University of Miami - Miami, FL

posted about 2 months ago

Full-time - Mid Level
Miami, FL
Educational Services

About the position

The University of Miami Health System, known as UHealth, is seeking a Cybersecurity Operations Leader to oversee all aspects of security operations and support services. This pivotal role involves leading all cybersecurity incident response activities and directing internal teams in executing initiatives related to threat analysis, monitoring, systems, and applications. The Cybersecurity Operations Leader will respond to all related cybersecurity alerts and support strategic IT initiatives, exercising considerable judgment in unprecedented situations. In this position, the incumbent will supervise the performance management of all assigned staff, making critical decisions regarding hiring, training, evaluation, promotion, and termination. The role also includes managing daily operations and directing staff to achieve departmental goals and objectives, while assuming responsibility for campus-wide initiatives involving computer support services. The Cybersecurity Operations Leader will develop, promote, and maintain standards related to technical support services and devices, including manufacturing and architectural standards. The position requires designing improved work systems by revising work standards, policies, and procedures, as well as directing and managing project plan development, risk assessment, communications, budget tracking, status reporting, vendor management, and ensuring successful project completion. The incumbent will conduct network monitoring and intrusion detection analysis using various Computer Network Defense (CND) tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, and Host-Based Security System (HBSS). They will correlate network activity across networks to identify trends of unauthorized use and review alerts and data from sensors, documenting formal technical incident reports. Additionally, the Cybersecurity Operations Leader will research emerging threats and vulnerabilities to aid in identifying network incidents, provide incident response support to network subscribers, and support the creation of business continuity and disaster recovery plans. This includes conducting disaster recovery tests, publishing test results, and making necessary changes to address deficiencies. The role also involves contributing to the strategic plan and assisting in providing short- and long-term solutions to meet campus-wide strategic and tactical planning initiatives. The incumbent will communicate with administration and staff regarding the efficient and timely delivery of services, perform follow-up investigations on inquiries, complaints, and problems, and seek ways to improve operations while overseeing the preparation of productivity reports. The Cybersecurity Operations Leader will establish departmental goals and objectives, identify areas for improvement, and implement action plans to meet these goals. They will attend professional meetings, workshops, conferences, and seminars to stay abreast of technological market advancements, and continuously assess the effectiveness of internal controls within the unit, ensuring compliance with University policies and procedures. Training employees on controls and University policies is also a critical aspect of this role.

Responsibilities

  • Oversee all aspects of security operations and support services.
  • Lead all cybersecurity incident response related activities.
  • Direct internal teams in executing initiatives related to threat analysis, monitoring, systems, and applications.
  • Respond to all related cybersecurity alerts and support strategic IT initiatives.
  • Supervise performance management of assigned staff, including hiring, training, evaluation, promotion, and termination.
  • Manage daily operations and direct staff to achieve departmental goals and objectives.
  • Assume responsibility for campus-wide initiatives involving computer support services.
  • Develop, promote, and maintain standards related to technical support services and devices.
  • Design improved work systems by revising work standards, policies, and procedures.
  • Direct and manage project plan development, risk assessment, communications, budget tracking, status reporting, vendor management, and successful project completion.
  • Conduct network monitoring and intrusion detection analysis using various CND tools.
  • Correlate network activity across networks to identify trends of unauthorized use.
  • Review alerts and data from sensors and document formal technical incident reports.
  • Research emerging threats and vulnerabilities to aid in identifying network incidents.
  • Provide incident response support to network subscribers, including mitigating actions and facilitating forensics analysis.
  • Test new computers, software, switch hardware, and routers before implementation to ensure security.
  • Support the creation of business continuity/disaster recovery plans, including conducting disaster recovery tests and publishing test results.
  • Contribute to strategic planning and assist in providing short- and long-term solutions for campus-wide initiatives.
  • Communicate with administration and staff regarding the efficient and timely delivery of services.
  • Perform follow-up investigations on inquiries, complaints, and problems.
  • Establish departmental goals and objectives, identify areas for improvement, and implement action plans.
  • Attend professional meetings, workshops, conferences, and seminars to keep abreast of technological advancements.
  • Establish and assess the effectiveness of internal controls within the unit and ensure compliance with University policies.

Requirements

  • Bachelor's degree in a relevant field; Master's in Computer Science, Information Security or related field preferred.
  • Certified Information Systems Security Professional (CISSP).
  • Certified Information Security Manager (CISM).
  • Security + certification.
  • Certified Ethical Hacker certification.
  • Cloud Security certification.
  • 7+ years of experience in information security, especially on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).
  • 7+ years of experience in another IT function, especially IT Audit.
  • 7+ years of experience with regulatory compliance and information security management frameworks (e.g., ISO 27000, COBIT, NIST 800, etc.).
  • Ability to react quickly, decisively, and deliberately in high-stress, high-impact situations.
  • Ability to lead, motivate, develop, and train others.
  • Skill in collecting, organizing, and analyzing data.
  • Knowledge of business and management principles.
  • Ability to direct, manage, implement, and evaluate department operations.
  • Ability to establish department goals and objectives that support the strategic plan.
  • Ability to effectively plan, delegate, and supervise the work of others.

Nice-to-haves

  • Any appropriate combination of relevant education, experience, and/or certifications may be considered.

Benefits

  • Competitive salaries
  • Comprehensive benefits package including medical and dental insurance
  • Tuition remission
  • Opportunities for professional development and growth.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service