Required Minimum Qualifications
- Experience in cyber-Governance, Risk, and Compliance (GRC).
- Experience in a cyber assessment or inspection related role, ideally with experience in cybersecurity incident response.
- Solid technical understanding of cybersecurity concepts, standards, guidelines, and principles.
- Experience with industry-recognized security compliance frameworks (NIST, PCI-DSS, HIPAA, etc.).
- Experience with data aggregation/analytics and/or SIEM tools.
- Experience with Endpoint Detection and Response (EDR) solutions.
- Experience with Vulnerability Management tools.
- Ability to handle time-sensitive situations with a calm and professional attitude while maintaining an appropriate sense of urgency.
- Ability to work at a technical level to assessments of IT environments, capable of identifying vectors of threats, vulnerabilities, and areas on non-compliance.
- Ability to communicate and present at various levels of technical detail depending on audience, ranging from cybersecurity deep dives to non-technical stakeholders.
- Effective project management and organizational skills, including managing multiple, concurrent tasks and meeting deadlines.
- Excellent interpersonal skills and ability to create collaborative relationships with colleagues across various groups and levels, and influence without authority.
- Demonstrates leadership skills with ability to communicate effectively and work independently, both as part of and leading a team.
- Ability to mentor team members at all levels, develop training plans, and foster personal and professional growth within the team.
- CompTIA Advanced Security Practitioner (CASP), Certification Authorization Professional (CAP), GIAC Security Leadership Certificate (GSLC), Health Care Information Security and Privacy Practitioner (HCISPP), or equivalent certification.
Preferred Qualifications
- Active Secret Clearance
- Master’s degree in cybersecurity, information technology, engineering, or a related field
- Experience as an incident manager, commander, or leader.
- 10+ years of progressive work-related experience in information security, public accounting or internal audit, with a focus on IT controls audits and assessments and/or controls readiness assessments.
- Excellent knowledge of technology infrastructure environments including Windows, Mac, Linux, virtual, and cloud.
- Experience in an incident response-related role, or a participant in an incident response team
- Experience with the following cybersecurity tools: Splunk, CrowdStrike, Tenable.io, Axonious
- Detail oriented; Exceptional oral and written communication and presentation skills.
- Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or equivalent certification
Travel Requirements
<10% travel
Education and Length of Experience
This position vacancy is an open-rank announcement. The final job offer will be dependent on candidate qualifications in alignment with Research Faculty Extension Professional ranks as outlined in section 3.2.1 of the Georgia Tech Faculty Handbook
- 9 years of related experience with a Bachelor’s degree in Information Technology, Cybersecurity, or related field.
- 7 years of related experience with a Masters’ degree in in Information Technology, Cybersecurity, or related field.
- 4 years of related experience with a Ph.D. in in Information Technology, Cybersecurity, or related field.
U.S. Citizenship Requirements
Due to our research contracts with the U.S. federal government, candidates for this position must be U.S. Citizens.
Clearance Type Required
Candidates must be able to obtain and maintain an active security clearance.