Key Responsibilities: - Ransomware Defense Auditing: o Audit the current ransomware defense setups to identify vulnerabilities and entry points. o Design and implement required monitoring systems, team structures, and secure backup solutions. o Assess and secure necessary budgets to implement and maintain defense strategies. o Prioritize actions based on the severity and likelihood of risks identified. - Incident Response Planning: o Develop and regularly refine a ransomware-specific incident response plan. o Ensure clear procedures are in place for attack containment, communication, and recovery. o Coordinate with internal and external stakeholders to maintain up-to-date and effective response strategies. - Ransomware Preparedness Exercises: o Annually plan, design, and execute ransomware response exercises to test and improve the organization's readiness. o Simulate attack scenarios to assess the effectiveness of current defense and response strategies. o Document exercise outcomes, evaluate performance, and integrate lessons learned into existing plans. - Evangelization and Training: 2 o Work with organizational change management partners to embed ransomware response plans throughout the organization. o Utilize innovative methods such as gamification to enhance engagement and awareness. Requirements Requirements: - Master of Science in Computer Science, or a related technical field. - Expert-level knowledge in IT and OT security practices and principles. - Proven experience in cybersecurity with a focus on ransomware threats and defense mechanisms. - Excellent communication, coordination, and project management skills. - Strong analytical abilities and attention to detail. - Understanding of budgeting, Total Cost of Ownership (TCO), Net Present Value (NPV), and Annual Loss Expectancy (ALE). - Extensive network within the cybersecurity domain and familiarity with market- leading security solutions. Desirable Attributes: - Certifications such as CISSP, CISM, or related SANS or comparable credentials. - Experience in managing cross-functional teams in high-stakes environments. - Strong leadership capabilities and the ability to drive change effectively.