Cybersecurity Manager
Job Description
The Cybersecurity Manager role at Dallas Independent School District leads security operations, incident response, and threat intelligence initiatives across the district's IT environment, coordinating defensive efforts to protect staff, students, and data across network, data center, and cloud platforms.
Responsibilities
- Oversee daily security operations, monitoring, and incident response processes across the district's digital environment.
- Coordinate internal security staff and external vendors to ensure effective threat detection and swift response.
- Maintain current knowledge of emerging cyber threats and education data privacy best practices to safeguard district information.
- Lead the Security Operations Center to ensure continuous monitoring of the district’s network, data center, and cloud environments.
- Act as the primary incident lead, managing the complete lifecycle from detection to post‑event retrospective and long‑term remediation.
- Oversee annual updates to the cyber incident response plan and runbooks; coordinate quarterly tabletop exercises to improve incident readiness.
- Maintain and enhance the district’s cyber operations platforms (SIEM, SOAR, and EDR); establish and lead a proactive threat-hunting program leveraging internal telemetry and external threat intelligence.
- Supervise and mentor security analysts and manage relationships with third‑party security vendors to meet SLAs and performance standards.
- Collaborate with other IT teams and district leadership to align security initiatives with educational goals and infrastructure upgrades; engage with partners across the K‑12 and public sector ecosystem.
- Brief senior management and key stakeholders on the cyber incident response program; define, track, and report on KPIs such as Mean Time to Detect, Mean Time to Respond, and Mean Time to Contain.
Requirements
- Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related field; a minimum of six years in IT security, with at least two years in a supervisory or management capacity.
- CISSP
- CISM
- GIAC Certified Incident Handler (GCIH) strongly preferred
- Strong working knowledge of SIEM and SOAR platforms
- Strong working knowledge of EDR and device security solutions
- Strong working knowledge of network security concepts
- Familiarity with data, identity, application, and third‑party risk
- Proficient in creating, documenting, and automating repeated processes to quickly respond to alerts from cybersecurity platforms
- Exceptional interpersonal and verbal communication skills, with the ability to translate complex technical risks into actionable insights for non‑technical stakeholders
- Proven ability to lead high‑pressure teams during active security incidents while maintaining a calm, decisive presence
Technologies
- SIEM
- SOAR
- EDR
Compensation and Location
Location: Dallas, TX, onsite
Salary: USD 107,612 – 131,243 per year