IT Governance Lead Cyber Security

Location: Dimondale, Michigan
Posted On: 9/15/2017
Job Code: 5445_ITGOVMI
Job Description
• Builds and maintains key relationships with State of Michigan Agency leaders and managers for key strategic programs, specifically Vulnerability Management and Analytics.
• Ensures stakeholders are educated on the scope, expectations and impacts of key strategic programs and holds them accountable.
• Coordinates stakeholders, facilitates governance routines and provides program oversight.
• Develops and owns the communication plans with the Agencies for various key initiatives.
• Strategizes and plans the program(s) based on best practices and security frameworks.
• Supplements the traditional project team with higher level communications, awareness and relationship management.
• Outlines and facilitates change management
• Collects and communicates key metrics on program progress.
• Assists in resolving high level issues and outlines critical risks in key strategic programs.
• Develops and delivers the operational transition plans for the technology and platforms for Vulnerability Management.
• Familiarity and work experience (required) leveraging NIST Moderate and CIS Controls that address Vulnerability and Asset Management (The NIST Framework for Improving Critical Infrastructure Cybersecurity calls out the CIS Controls as one of the “informative references” – a way to help users implement the Framework using an existing, supported methodology.
• Survey data shows that most users of the NIST Cybersecurity Framework also use the CIS Controls.).

Responsibilities include:
• Communication with Senior management including, but not limited to, DTMB’s Michigan Cyber Security (MCS), Infrastructure & Operations and Agency Services to implement the respective programs and develop integrated workplan for their organizations.
• Organize and chair the respective program Steering Committee
• Align, and work with, the EPMO Project Manager on process, deliverable and QA.
• Act as the MCS Lead for what is referred to as a cross-functional “Operational Excellence” (OpEx) program for year
• Eliminate remediation deficit
• Establish and refine scanning and remediation windows and processes
• Establish and refine false positive reporting and close-out
• Establish and refine reporting requirements and dashboards
• Establish and refine Tenable platform requirements and configuration
• Include bi-weekly “office hours” workshops for problem resolution
Category:IT  code:new
Job Requirements
Cyber Security, Vulnerability Management, Patch Management, NIST.

Not Ready to Apply?
Contact Details
Sidhartha Suveny
E-mail Address