Tennessee Valley Authority Manager, Cybersecurity Operations - 511212 in CHATTANOOGA, Tennessee
Manager, Cybersecurity Operations - 511212
Job ID:511212Location:CHATTANOOGA, TNRegular/Temporary:Regular
Manager, Cybersecurity Operations - 511212
Organization: Technology and Innovation
Department: Cybersecurity Operations
Location: Chattanooga, TN
Posting Open: 4/7/2021
Posting Close: 5/6/2021 at 11:59pm EST
The Manager of Cybersecurity Operations is responsible for protecting TVA from cyber threats and attacks. This is an operational role that coordinates and drives response activities, while keeping the team focused on minimizing impact and ensuring a quick recovery. The Manager of Cybersecurity Operations leads a team of professionals in investigations, forensics and hunts for all organizational cyber incident response.
The Manager, Cybersecurity Operations is responsible for leading cybersecurity incident response and monitoring activities, to include process development, staff development, and technology implementation necessary to perform enterprise-wide security monitoring and incident response activities. This position requires frequent engagement, both technical and managerial, with other IT staff and TVA business partners. Project oversight, routine operational oversight, financial management, and EISP leadership support are required for this position. This person will be broadly accountable to initiate and drive the security Intelligence, Security Monitoring, Incident Management, and Cyber forensic functions for TVA. This will involve planning, executing and management of the threat and vulnerability preventative actions and programs, developing and managing the security resources, and ensuring overall achievement and compliance of the intelligence area with the security goals and company direction. This position will also bring deep industry insight and best practices. This position is responsible for managing the day-to-day operations of cybersecurity monitoring and or cybersecurity incident response.
Supervisory Responsibility— Up to 20 Cybersecurity Sr. Program Managers, Cybersecurity Program Managers, Cybersecurity Sr. Specialist, Cybersecurity Specialist, Cybersecurity Sr. Analyst, Cybersecurity Analyst, managed task contractors, consultants and staff aug contractors.
Budget Responsibility—Up to $10M
Work with the Senior Manager to develop the overall security strategy, timing, and direction for cybersecurity monitoring and incident response. Define and maintain the department strategy and tactical roadmap for 5 year plan with specific actions, metrics and deliverables. Lead the costing and estimating of the resources and budget needs for this area.
Approve and manage strategic and tactical priorities for cybersecurity monitoring and incident response development.
Establish an enterprise-wide cybersecurity monitoring and incident response governance framework.
Establish a mechanism to monitor and measure Information Security Intelligence Risk and Compliance and maturity levels to a baseline of rules and standards. Develop a continuous improvement process that factors into annual goal setting.
Tightly integrates with Strategy, Planning and Architecture as well as Infrastructure departments to review standards, tools and long term plans and specifics as it relates to the cyber security operations program.
Monitor the industry, regulations, laws, and technology to stay current and apply those findings to the TVA cybersecurity operations strategy and plan.
Evaluate, develop, and remediate an overall incident management/response plan across the enterprise that provides consistent security monitoring, incident response, follow up investigation, and determination of root cause.
Develop and implement the standards for new project efforts. Develop the process to estimate the impacts, understand the timing, and factor security intelligence into the initial project evaluation, planning, long term cost of ownership analysis, and solution selection.
Initiate/participate in project and operational reviews to determine potential impacts to either cybersecurity monitoring or incident response operations and plans for escalation or mitigation to resolve security issues/risks/concerns with new project development, as well as ongoing operations.
Ensure security reviews, penetration tests, security implementation services, policy and procedure development, and input to the security architecture design are sufficient to enable appropriate intelligence gathering and monitoring functions.
Work for seamless integration into DHS critical infrastructure protection architecture.
Support internal/external audits and remediation of findings.
Establish a continuous improvement plan to minimize exception and non compliance.
Manage and ensure the organization keeps current with tools to evaluate/support and secure TVA.
Lead the response to incident investigations. Identify the findings and associated mitigation and ensure they are implemented in a timely fashion. Take these findings and incorporate into long term remediation/prevention efforts.
Consults/supports senior management in times of an information security crisis.
Oversight of external security vendors/suppliers in this area.
Design, development, implementation and operations and maintenance of cybersecurity monitoring infrastructure and incident response tools.
Education– A Bachelor’s Degree in computer science, engineering or a related field of study; or equivalent education, training & experience.
Experience - Ten or more years of expert IT enterprise operational experience protecting electronic and information based assets, with at the last five years of that current and hands-on. At least 10 years leading projects/teams. Forensic investigation experience is highly desired. Operating plant experience is highly desired.
Certification/License, etc— CISSP, CISSP-ISSEP, GCIH, or equivalent.
Knowledge/Skills/Abilities— Demonstrated managerial competencies in leadership, delegation, analysis, teamwork, coaching/development, customer service, planning/organizing, flexibility, stress tolerance, communication. Demonstrated strategic and tactical IT planning. Broad knowledge of business functions and related cybersecurity needs. Must stay familiar with Federal laws, regulations, and industry best practices for cybersecurity strategies and technology. Knowledge of industrial control systems and operational technologies and ability to develop/ensure security measures/processes are implemented. Excellent ability to research, evaluate and recommend technical solutions. Ability to develop plans and execute complex efforts involving application of advanced technological knowledge. Must demonstrate tact and effective judgment dealing with confidential/sensitive material. Ability to obtain and maintain Top Secret security clearance required. Candidate may be required to obtain and maintain a security clearance based on position / access requirements and essential job functions.
Equal Employment Opportunity
TVA values and embraces diversity. We encourage all individuals to apply regardless of race, color, national origin, ethnicity, gender, sex, abilities/disabilities, sexual orientation, religion, veteran status and age. We strive to be inclusive of all the people we serve across the Valley.
TVA is an Equal Opportunity employer and complies with all applicable laws and regulations regarding equal employment opportunities. Any applicant or employee who believes s/he has a discrimination claim (including harassment or retaliation) must contact TVA’s Equal Opportunity Compliance office within 45 calendar days of the event or action s/he believes to constitute discrimination, harassment, or retaliation.
All TVA Non-Nuclear employees are covered by TVA's Federal Drug-Free Workplace Program Plan, in accordance with Executive Order 12564, Public Law 100-71 and the Mandatory Guidelines for Federal Workplace Drug Testing. Information regarding the Drug Free Workplace Program can be found atwww.workplace.samhsa.gov. TVA Non-Nuclear employees in Testing Designated Positions, including those performing safety-sensitive duties are also subject to random drug testing. TVA Nuclear employees are subject to random alcohol and drug tests in accordance with 10 CFR Part 26 as mandated by the Nuclear Regulatory Commission (NRC).
How to Claim Vet Preference
If you are a U.S. Military Veteran and would like to be considered a preference-eligible veteran for the purposes of your employment application to TVA, please take the necessary actions outlined in the application process. Please submit your military documents each time you apply for a position.
How to Submit Documentation:
1) Upload documents after you complete the application by clicking Careers Home, Cover Letters and Attachments, and Add Attachment, or
2) Email documents to[email protected]