Job Description

Job Description :

The CABINET information & Technology Services Department is seeking one contract resource for the role of Security Analyst.

• Implement a KCOJ enterprise security stance through policy, architecture, and training programs.
• Oversee the KCOJ security solutions, including the implementation of appropriate solutions and oversight of vulnerability audits and assessments .
• Interface with ITS peers to share the security vision and solicit involvement in achieving higher levels of Enterprise Security.
• Ensure compliance management, the enforcement of security policies and procedures, and annual review and security assessment reporting.
• Research and analyze the latest information security capabilities of specific Information Security (e.g., encryption) and IT technologies (e.g., operating systems, networks).
• Create, publish, maintain, and interpret Information Security standards for specific technologies (e.g., operating systems, databases).
• Perform investigative research, analysis and troubleshooting to identify, resolve, and report complex security issues. Assist in the evaluation and monitoring of system or tool performance.
• Research and enhance Information Security solutions and technologies to keep up with the latest threats.
• Write code/scripts/automation to detect or prevent new threats that do not have commercial solutions available yet or to automate Information Security processes to increase efficiencies.
• Design and develop new tools/technologies as related to cybersecurity.
• Act as a backup resource for key Enterprise Security appliances (Security Information and Event Management or (SIEM) and Firewal

MINIMUM REQUIREMENTS:
EXPERIENCE: 5 Years of Job-Related Experience
Substitute EDUCATION for EXPERIENCE: NONE
Substitute EXPERIENCE for EDUCATION:  Related Technical or Vocational Training Will Substitute for Bachelor’s Degree

• Information Security Certification – CISSP / COMP TIA SECURITY+ (PREFERRED)
• Microsoft Technical Certification – MCSE / MCSA (PREFERRED)
• ITIL Foundations (PREFERRED)

 
EXAMPLES OF DUTIES OR RESPONSIBILITIES OF THE CLASSIFICATION: Examples of duties or responsibilities are not to be construed as describing what the duties or responsibilities of any position shall be and are not to be construed as limiting the appointing authority’s ability to assign, or otherwise alter the duties and responsibilities of a position. This is not intended to be an exhaustive list

• Create and maintain the enterprise security architecture design with system, application, and audio-visual architects. Update and maintain the KCOJ security awareness training program with shared services department.
• Create and maintain the KCOJ enterprise security documents, such as policies with legal services, KCOJ standards, baselines, TS guidelines and procedures.
• Create and maintain the KCOJ security incident response plan.
• Maintain current knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
• Select and acquire additional security solutions or enhancements to existing security solutions to improve overall KCOJ security as per the existing procurement policies.
• Develop requirements for local area and wide area networks (LAN and WAN), virtual private network (VPN), routers, firewalls, and related security devices .
• Design public key infrastructure (PKI’S) including use of certification authorities and digital signatures.
• Ensure the confidentiality, integrity, and availability of the data residing on or transmitted to/from/through the enterprise workstations, servers, and other systems and in databases and other data repositories.
• Supervise all investigations into problematic activity, security incidents, and provide on-going communications with the Information Security Architect and ITS Executive Leadership.
• Supervise the design and execution of vulnerability assessments, penetration tests and security audits.
• Prepare information security reports by collecting, analyzing, and summarizing data and trends on an annual basis.
• Oversee regular security awareness training for all KCOJ employees to ensure high levels of compliance with the KCOJ security policies.
• Engage in ongoing communications with architectural peers for infrastructure, applications, and audio-visual, as well as ITS division managers and other CABINET managers to ensure KCOJ-wide understanding of security goals, to solicit feedback, and to foster co-operation. Other duties as required.

TYPICAL WORKING CONDITIONS AND UNIQUE PHYSICAL REQUIREMENTS:  Incumbents in the job will typically perform their job duties under these conditions.

• On-call availability.
• Work typically in office setting.
• Dexterity of hands/fingers to operate a computer keyboard/mouse/other equipment.
• Rare lifting of moderately heavy objects, such as computers and peripherals.
• Some travel may be required.

Training Requirement: 24 hours of non-billable training time are required for this position .

Job Tags

Similar Jobs