View Our Website View All Jobs

Deputy Director, Cybersecurity Leader

About Us: The Museum of Science and Industry, Chicago is the largest and most interactive science museum in the Western Hemisphere. Chicago’s Museum of Science and Industry (MSI) exposes guests of all ages to awe-inspiring exhibitions that spark curiosity and bring science to life. MSI’s mission – to inspire the inventive genius in everyone – is realized through its world-class exhibitions and engaging guest experiences. The Museum of Science and Industry provides programs and experiences that deepen the engagement of students and teachers in science and science-related disciplines, with a vision to inspire and motivate our children to achieve their full potential in the fields of science, technology, engineering and medicine.

 

We offer a creative, collaborative, and innovative environment for our employees. Our employees get great perks such as: benefits starting day one of your employment, free admission to MSI for family and friends, free admission to other museums, free parking in MSI’s garage and more! If you are equally passionate about our vision and want to be surrounded by a team of dynamic, smart and innovative people, the Museum of Science and Industry is the right place for you!

 

The Job: Reporting directly to the Head of IT, this senior-level role oversees the cybersecurity function for MSI as a whole. The Deputy Director, Cyber Security is responsible for the continuous development and enforcement of our cybersecurity program, reducing and managing risk to the organization. Additionally, this role drives awareness and adoption of cyber security programs and policies across the organization.

 

Responsibilities:

  • Provide strategic leadership, strengthening MSI’s security posture while fulfilling organizational goals and objectives
  • Develop strategy and implement solutions to minimize risk of cyber attacks
  • Develop and drive the adoption of Policies, Standards, Guidelines, and Procedures based on security best practices, industry standards, and government and regulatory compliance (e.g., PCI)
  • Establish and maintain a roadmap of new cyber capabilities, leading to the design and delivery of those capabilities, implementing next generation solutions
  • Stay abreast of cybersecurity issues and trends, emerging technology and solutions, regulatory changes, and the evolving threat landscape
  • Understand current and emerging IT and IS risks
  • Understand and execute upon business and IT priorities (e.g., vision), trends (e.g., industry knowledge) and markets (e.g., existing/planned)
  • Maintain and continuously strengthen a robust Risk Management program
  • Perform periodic IT security risk assessments and conduct continuous assessment of current IT security practices and systems
  • Monitor security threats and vulnerabilities in network and host systems
  • Oversee investigation of reported security incidents (Incident Response)
  • Customer relationship and vendor management
  • Ensure business continuity
  • Implement Process improvement and process documentation best practices
  • Collaboration with teams to lead System and technology integration
  • Provide security training and mentoring to other team members, and across the organization
  • Championing & educating cybersecurity best practices & communicating risk to all parts of MSI

Qualifications:

  • Bachelor’s degree in Information Technology or Information Security preferred
  • Seven (7) to ten (10) years’ experience in cyber security
  • Proven experience working with and influencing with all levels of leadership as well as driving execution of programs or processes
  • Strong collaborator who works well independently or on team projects.
  • High level of initiative and exceptional problem solving and analytical skills.
  • Proven leadership skills, e.g. effectively leading teams and people
  • Ability to recognize and drive need for change
  • Demonstrated continuous improvement mindset
  • Strong oral & written communication skills
  • Results oriented, with the ability to prioritize and make trade-off decisions
  • Ability to simplify & standardize complex concepts or processes

Technical Competencies:

  • IAM Provisioning & Management
  • Source Code Analysis
  • Certificate & Key Management
  • Configuration Management
  • Threat and Vulnerability Management
  • Server and End Point Security
  • Patch Management
  • Wireless Security
  • Mobile Device Management
  • Log and monitoring management systems; SIEM
  • Security event monitoring systems
  • Cloud Security / CASB
  • Data Loss Prevention (DLP)
  • Network-based and host-based intrusion detection systems
  • Web Application Firewall
  • Firewall technologies
  • Malware detection 
  • Enterprise-level antivirus solutions/systems and encryptions standards
  • System and Technology Integration

    The Museum of Science and Industry is an Equal Opportunity/Affirmative Action employer, which includes providing equal opportunity without regard to race, color, religion, gender, national origin, disability, or protected veteran status.

    Read More

    Apply for this position

    Required*
    Apply with Indeed
    Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

    Paste your resume here or Attach resume file

    150
    To comply with government Equal Employment Opportunity / Affirmative Action reporting regulations, we are requesting (but NOT requiring) that you enter this personal data. This information will not be used in connection with any employment decisions, and will be used solely as permitted by state and federal law. Your voluntary cooperation would be appreciated. Learn more.
    Gender
    Race/Ethnicity

    Invitation for Job Applicants to Self-Identify as a U.S. Veteran
    • A “disabled veteran” is one of the following:
      • a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or
      • a person who was discharged or released from active duty because of a service-connected disability.
    • A “recently separated veteran” means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
    • An “active duty wartime or campaign badge veteran” means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.
    • An “Armed forces service medal veteran” means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.
    Veteran status
    I IDENTIFY AS ONE OR MORE OF THE CLASSIFICATIONS OF PROTECTED VETERAN LISTED ABOVE
    I AM NOT A PROTECTED VETERAN
    I DON’T WISH TO ANSWER

    Voluntary Self-Identification of Disability
    Voluntary Self-Identification of Disability Form CC-305
    OMB Control Number 1250-0005
    Expires 1/31/2020
    Why are you being asked to complete this form?

    Because we do business with the government, we must reach out to, hire, and provide equal opportunity to qualified people with disabilities.i To help us measure how well we are doing, we are asking you to tell us if you have a disability or if you ever had a disability. Completing this form is voluntary, but we hope that you will choose to fill it out. If you are applying for a job, any answer you give will be kept private and will not be used against you in any way.

    If you already work for us, your answer will not be used against you in any way. Because a person may become disabled at any time, we are required to ask all of our employees to update their information every five years. You may voluntarily self-identify as having a disability on this form without fear of any punishment because you did not identify as having a disability earlier.

    How do I know if I have a disability?

    You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

    Disabilities include, but are not limited to:

    • Blindness
    • Deafness
    • Cancer
    • Diabetes
    • Epilepsy
    • Autism
    • Cerebral palsy
    • HIV/AIDS
    • Schizophrenia
    • Muscular dystrophy
    • Bipolar disorder
    • Major depression
    • Multiple sclerosis (MS)
    • Missing limbs or partially missing limbs
    • Post-traumatic stress disorder (PTSD)
    • Obsessive compulsive disorder
    • Impairments requiring the use of a wheelchair
    • Intellectual disability (previously called mental retardation)
    Please check one of the boxes below:

    You must enter your name and date
    Your Name Today's Date
    Reasonable Accommodation Notice

    Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.


    iSection 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.


    PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

    Human Check*