Reference # 19-00513 Title IT Security Engineer
Location Goodyear, ARIZONA
Position Type Contract
Experience Level Contract
Start Date / End Date 01-09-2019 --- 30-06-2020
Description
Drug Screen Yes Background Checks Yes
Position Description Yes, to other city locations using company vechicles - THIS CANDIDATE WILL BE DRIVING!!! " Firewalls, remote access, authentication methods, endpoint protection " Architects, evaluates, procures, implements, and administers security systems to include budget planning, acquisition, integration, operations and cyclical program replacements. " Develops, implements, and maintains security policies and procedures to be used in managing the city's Information Technology Systems environment to prevent the deliberate or accidental disclosure of data to unauthorized persons and from unauthorized modification. " Consults and interfaces with ITS staff, vendors, and stakeholders to develop solutions to security issues while considering business requirements. Analyzes and recommends security controls and procedures in acquisition, development, and change management lifecycle of information systems, and monitors for compliance. " Prepares and conducts internal penetration and vulnerability assessments, forensic/security violation investigations and recommends corrective action. Engages and coordinates third-party risk and compliance assessments. " Stay current with cybersecurity trends, threat analysis and the compliance environment with respect to organizational risk; advises organization management and develops and executes plans for compliance and mitigation of risk. " Responds to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; interacts and coordinates with third-party incident responders, including law enforcement. " Administers authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets " Monitors and analyzes information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities, and trends.
Skills Required " Firewalls, remote access, authentication methods, endpoint protection " Architects, evaluates, procures, implements, and administers security systems to include budget planning, acquisition, integration, operations and cyclical program replacements. " Develops, implements, and maintains security policies and procedures to be used in managing the city's Information Technology Systems environment to prevent the deliberate or accidental disclosure of data to unauthorized persons and from unauthorized modification. " Consults and interfaces with ITS staff, vendors, and stakeholders to develop solutions to security issues while considering business requirements. Analyzes and recommends security controls and procedures in acquisition, development, and change management lifecycle of information systems, and monitors for compliance. " Prepares and conducts internal penetration and vulnerability assessments, forensic/security violation investigations and recommends corrective action. Engages and coordinates third-party risk and compliance assessments. " Stay current with cybersecurity trends, threat analysis and the compliance environment with respect to organizational risk; advises organization management and develops and executes plans for compliance and mitigation of risk. " Responds to information system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; interacts and coordinates with third-party incident responders, including law enforcement. " Administers authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets " Monitors and analyzes information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities, and trends.
Skills Preferred " Establishes data ownership and responsibility and data security classifications. Coordinates security issues, concerns, and potential problems with ITS Management Team, Legal, and Human Resources Departments, as applicable " Maintains the IT Security Awareness user education system " SIEM " Office 365 security controls
Experience Required 5 yrs working in IT Security/CyberSecurity
Experience Preferred
Education Required HS Grad, CISSP, GIAC certs, BS in IT-related field other IT Security-related certs
Education Preferred HS Grad, CISSP, GIAC certs, BS in IT-related field