Cyber Security Project Manager¶

Cyber Workforce Developer and Manager < Strategic Planning and Policy < Oversee and Govern Develops cyberspace workforce plans, strategies, and guidance to support cyberspace workforce manpower, personnel, training and education requirements and to address changes to cyberspace policy, doctrine, materiel, force structure, and education and training requirements.

Task Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals and objectives and reduce overall organizational risk. Advise senior management (e.g., CIO) on cost/benefit analysis of information security programs, policies, processes, systems, and elements. Develop policy, programs, and guidelines for implementation. Evaluate cost/benefit, economic, and risk analysis in decision-making process. Advocate for adequate funding for cyber training resources, to include both internal and industry-provided courses, instructors, and related materials. Conduct learning needs assessments and identify requirements. Coordinate with internal and external subject matter experts to ensure existing qualification standards reflect organizational functional requirements and meet industry standards. Develop and implement standardized position descriptions based on established cyber work roles. Develop or assist in the development of training policies and protocols for cyber training. Establish and collect metrics to monitor and validate cyber workforce readiness including analysis of cyber workforce data to assess the status of positions identified, filled, and filled with qualified personnel. Promote awareness of cyber policy and strategy as appropriate among management and ensure sound principles are reflected in the organization’s mission, vision, and goals. Support integration of qualified cyber workforce personnel into information systems life cycle development processes. Analyze organizational cyber policy. Assess policy needs and collaborate with stakeholders to develop policies to govern cyber activities. Draft, staff, and publish cyber policy. Review, conduct, or participate in audits of cyber programs and projects. Support the CIO in the formulation of cyber-related policies.

Knowledge Knowledge of risk management processes (e.g., methods for assessing and mitigating risk). Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy. Knowledge of cybersecurity and privacy principles. Knowledge of cyber threats and vulnerabilities. Knowledge of specific operational impacts of cybersecurity lapses. Knowledge of resource management principles and techniques. Knowledge of emerging security issues, risks, and vulnerabilities. Knowledge of applicable laws, statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code), Knowledge of information technology (IT) supply chain security and supply chain risk management policies, requirements, and procedures. Knowledge of learning assessment techniques (rubrics, evaluation plans, tests, quizzes). Knowledge of organizational human resource policies, processes, and procedures. Knowledge of emerging technologies that have potential for exploitation. Knowledge of industry indicators useful for identifying technology trends. Knowledge of current and emerging cyber technologies.

Skills Skill in developing workforce and position qualification standards. Skill in using manpower and personnel IT systems.

Abilities Ability to design valid and reliable assessments. Ability to assess and forecast manpower requirements to meet organizational objectives. Ability to develop policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities. Ability to leverage best practices and lessons learned of external organizations and academic institutions dealing with cyber issues. Ability to develop career path opportunities. Ability to determine the validity of workforce trend data.