Deputy State Chief Information Security Officer - 72004166

About The Position

Requirements

• Enterprise cybersecurity governance, risk management, threat analytics, cyber intelligence, and incident response principles.
• SOC operations, telemetry, advanced detection analytics, and operational workflows.
• Enterprise architecture frameworks and standards (TOGAF, SOA, OCSF, Cloud Architecture Frameworks).
• Cloud architectures (IaaS, PaaS, SaaS), multi-cloud governance, and security practices.
• Relevant statutes, regulations, and administrative rules, including s. 282.318 and s. 282.3185, F.S., and Chapter 60GG, F.A.C.
• Leading multi-disciplinary teams and building high-performing organizational cultures.
• Planning, coordinating, and executing enterprise-scale cybersecurity and modernization programs.
• Communicating complex technical, operational, and strategic concepts to executive leadership and stakeholders.
• Coordinating cross-agency initiatives and aligning diverse technical teams with enterprise priorities.
• Make timely, high-impact decisions during cybersecurity incidents and enterprise initiatives.
• Build and sustain collaborative relationships with executive leadership, agency partners, and external stakeholders.
• Drive adoption of modern technology, architecture, and cybersecurity practices statewide.
• Integrate insights from analytics, threat intelligence, and operational experience into enterprise security operations.
• Anticipate emerging threats, technology changes, and organizational needs to ensure readiness and continuous improvement.
• Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field; graduate degree preferred.
• 10+ years of progressively responsible IT/cybersecurity experience, including at least 5 years in a leadership role overseeing enterprise security, SOC, or architecture functions.
• Demonstrated experience managing multi-disciplinary teams in large-scale government, regulated, or enterprise environments.

Nice To Haves

• Relevant industry certifications preferred, such as CISSP, CISM, ISSMP, or CCISO.

Responsibilities

• Strategic Planning & Cybersecurity Governance
• Support the CISO in developing and implementing a statewide cybersecurity strategy aligned with enterprise priorities, regulatory requirements, and modernization objectives.
• Oversee the development, enhancement, and continuous maturation of enterprise cybersecurity and architecture standards, including chapters 60GG-2 (Cybersecurity Standards), 60GG-4 (Cloud Computing), and 60GG-5 (Enterprise Architecture) of the Florida Administrative Code (F.A.C.).
• Security Operations Oversight
• Provide executive oversight of the SOC, ensuring enterprise-wide threat monitoring, proactive detection analytics, and rapid incident response.
• Collaborate with the SOC Manager to validate detection efficacy, improve visibility across telemetry sources, and drive continuous SOC maturity initiatives.
• Serve as a strategic escalation point during major incidents and coordinate multi-agency response activities.
• Enterprise Architecture & Engineering Oversight
• Oversee enterprise engineering and architecture programs, ensuring secure, interoperable, and modern technology adoption.
• Drive cloud-first modernization, interagency data interoperability, and AI/ML initiatives, ensuring enterprise platforms and architectures support statewide cybersecurity, operational, and modernization priorities.
• Incident Response & Risk Management
• Support enterprise-wide incident response leadership and support in alignment with statutory requirements and best practices.
• Leverage cyber intelligence and advanced analytics to proactively identify emerging risks and guide improvements in detection and response capabilities.
• Collaboration & Stakeholder Engagement
• Act as the executive liaison to agency leadership and external partners, including FDLE, DEM, and other public-sector entities.
• Coordinate cross-functional initiatives and advise agencies on technical investments, modernization, and security priorities.
• Establish the security and modernization advisory capability to assist enterprise or local entities with solving complex technical challenges.
• Program Management & Leadership
• Provide guidance, performance management, professional development, and succession planning for SOC, engineering, and architecture teams.
• Manage program budgets, resource allocation, and operational performance metrics to ensure effective delivery of enterprise objectives.
• Foster a culture of accountability, collaboration, operational excellence, and continuous improvement across cybersecurity and enterprise programs.
• Perform other duties as assigned.