What are the responsibilities and job description for the Cybersecurity Manager position at New Braunfels Utilities?
Position Summary
Leads and executes the cybersecurity program at NBU. Supervises, coordinates, directs, and manages the daily activities of cybersecurity personnel and ensures the protection of NBU's digital assets, information systems, operational technology, and critical infrastructure. Leads and executes responses to cybersecurity incidents, conducts threat assessments, and implements security measures to safeguard against potential attacks. Manages the deployment and maintenance of cybersecurity tools, resources, and work processes. Oversees the development and enforcement of security policies and procedures to protect systems and ensure the resilience of NBU.
Essential Duties & Responsibilities
Essential Duties & Responsibilities
- Develops and leads comprehensive cybersecurity programs, policies, and procedures based on the NIST Cybersecurity Framework and tailored for the specific needs of NBU.
- Engages in strategic planning and sets departmental goals, objectives, and budgets aligned with industry specific regulatory requirements and standards.
- Leads the cybersecurity team with a focus on critical infrastructure protection. Hires, trains, and manages cybersecurity personnel, ensuring compliance with HR policies while fostering a culture of cyber awareness and security excellence.
- Maintains a continuous awareness of current and emerging cyber threats specific to the utility industry. Ensures proactive measures are in place to mitigate risks and responds promptly to cybersecurity incidents and vulnerabilities.
- Selects, implements, operates and maintains cybersecurity technologies such as SIEM systems, endpoint protection, network segmentation, and access control systems tailored for complex utility organizations.
- Directs day-to-day cybersecurity operations, including monitoring of networks and systems, to detect, analyze, and respond to cybersecurity incidents.
- Ensures clear, timely, and effective communication within the cybersecurity team and across other departments.
- Manages personnel issues, performance improvements, and ensures compliance with NBU's cybersecurity protocols.
- Designs and administers cybersecurity training programs, particularly emphasizing the unique security requirements of OT and IT convergence in utility operations. Ensures team members are proficient in cybersecurity best practices relevant to the utility sector.
- Manages departmental expenses strategically using risk-based decision making.
- Manages and coordinates a high level of incident response and threat intelligence sharing with relevant stakeholders for heightened security of critical infrastructure.
- Collaborates with local and federal law enforcement and other critical stakeholders to enhance cyber physical security measures and incident response capabilities.
- Keeps abreast of national and international cybersecurity legislation, industry-specific security standards (e.g., NERC CIP, NIST Cybersecurity Framework, etc.).
- Implements best practices to maintain regulatory compliance and operational resilience.
- Encourages ongoing professional development and knowledge acquisition in cybersecurity, focusing on trends and innovations that affect the utility sector.
- Ensures all cybersecurity staff understand the operational and regulatory importance of their roles and adhere strictly to both internal and external policy requirements.
- Coordinates with emergency management and OT / IT disaster recovery teams to enhance response strategies and minimize downtime in the event of cyber incidents.
- Promptly reports and escalates cybersecurity issues to higher management and regulatory bodies as required.
- Leads thorough cybersecurity investigations and root cause analyses to prevent future incidents.
- Executes special security projects and initiatives that align with NBU's strategic vision for safeguarding critical infrastructure from cyber threats.
This general overview only includes essential functions of the job and does not imply that these are the only duties to be performed by the employee occupying this position. Employees will be required to follow any other job-related instruction and to perform any other job-related duties requested by supervisor or management.
Minimum Qualifications :
Knowledge, Skills and Abilities :
Work Environment :
Physical Demands :
GENERAL RESPONSIBILITIES
Formal Education and Work Experience Requirements
Degree / Diploma Obtained : Bachelors
Work Experience Time Frame : Nine Years or More
Field of Study : Computer Science
Certification and Licensures Requirements
Preferred :
Other Minimum Qualifications