Department/Division

Administrative Services / Information Systems

Paygrade

C42

FLSA Status

Exempt

Supervision Received From

Supervision Exercised Over

Compensation

Annual: $87,339.20-$117,873.60

Summary:

Design, plan, implement, support, and troubleshoot network and cloud security tools to support the agency’s cybersecurity needs. Audit the implementation of cybersecurity controls to ensure compliance with current agency cybersecurity policies and other applicable regulatory agencies and institutions. Assess new software and technologies for possible security risks.

Distinguishing Characteristics:

Work independently and perform a wide range of professional cybersecurity activities that include monitoring networks and reporting any anomalies. Recommend, plan, and deploy any remediation to address vulnerabilities. Coordinates cybersecurity activities between the Information Systems division and other divisions/departments. This position will be responsible for internal cybersecurity audits, compliance, and remediation.

Essential Duties:

Duty No. Description Frequency
1
  • Gather and analyze threat intelligence. Monitor the latest threats in cybersecurity to remain up to date on the best protective strategies.
  • Monitor computer networks for security issues and vulnerabilities. 
Daily 65%
2

Coordinate planned security measures to protect information from unauthorized or accidental modification, destruction, or disclosure. Participate in the evaluation, development and implementation of security standards and procedures for multiple platforms. Consult on specifications for network security and protection technologies.

Daily 10%
3

Conduct regular audits to pinpoint system weaknesses and security control failures. Investigate security breaches and other cybersecurity incidents. Analyze the source of the breach and recommend solutions.

Daily 30%
4

Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.

 Daily 20%
5

Document security breaches and assess the damage they cause.

 Daily 10%
6

Coordinate mitigation of detected vulnerabilities to maintain a high-security standard and a hardened environment.

 Daily 10%
7

Coordinates the efforts of security vendors, contractors, and staff to ensure maximum use of security equipment and software. Deliver regular high quality cyber security awareness training to staff.

 Weekly 5%
8

Work with IS operations team to implement security controls per agency Security standards.

 Weekly 15%
9

Assist with routine cyber table-top exercises. Research security enhancements and make recommendations to management.

 Monthly 5%
10

Provide outstanding customer service and technology-related problem resolution to our stakeholders, clients, and vendors.

 As Required
11

Performs other duties of a similar nature or level.

 As Required
12

Must meet regular time and attendance standards.

 Always

Knowledge:

  • Relevant cybersecurity frameworks.
  • Current cybersecurity best practices.
  • Most / all the following: TCP/IP, VLAN, DHCP.
  • Fundamental Computer Forensics Skills.
  • Advanced networking principles and concept.
  • Cloud platforms (Such as Azure and AWS).
  • Log Analytics via Sentinel or equivalent.

Skills:

  • The ability to research and learn new information.
  • Advanced troubleshooting skills.
  • Defining problems, collecting data, establishing facts, drawing conclusions, and making appropriate recommendations.
  • Excellent customer service, verbal communication, written communication, and documentation.
  • Operating computers and related software applications.
  • Operating cloud technologies to assist with detection and analysis of potential security issues.
  • Troubleshooting and resolving hardware, software, network, and peripheral problems.
  • Preparing reports.
  • Audit and compliance.

Licensing Requirements:

  • Washington Driver's License or the ability to respond in a timely manner to issues arising throughout the Intercity Transit service area on a 24-7 basis.
  • Must submit to criminal background check the results of which must meet hiring criteria for the role.

Certification:

  • One or more of the following is required: ISACA: CISA/CISM.
  • ISC2: CISSP;CCSP.

Other industry recognized certifications may be considered. Certification within 6 months of hire is acceptable.

Physical Requirements:

  • Positions in this class typically require: stooping, kneeling, crouching, crawling, reaching, standing, walking, pushing, pulling, lifting, fingering, grasping, feeling, talking, hearing, seeing and repetitive motions.
  • This position requires frequent use of a lift to access equipment that is mounted to roofs and other high surfaces in excess of 15 feet (Fall Protection training is required and provided by the agency).
  • Incumbents may be subjected to moving mechanical parts, workspace restrictions, and travel.

Medium Work: Exerting up to 50 pounds of force occasionally, and/or up to 20 pounds of force frequently, and/or up to 10 pounds of force constantly to move objects.

Training and Experience:

Bachelor’s Degree and three years of progressively responsible cybersecurity experience in medium to large organizations. An equivalent combination of education and experience may be considered.

Note:

The above job description is intended to represent only the key areas of responsibilities; specific position assignments will vary depending on the business needs of the department.