Cybersecurity Liaison

Overview

This is a temporary, grant-funded position and expected to last until June 30th, 2027.

Brief Job Description:

The City of Boston Department of Innovation and Technology (DoIT) Cybersecurity Team is actively growing and seeking to hire a Cybersecurity Liaison. This role will focus on improving the overall cybersecurity posture for the Metro Boston Homeland Security Region (MBHSR). This role will report directly to the Director of Risk, Compliance & Auditing and work closely with Boston’s Cybersecurity team, DoIT, and cyber/technology teams throughout the MBHSR. The MBHSR is made up of the following municipalities: Boston, Brookline, Cambridge, Chelsea, Everett, Quincy, Revere, Somerville, and Winthrop.

Responsibilities

• Establish a strong relationship with public safety officials and cybersecurity/technology staff from municipalities within the region.
• Research and assist in the development of cybersecurity policies for each municipality and region.
• Assist in conducting risk assessments to identify and evaluate potential cybersecurity threats and vulnerabilities.
• Help maintain and update the risk register, providing data and insights for key stakeholders.
• Establish a baseline level of security that all MBHSR municipalities should meet based on industry standards and best practices. 
• Assess and assist in mitigating system security threats and risks via a program life cycle.
• Facilitate quarterly cybersecurity meetings with regional IT personnel and weekly meetings with each municipality.
• Provide advice and act as a cybersecurity subject matter expert for the region.
• Manage internal and external communication with regional stakeholders. 
• Coordinate regional cyber security-related projects. 
• Performs other related work as required.

Minimum Entrance Qualifications

• Three (3) years of full-time, or equivalent part-time, experience in Information Security, Risk Management, or business-related fields. A Bachelor's degree in a related field may be substituted for two (2) years of the required experience. A Master's degree can be substituted for three (3) years of the required experience.
• Previous hands-on technical experience is desirable.
• Excellent analytical, problem-solving, and decision-making skills.
• Knowledge of information security, risk management, and compliance frameworks (e.g., NIST Cyber Security Framework, NIST 800-30 & 800-53, ISO 17799 & 27001, CJIS, HIPAA, FERPA, FIPS, and PCI-DSS).
• Strong communication and interpersonal skills.
• Some experience assisting with the management of an enterprise risk management program, as well as compliance and auditing activities, is desirable.
• Must be able to travel to the municipalities within the MBHSR and travel around the region. Must have and maintain a current Massachusetts driver's license.
• Hands-on experience with a variety of information security and network security solutions is strongly preferred.
• Ability to manage multiple tasks and meet deadlines.
• Ability to leverage best practices and lessons learned from external organizations and academic institutions dealing with cyber issues.
• Ability to exercise good judgment and focus on detail as required by the job.  

BOSTON RESIDENCY REQUIRED

Terms:Union/Salary Plan/Grade: Non-Union/ MM2-06Hours per week: 35