**Cyber Exercise Program Manager**

Job description

Tasks

• Coordination of internal subject matter experts to develop plausible attack scenarios informed by internally and externally researched risks and trends
• Conversion of scenarios into well-documented plans
• Guiding exercises by playing scenarios in real time
• Presentation to all levels of management before, during and after exercises
• Communication with technical and non-technical stakeholders
• Interviewing partners, workshop ideas for new scenarios and gaining stakeholder commitment
• Direction of exercises and collection of key findings for later creation of recommendations for improvements and results

Main tasks

• Coordinate subject matter experts to develop cyber exercises and create business scenarios, technical attack chains, exercise scenario schedules, delivery structures and logistics plans
• Development of pre-, during and post-exercise materials - including presentations, scenario injections and after-action reports
• Management of cyber exercise engagements several times a year
• Manage relationships with third party consultants to assist in the creation, documentation and execution of exercises
• Documenting risks and findings during exercises and driving improvements
• Support in the maintenance and review of internal policies and procedures

Requirements

Personal characteristics

• Strong organizational skills and ability to meet deadlines
• Effective verbal and written communication skills and comfort with presenting to large crowds and senior managers

Professional experience

• 5+ years of relevant experience in developing or supporting tabletop exercises and simulations or relevant experience in business continuity / disaster recovery / incident response / threat modeling
• 5+ years of experience in a cybersecurity or technology operations support role in an enterprise environment
• Ability to communicate complex technical concepts to a non-technical audience
• Relevant experience in finance or other highly regulated industries
• Successful candidates should be able to demonstrate a passion for information security through courses, work, degrees, self-study or certifications

Formal training & certifications

• Bachelor's/Master's degree in Business Administration, English, Information Technology, Cybersecurity (or relevant work experience)
• Preferred certifications: Homeland Security Exercise and Evaluation Program (HSEEP) certification, Master Exercise Practitioner (MEP) certification, Certified Cyber Resilience Professional (CCRP), Certified Business Continuity Professional (CBCP), SSCP, CISSP, GCPM, PMP, CISM, CISA

We offer

• A flexible and collaborative working environment
• An organization with financial strength and stability
• A culture that promotes movement within the company
• A working environment with a greater purpose

Salary

• $114,700 - $194,900 USD