ybersecurity Threat Program Manager - Remote
Salary Range: $100,000
Location: Must live within one hour of Washington, DC

Job Overview
The Cybersecurity Threat Program Manager leads a comprehensive cyber threat management program across the enterprise; and develops and leads the activities related to detection, correlation, and analysis of internal and external cybersecurity threats to institutional assets, data, systems, and infrastructure.
Cyber threat coordination occurs across departmental units to ensure those parties responsible and accountable for data are kept consulted and informed. The Program Manager collaborates as needed with multiple stakeholders, including human resources, system and data owners, legal, physical security, SOC/CIRT, and technology support groups.
They apply their technical competence and business acumen to foster and maintain strong relationships with departmental units, as well as their constant up-to-date familiarity with cyber threat tactics, techniques and procedures (TTPs) across all lines of business in complex environments.

Work Interactions
Reporting directly to the Director of the Cybersecurity Operations Center, the Cybersecurity Threat Program Manager, an essential member of the cybersecurity team.
Because the CSOC Director contributes to the organizational cybersecurity strategy and roadmap, the Cybersecurity Threat Program Manager serves as a high-level advisor, and is an excellent facilitator, partner, and communicator at both the staff and the leadership levels.

Candidate Qualifications
Capability of working with diverse teams and promoting an enterprise-wide positive security culture
Ability to organize, prioritize, and complete tasks within defined SLAs
Excellent judgment and the ability to make quick decisions when working with complex situations
Self-starter requiring minimal supervision
Outstanding written and verbal, business and cybersecurity communication skills
Highly organized and efficient, with strong project management, multitasking and organizational skills
Demonstrated understanding and comprehension of a wide range of network and host cybersecurity solutions
Ability to motivate teammates to achieve excellence and willingly share knowledge
Ability to maintain a high degree of integrity, trustworthiness and confidence; and to represent the organization and its management team with the highest level of professionalism
Trustworthy and leads by example for others to follow
Track record of successful personnel management

Position Requirements
Experience managing a cyber threat program
Excellence in communicating business risk from cybersecurity topics
Strong understanding and demonstrated use of best practices following NITTF, NIST and CERT guidance
Proficiency with driving measurable improvement in detection and response capabilities at scale.
Experience managing SIEM, UEBA, IAM, vulnerability management, data loss prevention (DLP), threat intelligence, MITRE ATT&CK framework mapping, security orchestration automation and response (SOAR), and other network and system monitoring tools
Experience supporting investigations using formal chain-of-custody methods, forensic tools and best practices
Proficiency with security analytics and threat data management
Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating well
Highly-effective, action-oriented communication up and down the leadership scale
Analytical and problem-solving mindset
Strategic and tactical thinking, along with decision-making skills
Understanding of one or more of the following: ISO 27001, NIST, PCI, HIPAA/HITECH, FERPA, GDPR, CIS Benchmarks, NITTFExperience
At least 5 to 7 years of cybersecurity experience (or information technology coupled with cybersecurity), with at least 3-5 of those years in a threat intelligence or incident response practitioner role, and including a) 5+ years of cybersecurity or information technology practitioner experience; and b) 3+ years of threat intelligence experience.
At least 2+ years cloud computing – for example, Amazon Web Services, Google Cloud Platform or Microsoft Azure) – preference for security configuration experience
Advanced familiarity with Tenable, Qualys, and/or CrowdStrike

Education
Bachelor's degree in computer science, information assurance, MIS or related field, or the equivalent (preferred but not required)

Preferred certifications
CISSP
SANS
CERT ITPM and/or ITVA (current or willingness to obtain)

Benefits:
Includes medical, dental, vision, disability and life insurance, retirement savings, tuition assistance, work-life balance benefits, employee discounts, and an array of voluntary insurance options.

Please send resumes to lucy@military-civilian.com with the job title in the subject line.