Children's National Medical Center
Director & Head of Cyber Security Operations
Children's National Medical Center, Silver Spring, Maryland, United States, 20900
Director & Head of Cyber Security Operations
YOUR NORTH STAR: protect Children’s National and our patients, families, and staff by leading the implementation, management, and continual improvement of our cybersecurity operations.
The head of cybersecurity operations will protect CNH through the implementation, management, and continual improvement of our operational cybersecurity program. He or she will be responsible for monitoring, detection, investigation, and coordinated incident response. We are seeking a dynamic leader who excels at building and inspiring great teams. He or she is a doer who is equally comfortable managing direct reports, overseeing partners, influencing colleagues, and rolling up his/her sleeves and executing.
Qualifications Minimum Education Bachelor's Degree in a computer science, math, engineering or another relevant discipline. (Required)
Minimum Work Experience 10 years Cybersecurity with a focus on cybersecurity operations. (Required) 5 years in a management role. (Required)
Required Skills/Knowledge Experience leading some or all of the cybersecurity operations functions, preferably in a healthcare organization. Deep background in SOC implementation & analysis, SIEM configuration/integration/tuning, incident response, and/or investigations. Experience reporting to and communicating with board and C-level management. Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills. Breadth of knowledge across many cybersecurity frameworks and standards with deep expertise and implementation experience in at least one (e.g. NIST CSF, NIST RMF/800 series, ISO/IEC 27001/2, OWASP, Mitre ATT&CK framework, SNAS CIS, etc).
Functional Accountabilities
Real time response to cyber events; be accountable for the security incident management from identification through remediation
Day to day security monitoring, detection, analyses and response to threat indicators, malicious activities from security systems and intelligence
Incident response, playbooks, workflows, and escalation criteria in partnership with the rest of the cybersecurity team, our MSSP, contractors, and partners
Oversight of our MSSP
Implementation, integration, tuning, and continual improvement of our security information and event monitoring (SIEM) solution and other security tools
In collaboration with the head of cybersecurity architecture and engineering, security tool configuration, management, and updates to protect and defend our network, devices, systems
Cybersecurity investigations
Threat analysis and recommendations about changes to CNH security posture
Reporting on performance against established security metrics
Preparing clear and concise briefings for the CNH board, executive leadership, staff, regulators, auditors, outside partners, and other stakeholders
Primary Location Maryland – Silver Spring
Work Locations Inventa Towers 1, Inventa Place, Silver Spring, 20910
Job Type Management
Organization Operations
Position Status : R (Regular) - FT - Full-Time
Shift : Day
Work Schedule : 40 hrs / week
Salary Range 201,406.4 – 335,691.2
Childrens National Hospital is an equal opportunity employer that evaluates qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender, identity, or other characteristics protected by law. The “Know Your Rights” poster is available here: and the pay transparency policy is available here:Know Your Rights Pay Transparency Nondiscrimination Poster.
Drug-Free Workplace Policy: It is the policy of Children's National Hospital to ensure a “drug-free” work environment: a workplace free from the illegal use, possession or distribution of controlled substances (as defined in the Controlled Substances Act), or the misuse of legal substances by all staff (management, employees and contractors). Though recreational and medical marijuana are now legal in the District of Columbia, Children's National and its affiliates maintain the right, in accordance with our policy, to enforce a drug-free workplace, including prohibiting recreational or prescribed marijuana.
#J-18808-Ljbffr
The head of cybersecurity operations will protect CNH through the implementation, management, and continual improvement of our operational cybersecurity program. He or she will be responsible for monitoring, detection, investigation, and coordinated incident response. We are seeking a dynamic leader who excels at building and inspiring great teams. He or she is a doer who is equally comfortable managing direct reports, overseeing partners, influencing colleagues, and rolling up his/her sleeves and executing.
Qualifications Minimum Education Bachelor's Degree in a computer science, math, engineering or another relevant discipline. (Required)
Minimum Work Experience 10 years Cybersecurity with a focus on cybersecurity operations. (Required) 5 years in a management role. (Required)
Required Skills/Knowledge Experience leading some or all of the cybersecurity operations functions, preferably in a healthcare organization. Deep background in SOC implementation & analysis, SIEM configuration/integration/tuning, incident response, and/or investigations. Experience reporting to and communicating with board and C-level management. Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills. Breadth of knowledge across many cybersecurity frameworks and standards with deep expertise and implementation experience in at least one (e.g. NIST CSF, NIST RMF/800 series, ISO/IEC 27001/2, OWASP, Mitre ATT&CK framework, SNAS CIS, etc).
Functional Accountabilities
Real time response to cyber events; be accountable for the security incident management from identification through remediation
Day to day security monitoring, detection, analyses and response to threat indicators, malicious activities from security systems and intelligence
Incident response, playbooks, workflows, and escalation criteria in partnership with the rest of the cybersecurity team, our MSSP, contractors, and partners
Oversight of our MSSP
Implementation, integration, tuning, and continual improvement of our security information and event monitoring (SIEM) solution and other security tools
In collaboration with the head of cybersecurity architecture and engineering, security tool configuration, management, and updates to protect and defend our network, devices, systems
Cybersecurity investigations
Threat analysis and recommendations about changes to CNH security posture
Reporting on performance against established security metrics
Preparing clear and concise briefings for the CNH board, executive leadership, staff, regulators, auditors, outside partners, and other stakeholders
Primary Location Maryland – Silver Spring
Work Locations Inventa Towers 1, Inventa Place, Silver Spring, 20910
Job Type Management
Organization Operations
Position Status : R (Regular) - FT - Full-Time
Shift : Day
Work Schedule : 40 hrs / week
Salary Range 201,406.4 – 335,691.2
Childrens National Hospital is an equal opportunity employer that evaluates qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender, identity, or other characteristics protected by law. The “Know Your Rights” poster is available here: and the pay transparency policy is available here:Know Your Rights Pay Transparency Nondiscrimination Poster.
Drug-Free Workplace Policy: It is the policy of Children's National Hospital to ensure a “drug-free” work environment: a workplace free from the illegal use, possession or distribution of controlled substances (as defined in the Controlled Substances Act), or the misuse of legal substances by all staff (management, employees and contractors). Though recreational and medical marijuana are now legal in the District of Columbia, Children's National and its affiliates maintain the right, in accordance with our policy, to enforce a drug-free workplace, including prohibiting recreational or prescribed marijuana.
#J-18808-Ljbffr