Manager, Cybersecurity Operations Center
University of Illinois at Urbana-Champaign
The Privacy & Cybersecurity team at the University of Illinois is searching for a Manager for our Cybersecurity Operations Center (CSOC).
The University of Illinois is a world leader in research, teaching, and public engagement. We serve the state, the nation, and the world by creating knowledge, preparing students for lives of impact, and addressing critical societal needs through the transfer and application of knowledge.
We are interested in candidates that can help drive forward the university’s mission by supervising a team of cybersecurity professionals tasked with responding to cybersecurity events. This position guides the team in their responsibilities of incident handling, vulnerability management, and threat hunting. The ideal candidate understands the 24×7 nature of cybersecurity response and will work to maintain a positive work environment ensuring staff are supported and have escalation procedures necessary. This should include caring deeply about supporting an inclusive work environment that promotes team and individual growth. This manager will be looked to as a key advisor and subject matter expert in various areas of cybersecurity. They will have opportunities to work with a diverse and large team of campus IT professionals to build partnerships and shared understandings. Finally, the ideal candidate will be driven to deliver cybersecurity outcomes that directly impact the mission of the university of student success and research excellence. This position offers remote work eligibility with the understanding that some cybersecurity events may require on-campus response.
Why Work at Technology Services?
Highlights of Employee Benefits (PDF)
The University of Illinois is an Equal Opportunity, Affirmative Action employer that recruits and hires qualified candidates without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability or veteran status. For more information, visit http://go.illinois.edu/EEO.
Primary Position Function
Manage staff, activities, and operations within the University’s Cybersecurity Operations Center (CSOC) including, but not limited to CSOC teams’ task and assignments coordination, process design, work prioritization, process optimization, output/excellence metrics, issue resolution, and customer service. Takes primary responsibility for the coordination and escalation of cybersecurity events.
Major Duties & Responsibilities
Manage and oversee the Cybersecurity Operations Center
- Manage daily operations of the CSOC, comprised of the following teams: cybersecurity incident response, vulnerability assessment, threat assessment, intelligence.
- Define, develop, implement, and continually improve cybersecurity operations playbook, emphasizing clarity and consistency of results.
- Analyze CSOC operations with focus on team performance, current goals, operational design, future plans, scalability, automation, and improvement.
- Measure and track team performance against key performance indicators and targets. Manage critical security events requiring quick and elevated action or response.
- Manage assignments and workload of the team based on organizational priorities and goals. Maintain and provide regular and timely CSOC status reports to the Director.
- Develop and maintain accurate, timely, budgeting, costing, and personnel allocation information for the CSOC.
- Coordinate initiatives and operational activities with other CSOCs and security teams.
Lead and participate in the improvement of the cybersecurity posture of the university
- Establish efficient and effective processes and procedures and leverage them for use by the team and other groups.
- Consult and communicate with other cybersecurity teams to improve the cybersecurity posture of the campus, improve cybersecurity tools and services.
- Consult, communicate, and promote security best practices with Technology Services, campus colleges, departments, and units? and other strategic business partners.
- Champion and represent the CSOC teams, within Technology Services and across the university such that awareness of its roles and functions are understood and leveraged to prevent harm, mitigate damage, and reduce risk.
- Understand the applicable processes and procedures of the organization and make recommendations in the continuous improvement of those processes and procedures.
Represent the IT Security office in collaboration and strategic initiatives, applying expertise independently on projects and programs
- Participate in and facilitate internal and external meetings. Drive discussions as needed to represent the needs of the assigned domain(s).
- Present findings/reports to technical and non-technical audiences.
- Provide excellent customer service on behalf of the IT Security office.
- Advocate for Technology Services or other clients and partners in service planning and deployment across the organization.
- Provide recommendations for continual process improvement across all Security workflows.
- Draft and review documentation such as analyses of technical, administrative, or procedural security issues? procedural documentation/playbooks? and team documentation.
Develop and maintain personal and professional excellence through university-provided and external training/seminars/courses? staying abreast of industry trends, methods, and published literature? and participating in manager-approved innovation programs and individual development initiatives.
(1) Six years of progressively responsible work experience in an IT-related profession. College course work with a concentration in Information Technology (IT), IT management, or a closely related discipline may substitute for education: 60 semester hours or Associate’s degree for one year, 90 semester hours for two years, or 120 semester hours or Bachelor’s degree for three years.
(2) Two years of work experience in a supervisory or lead worker capacity in an IT environment.
(1) Experience within higher education and/or research environments.
(2) Process design experience.
(3) Project management experience.
(4) Experience managing IT security operations, IT services, ITSM, service delivery, or software development.
(5) Training in management or leadership practices and principles.
(6) Have good standing with one or more of the following certifications: CISSP, CISM, GSLC, GSTRT, GCIO, GMON, GCDA, GCED.
Knowledge, Skills, and Abilities
Strong organizational, prioritization, and time management skills. Excellent negotiation, group facilitation, and team building skills. Demonstrated commitment to customer service. Demonstrated ability in effective communication and collaborating in a high performance team environment. Basic knowledge of budget principles. Strong problem solving skills. Security incident response practices and principles.
Salary and Appointment Information
This is a full-time, year-round Civil Service IT Manager/Administrative Coordinator position. The expected start date is as soon as possible after June 27, 2022. Salary is commensurate with experience.
Applications must be received by June 27, 2022. Apply for this position using the “Apply for Position” button below. If you have not applied before, you must create your candidate profile at http://jobs.illinois.edu. If you already have a profile, you will be redirected to that existing profile via email notification. To complete the application process:
Step 1) Submit the Staff Vacancy Application using the “Apply for Position” button below.
Step 2) Submit the Voluntary Self-Identification of Disability forms.
Step 3) Upload your cover letter, resume (months and years of employment must be included), and names/contact information for three references. Academic credentials will be verified before hire.
In order to be considered as a transfer candidate, you must apply for this position using the “Apply for Position” button below. Applications not submitted through this website will not be considered. For further information about this specific position, contact Dallas Johnson, Technology Services HR at email@example.com or 217-300-7927. For questions about the application process, please contact 217-333-2137.
The University of Illinois conducts criminal background checks on all job candidates upon acceptance of a contingent offer. Convictions are not a bar to employment. Other pre-employment assessments may be required, depending on the classification of Civil Service employment.
As a qualifying federal contractor, the University of Illinois System uses E-Verify to verify employment eligibility.
The University of Illinois System requires candidates selected for hire to disclose any documented finding of sexual misconduct or sexual harassment and to authorize inquiries to current and former employers regarding findings of sexual misconduct or sexual harassment. For more information, visit Policy on Consideration of Sexual Misconduct in Prior Employment.
The University of Illinois must also comply with applicable federal export control laws and regulations and, as such, reserves the right to employ restricted party screening procedures for applicants.
University of Illinois faculty, staff and students are required to be fully vaccinated against COVID-19. If you are not able to receive the vaccine for medical or religious reasons, you may seek approval for an exemption in accordance with applicable University processes
The University of Illinois is an Equal Opportunity/Affirmative Action Employer. The administration, faculty and staff embrace diversity and are committed to attracting qualified candidates who also embrace and value diversity and inclusivity.