Department/Division

Administrative Services / Information Systems

Paygrade

C41

FLSA Status

Exempt

Supervision Received From

Information Systems Manager, Chief Information Officer (CIO)

Supervision Exercised Over

Compensation

Annual: $83,928.00-$113,276.80

Summary:

Develop agency’s cybersecurity policies and procedures and make recommendations to the Chief Information Officer for approval. Design, plan, implement, support, and troubleshoot network security software and tools to support the agency’s cybersecurity needs. Audit the implementation of cybersecurity controls implementations to ensure compliance with current agency cybersecurity policies and other applicable regulatory agencies and institutions.

Distinguishing Characteristics:

Work independently and perform a wide range of professional cybersecurity activities that include monitoring networks and reporting any anomalies. Recommend, plan, and deploy any remediations to address vulnerabilities. Coordinates cybersecurity activities between the Information Systems division and other divisions/departments. This position will be responsible for internal cybersecurity audits, compliance, and remediation.

Essential Duties:

Duty No. Description Frequency
1
  • Gather and analyze threat intelligence. Monitor the latest threats in cybersecurity to remain up to date on the best protective strategies.

Monitor computer networks for security issues and vulnerabilities. 

Daily 65%
2

Coordinate planned security measures to protect information from unauthorized or accidental modification, destruction, or disclosure. Participate in the evaluation, development and implementation of security standards and procedures for multiple platforms. Develop specifications for network security and protection technologies. Assist with maintaining anti-virus and anti-spam systems.

 Daily 10%
3

Conduct regular audits to pinpoint system weaknesses. Investigate security breaches and other cybersecurity incidents. Analyze the source of the breach and recommend solutions.

Daily 30%
4

Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.

 Daily 20%
5

Document security breaches and assess the damage they cause.

 Daily 10%
6

Coordinate mitigation of detected vulnerabilities to maintain a high-security standard and a hardened environment.

 Daily 10%
7

Coordinates the efforts of security vendors, contractors, and staff to ensure maximum use of security equipment and software. Deliver regular high quality cyber security awareness training to staff.

 Weekly 5%
8

Develop agency-wide best practices for IT security and develop incident response and mitigation plan.

 Weekly 15%
9

Conduct routine cyber table-top exercises. Research security enhancements and make recommendations to management.

 Monthly 5%
10

Provide outstanding customer service and technology-related problem resolution to our stakeholders, clients, and vendors.

 As Required
11

Performs other duties of a similar nature or level.

 As Required
12

Must meet regular time and attendance standards.

 Always

Knowledge:

Knowledge of:

  • Relevant cybersecurity frameworks
  • Current cybersecurity best practices
  • Most / all the following: TCP/IP, VLAN, DHCP.
  • Fundamental Computer Forensics Skills
  • Advanced networking principles and concept.

Cloud platforms (Such as Azure and AWS)

Skills:

Skill in:

  • The ability to research and learn new information
  • Advanced troubleshooting skills
  • Defining problems, collecting data, establishing facts, drawing conclusions, and making appropriate recommendations
  • Excellent customer service, verbal communication, written communication, and documentation
  • Operating computers and related software applications
  • Troubleshooting and resolving hardware, software, network, and peripheral problems
  • Preparing reports
  • Audit and compliance

Licensing Requirements:

  • Washington Driver's License or the ability to respond in a timely manner to issues arising throughout the Intercity Transit service area on a 24-7 basis.
  • Must submit to criminal background check the results of which must meet hiring criteria for the role.

Certification:

One or more of the following is preferred:

  • Security +
  • ISACA: CISA/CISM
  • ISC2: CISSP

Other industry recognized certifications may be considered.

Physical Requirements:

  • Positions in this class typically require: stooping, kneeling, crouching, crawling, reaching, standing, walking, pushing, pulling, lifting, fingering, grasping, feeling, talking, hearing, seeing and repetitive motions.
  • This position requires frequent use of a lift to access equipment that is mounted to roofs and other high surfaces in excess of 15 feet (Fall Protection training is required and provided by the agency).
  • Incumbents may be subjected to moving mechanical parts, workspace restrictions, and travel.

Medium Work: Exerting up to 50 pounds of force occasionally, and/or up to 20 pounds of force frequently, and/or up to 10 pounds of force constantly to move objects.

Training and Experience:

Bachelor’s Degree and five years of progressively responsible cybersecurity experience in medium to large organizations. An equivalent combination of education and experience may be considered.

Note:

The above job description is intended to represent only the key areas of responsibilities; specific position assignments will vary depending on the business needs of the department.