We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
The Bay Area Air Quality Management District jobs

Manager (Cyber Security)

The Bay Area Air Quality Management District
$165,221.94 - $200,828.30 Annually
medical insurance, dental insurance, life insurance, vision insurance, vacation time, paid holidays, sick time, tuition reimbursement, retirement plan, pension, remote work
United States, California, San Francisco
375 Beale Street (Show on map)
Jan 28, 2025

Description

Join an agency committed to creating a healthy breathing environment for every Bay Area resident while protecting and improving public health, air quality, and the global climate!

The Bay Area Air Quality Management District (District) is a regional government agency, committed to achieving clean air to protect the public's health, the environment and the global climate. The District accomplishes this goal through regulation of industrial facilities, regional planning efforts and various outreach and incentive programs designed to encourage clean air choices.

The District's jurisdiction encompasses all of seven counties - Alameda, Contra Costa, Marin, San Francisco, San Mateo, Santa Clara and Napa, and portions of two others - southwestern Solano and southern Sonoma.

The District is currently conducting an open recruitment for the position of Manager (Cyber Security) in the Information Services Division. This is a full-time, exempt, management position. There is one (1) vacancy.

Under the general direction of the Director of Information Services, the incumbent is responsible for managing the Cyber Security Team and all its functions and projects.

The incumbent must possess a thorough understanding of project management, Cyber Security (CS) operations principles and best practices, and have the expertise to successfully manage multiple complex CS efforts simultaneously in cooperation with other technology teams and business partners, as well as formulate and implement CS strategy; develop and manage contracts, budgets, and procurements; hire, train, and mentor staff; create and implement/improve operational support processes; create and sustain meaningful and positive customer interactions.

The Information Systems Manager - Cyber Security is responsible for effective leadership of Cyber Security operations, management, policy development and maintenance and delivery of all assigned cyber security services, including but not limited to the security of servers, storage, data, local area networks, wide area networks, wireless networking, mobile device management, cloud services, security monitoring, voice services, remote access, virtualization platforms and services, and would include both Platform/Software as a Service or on-premises internally hosted offerings.

Because of the dependencies which exist between these systems and the services offered by the organization across lines of business and internal technology teams, the Cyber Security team provides critical support to the success of the District and its mission by ensuring efficient, collaborative, and strategic use of cyber security services being offered by the Information Services Division.

DEFINITION

Under administrative direction, plans, organizes, supervises, reviews and evaluates staff and activities of the District's Information systems Section; performs related work as assigned.

DISTINGUISHING CHARACTERISTICS

This single position class manages all systems and programming activities for the District's cyber security systems. The incumbent is responsible for accomplishing section goals and objectives and for furthering District goals and objectives within general policy guidelines. This class is distinguished from Director of Administrative Services in that the latter has overall managerial responsibility for all personnel, business, information systems and financial services for the District.

Examples of Duties for this Position

The Information Systems Manager - Cyber Security is responsible for effective leadership of Cyber Security Services. These services ensure successful security operation, management, and delivery of all assigned cyber security services, including but not limited to:

  • Lead the Security Operations Center (SOC), ensuring 24/7 vigilance in identifying, mitigating, and responding to threats that safeguard the District's mission to protect public health and the environment.
  • Drive the creation and execution of security assessments that proactively identify vulnerabilities, manage risks, and fortify the District's ability to advance air quality and climate resilience initiatives.
  • Oversee rigorous cybersecurity testing, inspections, and reviews to ensure the reliability and security of the District's network infrastructure, supporting its commitment to clean air and sustainable practices.
  • Champion innovative security strategies, integrating emerging technologies and upgrades to enhance resilience and maintain the District's leadership in environmental protection.
  • Craft and sustain dynamic cybersecurity policies, procedures, and standards that not only protect critical assets but also empower the District to lead in advancing public health, environmental stewardship, and climate resilience.
  • Secure and manage critical resources, including leadership buy-in, funding, and expert talent, to reduce risks and uphold the District's mission-critical operations.
  • Embed cybersecurity requirements into continuity planning to ensure the District's ability to deliver on its public service goals without interruption.
  • Provide executive leadership with actionable insights into risk levels and security posture, steering strategic decisions that reinforce the District's vision of a healthier, sustainable future.
  • Analyze patterns of noncompliance to identify systemic risks and opportunities for improvement, ensuring the effectiveness of the District's cybersecurity programs.
  • Monitor and interpret cybersecurity data sources to maintain a real-time understanding of threats, advancing the District's proactive defense capabilities.
  • Foster a culture of cybersecurity awareness through impactful training and education programs, inspiring staff to be vigilant protectors of the District's mission.
  • Track and resolve audit findings with urgency, ensuring vulnerabilities are addressed and the District remains a trusted leader in regulatory compliance.

