Description

The position of National HIDTA Information Security and Technology Director is a senior position within the National HIDTA Assistance Center (NHAC) reporting to the Director o f the NHAC and coordinating closely with the HIDTA Director and Chairman of the HIDTA Information Technology Committee, the HIDTA Information Technology Advisory Council, and the Office of National Drug Control Policy (ONDCP). This position is responsible for assessing the IT posture and cybersecurity of the various HIDTA programs in the United States; assisting in the formulation of Information Security and Technology policies for the National HIDTA Program; providing guidance, advice, and assistance to the 33 HIDTA Directors in the United States on Information Security and Technology matters including third party assessment of the HIDTAs; assisting the 33 HIDTA programs in the selection and evaluation (as necessary) of Information Technology personnel or potential hires; assisting the various regional HIDTA programs in all aspects of information technology and security design and implementation, and in assisting the Office of National Drug Control Policy (ONDCP) in establishing national HIDTA Information Technology and Guidance. This position will be directed by the National HIDTA Assistance Center (NHAC) in Miami, Florida, but the selected candidate may live in any location in the continental United States, with preference given to a qualified applicant who lives near a HIDTA location. This is a federal government contractual position. 

Requirements

Strategic Leadership & Policy
Serve as the principal cybersecurity advisor to NHAC, HIDTA leadership, and ONDCP.
Develop and implement enterprise-wide cybersecurity strategies, policies, and governance frameworks.
Lead integration of cybersecurity with law enforcement and IT mission operations.
Represent HIDTA in federal, interagency, and national cybersecurity policy initiatives.
Formulate long-range cybersecurity policies and drive adoption across distributed environments.

Cybersecurity Program Management & Compliance
Lead development and execution of cybersecurity programs, including training, audits, and compliance.
Ensure adherence to federal mandates and reporting requirements, including FISMA and OMB directives.
Oversee cybersecurity audits, reporting, and remediation of findings.
Establish cybersecurity awareness programs, dashboards, and performance metrics.
Coordinate responses to oversight bodies (e.g., GAO, OMB, and other federal entities).

Risk Management, Assessments & Supply Chain Security
Conduct and oversee enterprise-wide risk, threat, and vulnerability assessments.
Provide actionable recommendations to HIDTA Directors and governing bodies.
Lead Cyber Supply Chain Risk Management (C-SCRM) efforts across the HIDTA
ecosystem.
Evaluate IT systems, vendors, and managed service providers for risk and performance.
Support disaster recovery planning and Privacy Impact Assessments.

Security Operations & Incident Response
Provide executive oversight of cybersecurity operations, including SOC capabilities and
monitoring.
Lead incident detection, response, and recovery efforts across HIDTA environments.
Coordinate with federal, state, and local partners, including law enforcement and DHS.
Advise leadership on active threats, system compromises, and mitigation strategies.
Ensure alignment with national frameworks and continuous improvement of response
capabilities.

Insider Threat & Advanced Security Programs
Develop and oversee insider threat detection and prevention programs.
Implement user activity monitoring, behavioral analytics, and SIEM capabilities.
Coordinate with legal, HR, and leadership to enforce security policies.
Continuously assess and enhance insider threat mitigation strategies.

Technology Evaluation & Enterprise Integration
Evaluate emerging cybersecurity technologies and IT systems.
Provide guidance on IT procurement, architecture, and modernization initiatives.
Integrate cybersecurity into enterprise architecture and system design.
Address infrastructure, performance, and capacity challenges.

Workforce Development & Advisory Services
Identify training gaps and lead cybersecurity workforce development initiatives.
Support hiring, evaluation, and development of IT and cybersecurity personnel.
Serve as a senior subject matter expert and trusted advisor across HIDTA regions.
Foster collaboration and build high-performing, mission-focused teams.
Stakeholder Engagement & Communication
Coordinate with ONDCP on policy, budget guidance, and national strategy.
Liaise with federal, state, and local partners on cybersecurity initiatives.
Deliver executive briefings, reports, and strategic recommendations.
Build consensus across diverse stakeholders and technical environments.