We are seeking a highly analytical and detail-oriented cybersecurity metrics and reporting lead to support the organization’s security performance tracking and decision-making processes. This role will focus on developing, managing, and automating security metrics and dashboards to provide insights into threat trends, risk posture, compliance status, and the overall effectiveness of the cybersecurity program.
responsibilities
* metrics & reporting framework: design and maintain cybersecurity metrics and key performance indicators (kpis) to measure control effectiveness, risk exposure, and compliance status.
* data architecture & integration: design and manage the data model for reporting across multiple sources; leverage federal data lake and related platforms for secure, scalable data integration.
* collaboration & leadership: partner with cross-functional teams to aggregate, standardize, and validate data from multiple cybersecurity tools; deliver regular and ad-hoc reports to leadership, auditors, and stakeholders; present findings in executive-friendly formats that translate technical data into business-relevant insights.
* governance & compliance: establish governance processes for metric definitions, data quality, and reporting cadence; identify data gaps or quality issues and coordinate remediation with technical teams; support compliance and audit reporting needs for standards such as nist, iso 27001, gdpr, and others.
qualifications
* bachelor's degree in computer science, cybersecurity, data analytics, information systems, or related field.
* relevant certifications such as cissp, cism, cisa, or certifications in cybersecurity control frameworks (e.g., iso 27001, nist cybersecurity framework) are advantageous.
* 7+ years of experience in cybersecurity or it risk functions, with 3+ years in a metrics, reporting, data architecture and data analytics leadership role. Proven experience with dashboard/reporting tools (e.g., power bi, tableau, qlik).
* strong understanding of cybersecurity concepts, frameworks (nist, mitre att&ck), and metrics (e.g., mttd, mttr, patching slas).
* familiarity with security tools and platforms (e.g., siems, vulnerability scanners, edr, grc platforms).
* proficient in excel, sql, python or power query for data manipulation and automation.
* strong communication skills, with the ability to explain complex technical data to non-technical audiences.
* experience with compliance and audit reporting is a plus.
compensation
the pay range for this role is $105,050 to $161,800 usd annually, with additional opportunities for pay in the form of bonus and/or equity (applies to united states of america candidates only). Pay varies by location, work experience, and skill level.
benefits
* health insurance
* dental insurance
* vision insurance
* long term/short term disability insurance
* employee assistance program
* flexible spending account
* life insurance
* generous time off policies, including 4-12 weeks fully paid parental leave based on tenure
* 11 paid holidays
* additional flexible paid vacation and sick leave (us benefits overview)
the compensation and benefits information is accurate as of the date of this posting. The company reserves the right to modify this information at any time, with or without notice, subject to applicable law.
#j-18808-ljbffr