Cybersecurity Consultant at Columbus, OH(Hybrid)

Cybersecurity Consultant at Columbus, OH (Hybrid)

Role: Cybersecurity Consultant
Location: Columbus, OH (Locals only)

Requirement Description: The Ohio Department of Aging (ODA) is looking for an experienced and highly skilled Sr. Cybersecurity Consultant to join the team. She or he will assist in guiding cybersecurity best practices, building a security-focused culture through partnership and collaboration with the business and technology. This position combines responsibility for exercising cybersecurity strategy and roadmap, education and awareness, governance, and compliance.

Responsibilities:

1. Develops and implements business domain expertise to inform the cybersecurity and compliance risk management strategy.
2. Exercises appropriate standards and associated risk controls based in compliance with NIST 800-53.
3. Develops, implements, and maintains security controls, processes, and procedures to manage risk across all information system environments (infrastructure, network, and applications) with the assistance of the application and infrastructure management teams.
4. Ensures technology risk impacting the business is effectively identified, quantified, communicated, and managed, including recommendations for resolution and identifying the root cause/key themes.
5. Determines how mainstream and emerging technologies can be safely and securely used to advance business strategy.
6. Establishes and manages a security risk governance framework; publishes and disseminates security policies, standards, and supporting materials to reduce risk through security awareness, and monitors compliance.
7. Assists and directs the organization in the daily execution of identifying, developing, implementing, and maintaining processes to reduce strategic business and information risks.
8. Develops overall cybersecurity program plans, guidance, and procedures necessary to effectively execute diverse technical, administrative, and program functions.

Mandatory Requirements:

1. 4-year college degree or equivalent technical study.
2. Proven experience leading and managing innovative teams of highly technical professionals; 15+ years in privacy, security, or a related field.
3. One or more Information Security Certifications preferred: CISSP, CISM, CCSP, GSLC, GSEC, CISA.
4. Strong experience in developing cybersecurity roadmap and strategy.
5. Demonstrated clear and concise writing and verbal skills to communicate complex issues and solutions in simple terms to all levels of the organization.
6. Strong experience in cybersecurity strategic planning, NIST compliance, CMMC or CMMI maturity models.
7. Strong experience in Program Management or experience planning and leading a team to achieve a technical goal.
8. Demonstrated experience collaborating in a highly matrixed environment involving multiple internal and external stakeholders to gather data that enables prioritization and action.
9. Experience with developing key metrics reports, tracking projects, and developing corrective action project plans as required.
10. Excellent analytical, project management, and organizational skills with a keen attention to detail.
11. Solid analytical/problem-solving skills with the ability to identify solutions to unusual and complex problems.
12. Excellent written and verbal communication skills.