Senior Cybersecurity Manager

This is a high-level Senior Cybersecurity managerial position responsible for overseeing the Judiciary's Cybersecurity posture. The role involves supporting current and future security infrastructure and services while safeguarding data and documents at rest and in transit. The position requires 24/7/365 support, including on-call for all Cybersecurity and non-cybersecurity incident support calls. Responsibilities include enforcing policies, standards, and procedures designed to protect the Judiciary's infrastructures from all types of Cybersecurity incidents or security breaches. Additionally, this role involves identifying active vulnerabilities by utilizing various tools or services and collaborating with the Appellate Courts and AOPC/IT teams to resolve these vulnerabilities, ensuring the network infrastructure and data remain secure.

Job Highlights

• Excellent benefits program, including comprehensive, low-cost medical, dental, vision, and prescription plans for employees and eligible family members beginning on the first day of employment

• 13 paid holidays, 12 paid sick days, and 12+ paid vacation days per year.

• Salary increases, employee assistance programs, and State retirement plans.

• Telework may be available up to 2 days per week.

The position is located in Mechanicsburg.

Job Duties

• Makes Cybersecurity recommendations for the Judiciary, including but not limited to; Cloud applications and services, on-prem enterprise data center network, security, appliance and server infrastructure ensuring Cyber security controls are incorporated for all aspects of the infrastructure while servicing the entire Judiciary.

• Works with Cybersecurity vendors, monitors Manage Detection and Response (MDR) alerts, event log correlation, unwanted or unlicensed software, and escalates Cyber events to Senior management daily.

• Manages a team, trains and mentors employees, schedules regular team meetings, and writes yearly performance evaluations.

• Actively researches current Threat landscapes to identify if any active in-the-wild Cybersecurity events impact the Judiciary and provides guidance on ensuring services and data are protected.

• Active involvement in the development of Judiciary applications, services, or vendor procurements by reviewing and placing a Cybersecurity wrapper around those products and services while being procured and after procurement, Cybersecurity support of such products and services

• Provides outside-the-box Cybersecurity thinking regarding all aspects of Cybersecurity for the Judiciary’s data and services

• Performs strategic 3–5-year planning for all Cybersecurity infrastructure and authors strategic planning documents for Senior leadership.

• Enlists in auto-generated emails, alerts, and discussions about the current Threat landscape with Federal, State, and Local agencies, including CISA, CERT, and ISAC.

• Routinely schedules and coordinates Cybersecurity assessments from Federal agencies such as but not limited to CISA, DHS, and the Pennsylvania State Police.

• Manages and maintains all Cloud or on-prem DDoS solutions and services ensuring these services provide protection to the Judiciary.

• Serves as a liaison to the UJSNet network telecommunications vendors and coordinates Cybersecurity configurations or discussions pertaining to aspects of Cybersecurity around their services and products.

• Manages, maintains, and upgrades all on-prem security appliances and infrastructure, ensuring all services and physical infrastructure are protected from Cybersecurity threats externally and internally.

• Holds monthly Cybersecurity meetings with the Appellate Courts and Judiciary staff and develops a monthly Cybersecurity agenda.

• Participates in Cybersecurity awareness and the development of the quarterly AOPC Cybersecurity newsletter.

• Develops a relationship with State and Federal Cybersecurity agencies and receives alerts on the current Threat landscape for additional services on the Judiciary’s behalf.

Minimum Qualifications

• Bachelor’s degree with an IT-related major PLUS

• Five years of professional experience in IT security

• An equivalent combination of education, experience, and/or training may be considered.

Additional Requirements

• Satisfactory criminal background check required.

• Excellent communication and writing skills are required to develop Standard Operation Procedures and Risk Management documents.

• Exhibit expert analytical skills and comprehensive knowledge of best practices to mitigate a variety of Cybersecurity threats.

Salary information

Starting Annual Salary

$102,348 - $122,999

Applicants requiring accommodation, for any part of the application and/or interview process, should contact Human Resources at (717) 231-3309 or human.resources@pacourts.us.