRUST, and/or other industry standards.
Self-starter with the ability to lead tasks with demonstrated ability to work independently.
Strong verbal and written communication skills with the ability to collaborate effectively with other groups.
General Job Information
Title Dir, Cybersecurity – Remote
Work Experience – Required Information Security, IT
Work Experience – Preferred
Education – Required A Combination of Education and Work Experience May Be Considered., Bachelors – Information Security
Education – Preferred Masters
License and Certifications – Required CISSP – Certified Information Systems Security Professional – Enterprise
License and Certifications – Preferred
Salary Minimum: $127,295
Salary Maximum: $229,105
This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Actual pay will be adjusted based on an individual’s skills, experience, education, and other job-related factors permitted by law.
This position may be eligible for short-term incentives as well as a comprehensive benefits package. Magellan offers a broad range of health, life, voluntary and other benefits and perks that enhance your physical, mental, emotional and financial wellbeing.
Magellan Health, Inc. is proud to be an Equal Opportunity Employer and a Tobacco-free workplace. EOE/M/F/Vet/Disabled.
Every employee must understand, comply with and attest to the security responsibilities and security controls unique to their position; and comply with all applicable legal, regulatory, and contractual requirements and internal policies and procedures.
Expected salary: $127295 per year
Job date: Sun, 29 Oct 2023 00:04:50 GMT
Apply for the job now!