Skip to Main Content

Powered by JobAps

PROGRAM MANAGER SENIOR III

Cyber Defense Incident Responder Manager

Recruitment #21-005484-0002

Introduction

The Maryland Department of Information Technology’s mission is to provide vital technology solutions that allow the Executive Branch, State Agencies and Coordinating Offices to provide Marylanders with services that enable them to live and work more safely, efficiently, and productively.

The Security Services team within the Department of Information Technology (DoIT) provides a statewide strategy for secure, effective, and technically sound use of the State's information technology resources. The team is responsible for the establishment of Security Policies, Security Guidance, Security Awareness, and is a source of IT security information for State agencies.

GRADE

25

LOCATION OF POSITION

Department of Information Technology (DoIT)
100 Community Place
Crownsville, MD  21032

Main Purpose of Job

A DoIT Cyber Defense Incident Responder Manager is managerial level of work in the Office of Security Management (OSM). The position is tasked with daily management of the Security Operations Center, which includes providing tasking a direct oversight of multiple groups within the unit. Additional responsibilities include the handling of escalated security incidents and supporting the investigation and remediation of these events, the proactive threat hunting, capability development, and operational continuous improvement.

This is a Management Service position, and serves at the pleasure of the Appointing Authority.

POSITION DUTIES

Supervises subordinate staff involved with the management of the Security Operations center, including handling escalated security incidents and supporting investigation and remediation of these events, proactive threat hunting, capability development, and operational continuous improvement.

Assigns and reviews work for completeness, accuracy, the application of and compliance with State and federal policy, procedures, laws, rules and regulations; plans and controls workload to assure accuracy and compliance; analyzes work to determine causes of errors, and recommends and implements corrective actions, and policy and procedural changes when necessary; trains and mentors staff in work/time management and technical areas of the work.

Provides, manages and maintains 24/7/365 shift schedule for entire team.   Maintains positive staff

morale and limits turnover.  Improves functioning and cohesiveness of staff over time, especially as new

team members arrive, and others leave.

MINIMUM QUALIFICATIONS

Education:  Bachelor's degree in computer information technology, management information systems, or other information technology related field, from an accredited college or university.


Experience:  Five years of experience in the management of a Service Operations Center (SOC) or other technology operations environment. Experience must include security incident handling, malware analysis, and performing digital forensics.


Notes:


1. Candidates may substitute an Associate’s degree and two years general experience in an IT position with primary responsibility that includes network management, server management, or security operations for the required education.

2. Candidates may substitute four years general experience in an IT position with primary responsibility that includes network management, server management, or security operations for the required education. 

3. Candidates may substitute advanced certifications in related IT fields for up to four years of experience.

DESIRED OR PREFERRED QUALIFICATIONS

Our preferred candidate will have the following:

A Splunk Enterprise Certified Administrator Certification and/or a Palo Alto Networks Certified Network Security Administrator certification.

Project management experience.

SELECTION PROCESS

Please make sure that you provide sufficient information on your application to show that you meet the qualifications for this recruitment. All information concerning your qualifications must be submitted by the closing date. We will not consider information submitted after this date. Successful candidates will be placed on the eligible (employment) list for at least one year.

For education obtained outside the U.S., a copy of the equivalent American education as determined by a foreign credential evaluation service must be provided prior to hire.

EXAMINATION PROCESS

The elvauation may consist of a rating of your education, training, and experience related to the requirements of the position. It is important that you provide complete and accurate information on your application. Please report all experience and education that is related to this position.

BENEFITS

FURTHER INSTRUCTIONS

Online applications are highly recommended. However, if you are unable to apply online, the paper application and supplemental questionnaire may be submitted to: Department of Budget and Management, Recruitment and Examination Division, 301 W. Preston St., Baltimore, MD 21201. Paper application materials must be received in our office by the closing date for the recruitment. No postmarks will be accepted.

For questions regarding this recruitment, please contact the DBM Recruitment and Examination Division at Application.Help@maryland.gov or 410-767-4850, MD TTY Relay Service 1-800-735-2258.

We thank our Veterans for their service to our country.

People with disabilities and bilingual candidates are encouraged to apply.

As an equal opportunity employer, Maryland is committed to recruitment, retaining and promoting employees who are reflective of the State's diversity.