The Port Authority of New York & New Jersey · 4 hours ago
Manager of Cybersecurity Operations Center
Jersey City, NJ
Full-time
Onsite
Senior Level, Lead/Staff
10+ years expThe Port Authority of New York & New Jersey is seeking a Cybersecurity Operations Center Manager to oversee the day-to-day operations of their Cybersecurity Operations Center. This role involves managing vendor performance, ensuring compliance with cybersecurity policies, and leading incident response efforts while optimizing security operations through automation and improved processes.
Government Administration
Hiring Manager
Antara Mukherjee- ACIR,CIR,CDR,CSSR,CSMR
Responsibilities
Provide contract management and supervision for the operations of the 24 x 7 Cyber Security Operations Center (CSOC) to ensure compliance with agency expectations
Ensure that the staffing contractor adheres to the scope of work, delivering services on schedule and within budget
Maintain the currency of policies, procedures, standards, playbooks used to deliver services necessary for continuous monitoring of the organization's information and operating technology systems
Focus on protecting the confidentiality, integrity, and availability of information systems
Oversee third-party Cybersecurity Operations Center (CSOC) vendor performance to ensure SLAs and KPIs are met
Develop and execute the continuous monitoring program, aligning with the NIST Cybersecurity Framework
Establish, maintain, and exercise an enterprise-wide 24x7 incident response capability
Develop incident response policies, procedures, and services to investigate and contain cyber incidents impacting business information and industrial control systems
Ensure incident response capability aligns with the NIST Cybersecurity Risk Framework
Provide guidance to line department staff performing cyber risk assessments, including threat workshops, threat scenarios, and risk scenarios
Serve as the principal forensic technical investigator for cyber incidents
Design and implement solutions for monitoring and responding to cyber threats and incidents
Establish operational relationships with the Office of the Inspector General (OIG) for investigating cyber incidents
Establish operational relationships with PAPD for investigating cyber crime that occurs outside of the area of responsibility of the OIG
Manage vendor relationships to ensure services align with agency requirements and industry best practices
Conduct reviews, audits, and identify areas for improvement while ensuring compliance with contractual obligations
Develop and manage threat intelligence programs, integrating external threat intelligence sources and internal findings
Collaborate with government agencies, industry groups, and private-sector organizations to stay informed about emerging threats and vulnerabilities
Ensure effective sharing and dissemination of relevant threat intelligence within the organization
Continuously evaluate and improve security operations, leveraging automation tools to enhance threat detection, incident response, and operational efficiency
Identify opportunities for process optimization through automation and advanced analytics
Ensure proper integration of security monitoring tools (SIEM, IDS/IPS, Endpoint Detection and Response, etc.) to identify threats and vulnerabilities across the environment
Monitor, review, and validate cyber alerts to assess the level of risk, ensuring timely detection and escalation
Proactively look for emerging threats throughout the environment
Develop and implement reporting frameworks to track key cybersecurity metrics (incident response times, threats detected, vulnerabilities, etc.)
Provide regular reports to senior leadership on the status of cybersecurity operations, incidents, trends, and effectiveness of strategies
Lead and mentor internal cybersecurity staff, ensuring high levels of skill development, training, and career progression
Work with HR to recruit, hire, and retain skilled cybersecurity personnel as needed
Foster a culture of cybersecurity awareness, collaboration, and continuous improvement
Ensure cybersecurity operations comply with relevant regulations (e.g., NIST, GDPR, HIPAA, PCI, FISMA)
Participate in periodic audits and assessments to verify the organization’s cybersecurity posture aligns with regulatory requirements
Support external audits and assessments of the organization’s cybersecurity posture
Collaborate with IT and business continuity teams to ensure incident response plans are integrated with disaster recovery and business continuity planning
Participate in tabletop exercises and simulations to test the readiness of the incident response team and improve procedures
Support proactive vulnerability management, ensuring vulnerabilities are assessed, prioritized, and remediated in a timely manner
Assist in risk assessments to evaluate and prioritize cybersecurity risks across the agency
Provide guidance on implementing risk mitigation strategies to reduce overall cybersecurity risk
Work with IT teams to ensure changes to the network and systems are reviewed for potential cybersecurity impact
Advise on security requirements and contribute to the design of secure system architectures and solutions
Serve as the Incident Commander for cybersecurity incidents, coordinating with departments and external partners (e.g., law enforcement, government agencies)
Coordinate and lead cross-functional teams during cyber incidents, ensuring proper communication, containment, remediation, and reporting
Stay abreast of emerging and evolving cybersecurity threats
Actively seek out new information on emerging cyber threats
Maintain a level of awareness of cyber threats in order to proactively anticipate and prevent them by staying ahead of the curve
Use threat intelligence sources, briefings, industry forums and other information sources to stay informed
Qualification
Required
A minimum of 10 years of experience in managing a Cybersecurity Operations Center (CSOC) or a security operations team
Strong knowledge of the NIST Cybersecurity Framework, incident response, threat hunting, and risk management practices
Familiarity with SIEM platforms, IDS/IPS, endpoint protection, and other cybersecurity monitoring tools
Strong knowledge of the FEMA Incident Command System (ICS) and the ability to lead an ICS based incident response
Experience in vendor management, contract negotiation, and performance monitoring
Strong leadership and interpersonal skills, with the ability to lead and motivate teams effectively
Excellent communication and presentation skills, with the ability to communicate complex security topics to non-technical stakeholders
Preferred
Certifications in the Incident Command System (ICS) are highly desirable
Professional certifications such as CISSP, CISM, CISA, or similar certifications are highly desirable
Experience with incident response tools, forensic investigation techniques, and malware analysis
Company
The Port Authority of New York & New Jersey
If you have ever flown out of JFK, biked across the George Washington Bridge, or captured that perfect picture of the World Trade Center, then you have witnessed just some of what the Port Authority of NY & NJ does.
5001-10000 employees
Funding
Current Stage
Late StageLeadership Team
Alessandra Brown
Principal Operations Planning Analyst, Office of the COO
Ann Jenica Jose
Innovation Intern at the Office of the Chief Operating Officer
Recent News
San Gabriel Valley Tribune
2025-10-02
2025-10-02
The Real Deal
2025-09-17
Company data provided by crunchbase