Core Competencies:

  • Business Continuity: Lead the development and implementation of comprehensive business continuity and disaster recovery plans, ensuring uninterrupted delivery of services that support the District's environmental and public health goals.
  • Computer Network Defense: Oversee advanced threat defense operations, leveraging cutting-edge tools to detect, analyze, and mitigate host and network-based intrusions.
  • Enterprise Architecture: Shape the District's cybersecurity landscape by aligning security architecture with organizational IT goals, fostering innovation and resilience.
  • Information Systems/Network Security: Direct the design and enforcement of robust security measures across the District's network, safeguarding critical systems and data.
  • Information Technology Assessment: Conduct thorough IT risk assessments to evaluate vulnerabilities, recommend enhancements, and align technology capabilities with the District's strategic objectives.
  • Network Management: Ensure optimal performance and security of the District's network infrastructure through proactive monitoring and management practices.
  • Policy Development and Management: Establish and maintain impactful cybersecurity policies that promote operational excellence and regulatory compliance.
  • Risk Management: Drive a comprehensive risk management strategy, identifying and mitigating threats to protect the District's mission and operations.
  • Threat Assessment and Analysis: Evaluate emerging threats and vulnerabilities, providing actionable insights to enhance the District's security posture.
  • Vulnerabilities Assessment: Lead the identification and remediation of system weaknesses to maintain robust defenses against evolving cyber risks.

Core Knowledge:

  • Data Backup and Recovery: Expertise in developing and managing reliable data protection strategies to minimize the impact of disruptions or incidents.
  • Business Continuity and Disaster Recovery: Comprehensive knowledge of continuity planning to ensure organizational resilience during crises.
  • Intrusion Detection: Proficiency in methodologies for detecting and responding to host and network-based intrusions, ensuring rapid containment and recovery.
  • Data Security Controls: Understanding of data lifecycle protections, including secure use, processing, storage, and transmission practices.
  • Encryption Technologies: Deep familiarity with encryption algorithms to secure sensitive information against unauthorized access.
  • Network Security Architecture: In-depth knowledge of security architecture principles, including defense-in-depth strategies and secure network design.
  • System Performance Indicators: Ability to evaluate system performance metrics to ensure the availability and reliability of critical IT assets.
  • Cybersecurity Laws and Governance: Awareness of regulations, policies, and governance structures relevant to cybersecurity in critical infrastructure sectors.
  • Threat and Vulnerability Analysis: Expertise in identifying, analyzing, and mitigating security risks, including penetration testing and vulnerability assessments.
  • Emerging Threats and Technologies: Familiarity with the latest cybersecurity innovations and evolving threat landscapes to maintain proactive defenses.

Additionally:

  • Use interpersonal skills to build consensus and drive operational excellence across teams and stakeholders, ensuring alignment with the District's goals.
  • Develop and implement clear goals, objectives, and work standards for assigned programs, promoting accountability and continuous improvement.
  • Lead, mentor, and evaluate staff to cultivate a high-performing team capable of addressing the District's dynamic cybersecurity needs.
  • Define activity measures and accountability metrics, ensuring transparency and effectiveness in delivering cybersecurity initiatives.
  • Represent the District professionally and collaborate closely with leadership to align cybersecurity efforts with strategic priorities.

Minimum Qualifications

Education and Experience:

A typical way to obtain the knowledge and skills is: Equivalent to graduation from a four-year college or university with major coursework in computer sciences, mathematics, business or public administration or a closely related field and four years of experience managing an information security program.

Desirable Qualifications
In addition to evaluating each candidate's relative ability, as demonstrated by quality and breadth of experience, the following factors will provide the basis for competitively evaluating each candidate:

  • Demonstrated multi-vendor and complex IT contract management experience.
  • Demonstrated ability to exercise a high degree of initiative, demonstrate tact, and exercise sound judgment reflecting the best interests of the Air District.
  • Demonstrated effective communication skills.
  • Demonstrated ability to develop and maintain effective & cooperative working relationships.
  • Ability to easily adapt to changing priorities.



How to Apply & Selection Criteria

Interested individuals must submit a completed BAAQMD application, chronological resume, and responses to the supplemental questions no later than 5:00 p.m. on Tuesday, February 18, 2025. Applications are accepted online only. Please visit our website at www.baaqmd.gov/jobs to apply or to download an application. Resumes must be included, and not in lieu of the required application materials. Postmarks, faxes, and E-mailed applications will not be accepted.

Except as requested in this announcement, do not include any additional documents, such as letters of recommendation, performance evaluations, work samples, etc. They will not be considered or returned.

Supplemental Questions Instructions
Individuals who apply for this position must respond to each of the supplemental questions. The responses to the supplemental application questions will be used in accordance with the procedures indicated under the Selection Criteria in the vacancy announcement. Your responses should be as detailed as possible.

Instructions:
* Do not combine your responses, or reference your application, resume, or any other requested documentation that you have included with your application packet to answer a question.
* For each question regarding experience, you must provide: the name of the employer where you gained your experience, your job title, length of time in years/months performing the specific function, and detailed examples that illustrate your duties and responsibilities.

SELECTION CRITERIA:
Selection may be based upon a competitive examination consisting of a written exercise, interview, or combination of the two. Depending on the number of qualified applicants, an application screening and/or panel interview may be used to determine the most qualified applicants.

The District may hire from this recruitment process to fill future vacancies occurring within the next 18 months.

Updates regarding your status in the recruitment will be sent via email, unless you indicate a different preference on your application.

Persons with disabilities who may require reasonable accommodations during the application and/or selection process should notify the Human Resources Office at (415) 749-4980.

The District is an Equal Opportunity Employer.


Applied = 0
MORE JOBS LIKE THIS

(web-6f6965f9bf-g8wr6)