Manager, Cyber Security Engineering

Location: VA Vienna - Headquarters Full/Part Time: Full-Time Regular/Temporary: Regular

Job Description

YOUR LIFE'S MISSION: POSSIBLE

You have goals, dreams, hobbies and things you’re passionate about.


What’s Important to You Is Important to Us
We’re looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them—friends, family and passions. And we're looking for team members who are passionate about our mission—making a difference in military members' and their families' lives. Together, we can make it happen.


Don’t take our word for it.

  • FORTUNE 100 Best Companies to Work For®
  • Computerworld® Best Places to Work in IT
  • FORTUNE® Best Workplaces for Millennials
  • Forbes® America’s Best Employers

IND123

Basic Purpose

To plan, manage, and direct the Enterprise Cybersecurity Engineering Solutions Portfolio within the Information Services Department, which includes overseeing a team of Cybersecurity Engineers responsible for providing technical expertise and enterprise security solutions to ensure the protection of Navy Federal’s brand, data, and IT assets from cyber-based threats. Collaborate with Cybersecurity and Information Services Department leadership to define and shape the strategic vision for the program. Serve as subject matter expert regarding functions, systems, and policies and procedures.


Responsibilities:

• Oversee the architecture, engineering and operational efforts for enterprise wide security solutions
• Develop and maintain an engineering program based on established standards and industry best practices
• Partner with Cybersecurity, Cybersecurity Operations Center Analysts, internal IT operations, and vendors to produce effective technical solutions which provide visibility and response efficiencies in support of an intelligence-driven computer network defense and incident response program
• Oversee the development, implementation, and maintenance of technical capabilities in support of cybersecurity operations
• Develop and implement policies, procedures, goals and priorities as necessitated by demands, changing conditions, volume and/or management request
• Manage engineering activities to ensure solutions are regularly optimized, improved upon, and reevaluated
• Identify and resolve operational and performance gaps and obstacles; recommend and implement changes and improvements
• Ensure delivery and up-to-date availability of documentation to include standard operating procedures, project plans, technical requirements, asset inventory, and lessons learned
• Oversee the assessment and review of current technology to identify key risk areas to ensure an adequate level of control is in place to address risks
• Collaborate with industry partners and internal business units to detect and analyze threats
• Provide reports to appropriate leaders and decision makers regarding outstanding vulnerabilities and remediation tasks as needed to include timely and relevant updates
• Manage third-party contracts and engagements
• Maintain thorough knowledge of and ensure compliance with applicable federal and state laws, rules, regulations, Navy Federal policies and procedures, and service level agreements
• Escalate issues to management in a timely manner with appropriate information regarding risk and impact
• Develop and establish operational metrics and reporting based on Key Performance Indicators
• Provide responses, evidence, and artifacts in response to all internal and external audit inquiries
• Conduct regular lessons learned and after action reviews
• Execute ad-hoc tasks or lead small projects as needed
• Develop and oversee training and development programs for staff; evaluate training programs to ascertain effectiveness
• Perform supervisory/managerial responsibilities
   o Ensure adequate/skilled staffing; select employees
   o Establish performance goals and priorities
   o Prepare, conduct and review performance appraisals
   o Develop, mentor and counsel staff
   o Provide input and/or prepare budget requirements for Annual Financial Plan (AFP)
   o Ensure section/branch goals and objectives align with division/department strategy
   o Ensure efficiency of operations
   o Leadership Level – Supervise daily activities
• Perform other duties as assigned


Qualifications and Education Requirements:

• Master’s degree in Cybersecurity, Information Technology, or related field, or the equivalent combination of education, training and experience
• Expert knowledge of applicable federal and state laws, rules and regulations
• Extensive progressively responsible experience working in a supervisory capacity in a large enterprise wide cybersecurity portfolio providing engineering solutions in support of cybersecurity engineering, preferably in a large financial institution
• Expert knowledge of enterprise-grade security technologies and capabilities (e.g. SIEM, DLP, IPS, Firewalls, Web Security, etc.)
• Expert knowledge of cyber/information security systems engineering lifecycle
• Expert knowledge of network and host-based forensic methodologies
• Expert knowledge of current threat landscape, adversary tactics, techniques and procedures
• Advanced knowledge of information security programs, data security practices and procedures, including risk identification/assessment
• Expert skill developing and implementing programs in a leadership role, providing vision and strategic thinking around a full range of technical decisions and issues
• Expert knowledge of SDLC and change management practices
• Extensive experience in supervising, guiding and mentoring professional technical staff
• Extensive experience working with all levels of staff, management, stakeholders, and vendors
• Extensive experience managing multiple priorities independently and/or in a team environment to achieve goals
• Expert skill using innovative thinking to solve problems and facilitate the decision making process
• Expert analytical thinking skills to include summarizing information and clearly identifying key elements, patterns, results or relationships
• Expert skill presenting findings, conclusions, alternatives and information clearly and concisely
• Expert skill communicating complex technical concepts to non-technical audiences
• Expert skill to influence, negotiate and persuade to reach agreeable exchange and positive outcomes
• Expert planning, organizational and time management skills
• Expert verbal and written communication skills
• Advanced database, word processing, presentation, and spreadsheet software skills


Desired Qualifications and Education Requirements:

• Familiarity with Agile development methodologies and DevSecOps concepts
• Working knowledge of AWS and/or Azure Cloud IaaS delivery models
• Experience in managing a geographically dispersed workforce
• GIAC, CEH, CISSP, Security+, or related Information Security certifications


Hours: Monday - Friday, 8:00am - 4:30pm

Location: 820 Follin Lane, Vienna, VA 22180

Equal Employment Opportunity

Navy Federal values, celebrates, and enacts diversity in the workplace.  Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans.  EOE/AA/M/F/Veteran/Disability


Disclaimer

Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need.
An assessment may be required to compete for this position.


Bank Secrecy Act

Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.