Listing Summary
Job Summary
The primary responsibility of this position is to serve as a hands-on information security expert in overseeing and ensuring that the appropriate level of operational security is implemented and maintained within the Douglas County technology infrastructure. This engineer will develop and apply programs to proactively assess and mitigate risks to the technology environment and all data stored in that environment. This position will recommend policies and procedures to ensure the integrity and security of county systems and infrastructure. This position reports to the Information Services Manager.
ESSENTIAL JOB FUNCTIONS
- Serves as a hands-on information security expert working with the infrastructure team to ensure the cyber security of the country network.
- Performs analysis and assessments to determine risks and recommend necessary safeguards.
- Proactively mitigates system vulnerabilities and recommend controls.
- Develops and maintains Incident Response Plans, System Security Plans, Remediation Plans, Configuration Management Plans, and other documentation necessary to enhance the security and resiliency of the technology environment.
- Develops and implements security programs that ensure the security, reliability and availability of information systems, networks, and data.
- Participates in network and system designs to ensure proper implementation of security policies and controls.
- Recommends training and learning opportunities for all County staff relative to cyber and information security.
- Provides users with technical support and recommendations regarding technology.
- Assists in the maintenance of network and systems infrastructure to minimize system failures, improve service levels, security, and accountability.
- Cross trains and provides backup support for Systems and Network Administrators (Systems and Network administrators will also cross train and provide support for Senior Systems Security Administrator).
- Coordinates with other IS staff to ensure data and network security while providing high availability of applications, databases, hardware, and network resources.
- Performs other duties as assigned
MINIMUM QUALIFICATIONS
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill and/or ability necessary. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
EDUCATION AND EXPERIENCE:
- Bachelor's degree or higher from an accredited college or university with major field of study in a related discipline. Degree in Engineering or Computer Sciences preferred.
- 5 recent years’ experience in a Cyber Security role.
- 12 years’ experience in a technology role.
- CISSP certification (*CISSP required within 15 months of start date. Training and exam fee will be covered by the County).
- An equivalent combination of education and experience may be considered.
ADDITIONAL QUALIFICATIONS:
- Ability and willingness to drive a county vehicle.
CERTIFICATES, LICENSES, REGISTRATIONS:
- CISSP certification (*CISSP required within 15 months of start date. $699 exam fee will be reimbursed for a passing score).
- Possess and maintain a valid Georgia Driver's License (Class C) and a satisfactory motor vehicle record (MVR).
KNOWLEDGE, SKILLS AND ABILITIES:
- Knowledge of basic and advanced networking concepts and deployments.
- Knowledge of basic and advanced systems administration in a Windows server environment.
- Knowledge of applicable federal and state, laws, rules, and regulations as they relate to assignment.
- Knowledge of business English, spelling, and grammar.
- Knowledge of cloud computing and storage solutions.
- Knowledge of modern computer and network maintenance, tools, supplies, and equipment.
- Knowledge of modern office practices, methods, and equipment.
- Knowledge of specialized software, machinery, materials, terminology, and/or forms essential to the assignment.
- Skill in evaluating technology environments for security vulnerabilities and single points of failure.
- Skill in developing remediation plans, security policies and security programs.
- Skill in analytical thinking; ability to apply a wide range of abstract and concrete concepts to problems and issues.
- Skill in creating, maintaining, and organizing accurate, detailed, and complete records.
- Skill in effective inter-personal and public relations and customer service; excellent oral and written communication skills to satisfactorily resolve conflicts and issues, and to explain established policies and procedures to employees and the general public.
- Skill in performing tasks which require attention to detail and completing assigned jobs efficiently and correctly.
- Skill in planning, prioritizing, and organizing work; ability to handle multiple work assignments and deadlines efficiently, accurately, and professionally.
- Skill in the use of personal computers, MS Office Suite, databases, spreadsheets, and word processing; typing and entering data into a computer system accurately and efficiently.
- Skill in troubleshooting and problem solving.
- Ability to analyze and resolve routine, non-routine, and complex problems, evaluating alternative solutions and adopting effective course of action.
- Ability to apply commonsense to understand, follow, and complete verbal and written instructions.
- Ability to communicate and interact clearly and effectively with all those contacted in the course of work in a professional and courteous manner, both orally and in writing, establishing, and maintaining effective, professional, and cordial working relationships.
- Ability to convey technical information to a non-technical audience.
- Ability to coordinate and administer department programs in an effective manner.
- Ability to effectively brief supervisors.
- Ability to handle confidential information professionally and to exercise discretion in performing assigned job duties; inability to maintain confidentiality will be grounds for dismissal.
- Ability to make sound, independent decisions within policy guidelines by exercising good judgment and intelligent situation-assessment.
- Ability to provide instruction and direction.
- Ability to read and comprehend a variety of documents, memos, instructions, correspondence, policies, et cetera.
- Ability to react quickly and calmly under pressure and highly stressful conditions, making appropriate and sound decisions based on a totality of the circumstances.
- Ability to remain composed, professional, and pleasant in a stressful environment or emergency situations.
- Ability to research, analyze data, and compile information to provide clear and concise reports, records, correspondence, security procedures, business correspondence, and other written material; ability to create clear, accurate, effective, and persuasive presentations.
- Ability to stay current on new and emerging technologies and innovations.
- Ability to work in a team setting.
- Ability to work independently in the absence of specific instructions or direct supervision.
- Experience with MDR solutions (Articwolf, rapid7, darktrace, etc.).
Salary: $75,000 - $82,000 annually ($36.06 - $39.42 hourly) plus full benefits package
Employment Opportunities (Section 13-50)
“The recruitment, selection, appointment and promotion of employees shall be in such a manner as to promote equal employment for all persons without regard to race, age, color, creed, religion, ancestry, gender, national origin, physical handicap or political affiliation or sexual preference.”
p >