Local Cybersecurity Coordinator/ SME

Project Overview

The Department of Information Technology (DoIT) Office of Security Management (OSM) requires the services of Subject Matter Experts/Local Cybersecurity Coordinators (SME). The SME supports the Director of Local Cybersecurity in implementing programs that enhance cybersecurity and service delivery for local governments in Maryland. The SME collaborates with federal, state, and local partners to foster a cyber-resilient ecosystem and improve the state s cybersecurity posture.

Duties/Responsibilities

Assessment and Analysis

• Conduct comprehensive assessments of local networks, cybersecurity architecture, tools, policies, and plans.
• Identify vulnerabilities and gaps in existing security measures.
• Analyze risk factors and prioritize areas for improvement.

Remediation and Enhancement

• Collaborate with stakeholders to remediate vulnerabilities and strengthen security posture.
• Draft and refine cybersecurity policies, best practices, and implementation plans.
• Recommend effective security solutions tailored to each local unit of government s needs.

Training and Capacity Building

• Provide training on cybersecurity topics.
• Foster knowledge sharing and skill development within organizations.

Reporting and Risk Assessment

• Prepare detailed reports for leadership, highlighting findings, risks, and recommended actions including prioritization of recommendations.
• Translate technical assessments into actionable insights for decision-makers.
• Advise on strategic paths forward to mitigate risks effectively.

Collaboration and Communication

• Establish strong relationships with stakeholders, including government agencies and organizations.
• Facilitate communication between technical experts and leadership.
• Act as a bridge, ensuring alignment between technical requirements and organizational goals.

Education

Bachelor s degree in Computer Science, Information Technology, or a related field. (Years of demonstrated experience will be considered in lieu of a bachelor's degree).

Required Experience

• Proven experience of at least five (5) years as a Cyber Security Engineer, Cyber Manager, Cyber Analyst, or similar role in cybersecurity.
• Knowledge of cybersecurity solutions and other common security technologies.
• Experience performing security maturity and system assessments in alignment with NIST Cybersecurity Framework along with preparing respective assessment reports.
• Experience remediating risk and vulnerabilities through the implementation of applying solutions that align with cybersecurity best practices.
• Excellent problem-solving skills and attention to detail.
• Experience working with and presenting to senior leadership and executives.
• Strong communication skills to communicate with a diverse range of stakeholders and effectively report findings.
• Ability to travel to jurisdictions within Maryland.

Preferred Qualifications

• Graduate degree in cybersecurity or related area of expertise.
• Experience with NIST CSF.
• Preference for candidates with relevant professional certifications.