"Alerted.org

IT SECURITY MANAGER

Title Description: INFORMATION TECHNOLOGY

Date Posted: 5/22/2025

Deadline: 6/11/2025

Job Number: 088-25-N

Branch:

Salary: $ 92,215 - $ 138,323

Union Status: NON-REPRESENTED

WORK OBJECTIVE: The IT Security Manager (ITSM) is responsible for leading the day-to-day operations of securing the Authority’s various information systems. Reporting to the Chief Technology Officer (CTO), the ITSM is tasked with providing technical expertise in all areas of network, system, and application security. The ITSM works closely with the various teams in the Information Technology department to ensure that systems and networks are always designed, developed, deployed, and managed with an emphasis on strong, effective security and risk management controls. The ITSM leads the firm's vulnerability management program, manages the annual cybersecurity assessments and penetration tests, and research and reports on emerging threats, to help the firm take pre-emptive risk mitigation steps. The ITSM effectively correlates and analyzes security events within the context of the Authority’s unique environment to proactively detect threats and mitigate attacks before they occur. The ITSM will be tasked with compliance of TSA, FAA and NIST 800-53 standards. This included documented cyber security programs, policies and processes, monthly reporting, maturity modeling and development of training program for cyber security staff. Management of the hosted security operations center, which includes contract management, vendor management and the integration of the combined offsite and onsite teams.

ESSENTIAL FUNCTIONS: The list of essential functions, as outlined herein, is intended to be representative of the tasks performed within this classification. It is not necessarily descriptive of any one position in the class. The omission of an essential function does not preclude management from assigning duties not listed herein if such duties are a logical assignment to the position. • Create and maintain the enterprise’s security architecture design. • Create and maintain the enterprise’s security awareness training program. • Create and maintain the enterprise’s security documents (policies, standards, baselines, guidelines and procedures). • Manage, document, participate, and oversee Cyber Incident Response Team (CIRT) and incident response program. • Create and maintain the enterprise’s Business Continuity Plan and Disaster Recovery Plan. • Effectively communicate cyber security details and technical analysis to varied audiences (e.g., IT workers, leadership) within an organization. • Oversee the development and distribution of actionable strategic, technical, and tactical cyber information and intelligence to non-executive agencies, local governments, and public authorities through weekly, monthly, or ad hoc reports, briefings, and presentations. • Serve as primary point of contact for an affected agency during a cyber incident • Proactively monitor the environment to detect and implement steps to mitigate cyber-attacks before they occur. • Provides technical expertise regarding security-related concepts to operational teams within the Information Technology Department and the business. • Review, investigate, and respond to real-time alerts within the environment. • Review real-time and historical reports for security and/or compliance violations. • Monitor online security-related resources for new and emerging cyber threats. • Assesses new security technologies to determine potential value for the enterprise. • Conducts vulnerability assessments of firm systems, networks and vendors. • Manage systems owned by the Information Security Team. • Manage vendors that perform security functions for the enterprise. • Supervise the design and execution of vulnerability assessments, penetration tests and security audits. • Manage vendors that perform security functions for the enterprise. • Ensure the enforcement of enterprise security policy and documents. • Supervise all investigations into problematic activity and provide on-going communication with senior management. • Administer and audit all systems to ensure security compliance. • Manage all security department activities and personnel. • Liaise with cyber security industry experts to maintain knowledge of cyber trends and techniques. • Utilize incident data to develop new CIRT technical programs and products to improve the cyber maturity posture. • Perform additional duties and tasks assigned.

KNOWLEDGE, SKILLS and ABILITIES: • Create and maintain the enterprise’s security architecture design. • Working experience with the following technology vendors and products: Splunk, Trend Micro, Palo Alto, Endpoint Central, Darktrace, Qualys, Agile Blue, Tenable, Solar Winds. • Strong writing skills, as well as the ability to articulate security-related concepts to a broad range of technical and non-technical staff. • Working experience with creating, implementing, and managing a threat hunting program within a corporate environment. • Demonstrated experience implementing and/or enforcing security and compliance frameworks such as CSF, NIST, Cobit, and ISO. • Be a proficient problem-solver that is able to work autonomously. Thorough knowledge of computer operating systems. The ability to utilize resources at hand to discover, understand and resolve issues on complex systems. Confidential or sensitive information may be encountered during work activities and the expectation to keep this information private and secured is required. After hours support and on call may be required as the need arises.

PHYSICAL REQUIREMENTS: Tasks involve the ability to exert light physical effort in sedentary to light work, but which may involve some lifting, carrying, pushing and /or pulling of objects and materials of light weight (5-10 pounds) with the occasional need to lift heavier equipment and materials with or without assistance as required.

ENVIRONMENTAL REQUIREMENTS: Work is performed in usual office conditions with rare exposure to disagreeable environmental factors.

MINIMUM QUALIFICATIONS: • A four-year college degree or equivalent industry training and certifications. • At least six years of experience in a security analyst or related position. • One or more of the following certifications: CEH, CISM, CompTIA Security+, CISSP, GSEC • Experience with managing and securing both on-premises and hosted systems and applications. • Experience with application and database security. • Team management experience. Must be able to work well in a team atmosphere. Must be a self-starter and work well without continual supervision. Must be able to pass all background and security clearance checks.

NOTE: TO APPLY: Send NFTA employment application, resume and cover letter specifying the job number 088-25-N to: NFTA Human Resources 181 Ellicott Street Buffalo, NY 14203 Or email to: [email protected]

OTHER: The Niagara Frontier Transportation Authority is an Equal Opportunity Employer All people with disabilities are encouraged to apply