Airport Cybersecurity Operations Manager

Examples of Duties

Under administrative direction, is responsible for planning, managing, developing work rules, training, coordinating, and administering all activities and personnel of such staff positions as administration, citizen participation, research, and finance, and manages such personnel as are assigned to specific functions in the performance of the necessary duties. Performs other job-related duties as required.

Minimum Qualifications

A High School Diploma or GED is required. A Bachelor's Degree is required. Four years of full time paid management or administrative experience is required. (Substitution: Two years of experience may substitute for each year of college education lacking. A valid State of Ohio Driver's License is required.

Supplemental Information

Duty Statement (Function): Under the administration direction, you will be responsible for leading our cybersecurity efforts and ensuring the protection of our critical digital infrastructure. You will be responsible for overseeing all aspects of cybersecurity operations, including monitoring, incident response, and compliance adherence.   Responsibilities:

Strategic Leadership: Provide strategic direction and leadership in developing and implementing cybersecurity strategies to mitigate risks and safeguard airport assets.

Team Management: Lead and mentor a team of cybersecurity professionals, fostering collaboration, skill development, and a culture of continuous improvement.

Operational Oversight: Direct day-to-day cybersecurity operations, including monitoring network traffic, managing security incidents, and maintaining incident response protocols.

Policy Development: Develop and enforce cybersecurity policies, procedures, and technical standards to ensure compliance with industry regulations and best practices.

Collaboration: Collaborate with airport departments and external stakeholders to integrate security controls into business processes, applications, and infrastructure.

Risk Management: Conduct risk assessments, prioritize remediation efforts, and ensure compliance with relevant regulations and standards, such as TSA and FAA requirements.

Vendor Management: Manage relationships with third-party vendors and service providers to ensure the security of outsourced systems and services.

Threat Intelligence: Stay informed about emerging threats and leverage threat intelligence to proactively detect and mitigate potential security incidents.

Incident Response: Lead incident response efforts, including investigation, containment, and recovery, and ensure timely communication with stakeholders.

Reporting and Compliance: Prepare and present reports on cybersecurity metrics, incidents, and remediation efforts to airport management and regulatory agencies.

Technical Expertise: Utilize familiarity with domain structures, user authentication mechanisms, fundamental cryptography, and advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.

Hands-On Experience: Analyze high volumes of logs, network data (e.g., Netflow, FPC), and other attack artifacts in support of incident investigations, and manage vulnerability scanning solutions effectively.

Regulatory Compliance: Ensure familiarity with the DOD Information Assurance Vulnerability Management program and NIST Security and Privacy controls