● Bachelor's degree in computer science, information technology, or a related discipline, or equivalent experience/training
● 3+ years of experience in identifying, measuring, analysing, and reporting cybersecurity metrics
● Ability to work with cross-functional teams and stakeholders to gather requirements and ensure successful implementation of cybersecurity metrics
● Experience working in multiple cybersecurity domains to develop an understanding of relevant metrics and their implications
● Familiarity with industry best practices related to cybersecurity metrics and reporting
● Knowledge of industry-standard cybersecurity frameworks, such as NIST Cybersecurity Framework or ISO 27001
Preferred Experience/Knowledge
● Proficiency in using data analysis and visualization tools e.g. MS Office, PowerBI
● Familiarity with cybersecurity risk assessment methodologies and tools
● Familiarity with the various tools and technologies leveraged within cybersecurity and information technology programs from which metric data is collected
● Knowledge of applicable regulatory requirements (e.g., TSA, FAA, PCI DSS)
● Experience working in highly-regulated industries such as finance, healthcare, or government.