This position is located in the Cybersecurity Division (CSD) within Cybersecurity and Infrastructure Security Agency (CISA). The Cybersecurity Division leads cybersecurity efforts for CISA as the Nation's flagship civilian cyber defense organization. The division collaborates with partners across the government and private sector to enhance the Nation's cybersecurity by sharing information, providing cybersecurity services and technical assistance, as well as through education and awareness.Learn more about this agency
The Associate Director (AD) for Threat Hunting (TH) serves as a senior CISA official. The AD for TH is responsible for developing and implementing a cohesive strategy that improves the organization's ability to fulfill its statutory cybersecurity mission. Applicants must demonstrate the ability to manage large and high-value projects, identify limitations in a complex organization, implement effective and efficient solutions, and synthesize complex strategic concepts into operational processes and procedures. The Threat Hunting mission is to identify, analyze, detect and respond to significant cyber threats to the United States by understanding cybersecurity threats, detecting malicious activity in the federal civilian executive branch, critical infrastructure, and critical partner networks, proactively hunting for malicious cyber activity and coordinating and responding to cyber incidents as the national lead for asset response under Presidential Policy Directive-41.
Specific responsibilities include:
Overseeing and leading the development, implementation and management of the TH mission and execution of the CSD strategic plan.
Communicating progress toward accomplishing the mission and reaching objectives. Present ideas and initiatives clearly and understandably. Develops methods to improve results continuously.
Developing, implementing, and managing TH input into the CSD Annual Operating Plan.
Conducting day-to-day management and oversight of all TH lines of effort and programs. This includes conducting daily analysis and situational monitoring to provide information on incidents and other events as they are detected and unfold to raise awareness and understanding better.
Overseeing the execution of the Threat Hunting ability to conduct continuous, at scale hunts across the Federal Civilian Executive Branch.
Leading sensitive, complex incident response engagements to support organizations impacted by cybersecurity intrusions.
Developing communication, negotiation, conflict resolution, leadership, and similar skills to resolve problems and make critical decisions regarding programs and mission performance issues.
Building and sustaining an effective and efficient TH organization, with appropriate performance metrics capable of supporting the CSD mission.
Participating in complex IT and communications acquisition programs. Ensure compliance with appropriate acquisition program management practices.
Deploying and operationally pilots analytical capabilities to support engagements in varied environments, including cloud, on-premises, and hybrid.
Occasional travel - You may be expected to travel for this position.
Job family (Series)
This job originated on www.usajobs.gov. For the full announcement and to apply, visit www.usajobs.gov/GetJob/ViewDetails/603104700. Only resumes submitted according to the instructions on the job announcement listed at www.usajobs.gov will be considered.