:

Opportunity Awaits, Apply Today! Cyber Security Operations Center Director (IT Cyber Security Manager 3) Enterprise Information Services (EIS) is a state government-wide information technology (IT) organization led by Oregon’s State Chief Information Officer (CIO).  Cyber Security Services (CSS) brings together enterprise security - governance, policy, procedure, and operations - under a single, accountable enterprise organization. Cyber Security Services staff maintain certifications in multiple cyber disciplines to work collaboratively with key local and federal partners, EIS teams to deliver secure solutions to our statutory customers.

The Director of State-Level Cyber Security Operations Center (CSOC) is a senior leadership role responsible for overseeing and managing the state's cybersecurity operations. The CSOC serves as the central hub for monitoring, detecting, analyzing, and responding to cyber threats and incidents that pose risks to the state's information systems, critical infrastructure, and data. The CSOC identifies and analyzes emerging cyber threats and vulnerabilities to the state’s system.  The Director leads teams of cybersecurity professionals and collaborates with various state agencies to ensure a proactive and effective defense against cyber threats.

An overview of responsibilities include: Develop and execute the strategic vision for the State CSOC to enhance cyber threat detection and response capabilities

Collaborate with the State CISO in the development and execution of the state's information security strategy and vision.

Leverage threat intelligence to improve the state's cyber defenses and stay ahead of evolving threats.

Collaborate with state agencies to identify and prioritize security risks and work towards their mitigation.

Lead the team in identifying and analyzing emerging cyber threats and vulnerabilities to the state's systems.

Ensure the CSOC's compliance with relevant regulations, laws, and standards governing cybersecurity.

Prepare and present regular reports on cybersecurity threats and risk reports to state executives and interest groups.

For a full review of the position duties, details, and working conditions, please click .

This Is What You Need to Qualify Minimum Qualifications: Seven years of supervision, management, or progressively related experience in IT incident response, vulnerability management security and cybersecurity operations, with experience in a leadership or managerial role; OR

Four years of related experience IT incident response, vulnerability management and cybersecurity operations, with experience in a leadership or managerial role AND a bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.

The ideal candidate will possess the following desired skills and attributes: Demonstrated skill and ability to lead while building positive business relationships with superiors, subordinates, peers, and others outside of the organization.

Demonstrated leadership experience with information security strategies, policies, and procedures, as well as security frameworks, compliance regulations and budgets.

Superior ability to critically analyze complex organizational issues and develop innovative and flexible solutions, take initiative, and deliver results.

Experience as a business process redesign leader with expertise to develop long-term plans and create a shared vision for the future of the organization.

Demonstrated management experience in coordinating a team of security professionals and skill to cultivate talent by building resilient, growth-minded cultures that drive organizational success.

Proven ability and skill to clearly explain complex/technical concepts in terms that are understandable for technical and non-technical audiences.

Expertise problem-solving and decision-making skills, especially in high-pressure situations.

Ability to inspire, influence, and guide teams through change.

Demonstrated ability writing clear and concise reports, legally sufficient documents, technical reports or press releases.

Demonstrated experience in coordinating cybersecurity efforts across multiple agencies and partners.

Experience managing or leading a cybersecurity assessment program with significant experience in cybersecurity operations and incident response to deliver cybersecurity assessments to multiple agencies and partners.

Preference Statement Preference may be given to those candidates that have completed and are current in one or more cybersecurity certifications [e.g.: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), GIAC Certified Enterprise Defender (GCED), or Certified Ethical Hacker (CEH).] Please provide the certification details in your application materials.

Extensive knowledge of information security technologies, concepts and tools, best practices, application of NIST standards, and CIS controls (NIST Cybersecurity Framework, ISO27001 etc.)