The LHRIC Is seeking a candidate responsible for protecting the organization’s information technology infrastructure and developing and delivering security-related services to participating K-12 school districts. The candidate will provide direction and leadership across the organization regarding security best practices and the implementation of security policies, processes, and technical solutions. The candidate will oversee cybersecurity operations for the LHRIC and assist the support the cybersecurity operations for approximately 43 supported districts in the LHRIC’s region. Additionally, the candidate will identify, implement, and maintain additional security-related services for the organization and K-12 school districts throughout the tri-county region.
ESSENTIAL KNOWLEDGE, SKILLS AND ABILITIES:
Comprehensive knowledge of the current principle, practices, and procedures of developing and implementing an Information Security program; proficient with security principles, systems and solutions and an understanding of how to implement to reduce security risks; thorough knowledge of network protocols, encryption techniques, firewalls, virtual private networks, database structures, wireless communications and access security techniques; thorough knowledge of the current principles, practices and procedures of information technology; ability to coordinate the activities of subordinate personnel; ability to establish effective working relationships with peers and district representatives; proficient verbal and written communication skills.
RESPONSIBILITIES:
- Manages and oversees relationship with organizational SOC provider. Responsible for the triage and response to security alerts for the organization and districts participating in service.
- Responsible for identifying security risks to the organization and its component districts, and for developing solutions to mitigate these risks.
- Leads and coordinates the response to cybersecurity incidents, collaborating with associated teams to investigate and implement corrective actions.
- Receives and assesses security-related releases from various security forums, evaluates the risk to current systems, and ensures that any associated risks are addressed.
- Develops and coordinates the implementation of security policies, standards, and countermeasures to safeguard electronically maintained information and systems, enhancing the overall security of the organization. Establishes and maintains baseline configurations for new and existing implementations.
- Collaborates with the data privacy service to assist with the assessment of the NIST CSF and the advancement of the organization’s maturity level related to this framework. May also assist in or conduct the delivery of professional development and awareness training.
- Participates in the development, implementation, and maintenance of disaster recovery and incident response plans to ensure business continuity and effective response in the event of system unavailability.
- Leads and manages security-related initiatives within the organization and/or with participating districts.
- Responsible for identifying needs and the continued development and implementation of security-related services and solutions to enhance the overall security posture of the organization.
- Manages and oversees the technical team focused on providing service and support to security-related services and initiatives.
- Communicates and markets services both internally and externally to districts.