Department/Division

Administrative Services / Information Systems

Paygrade

C44

FLSA Status

Exempt

Supervision Received From

Chief Information Officer (CIO)

Supervision Exercised Over

Compensation

Annual: $101,025.60-$136,364.80

Summary:

Initiate the development of cybersecurity policies and procedures and make recommendations to the Chief Information Officer for approval. Collaborate in the designing, planning, implementation, supporting and troubleshooting of network security software and tools to support the agency’s cybersecurity needs. Perform necessary tasks and auditing to ensure compliance with current agency cybersecurity policies and other applicable regulatory agencies and institutions.

Distinguishing Characteristics:

Works independently and performs a wide range of professional cybersecurity activities that include monitoring networks and reporting any anomalies. Recommend, plan, and deploy any remediations to address vulnerabilities. Coordinates activities between the Information Systems division and other divisions/departments. This position will be responsible for internal audits and compliance remediation. This position will also supervise staff.

Essential Duties:

Duty No. Description Frequency
1

Supervises staff to include prioritizing and assigning work; ensuring employees follow policies and procedures; assists in making hiring, termination, and disciplinary decisions and recommendations. Evaluates the work of other analysts for completeness, accuracy, timeliness, and functionality based on industry best practice.

 Daily 30%
2

Monitor computer networks for security issues and vulnerabilities. Additionally, gather and analyze threat intelligence.

Daily 30%
3

Cyber Security Risk Management - Continuously identify, assess, and prioritize cybersecurity risks and vulnerabilities across the agency.

 Daily 30%
4

Coordinates planned security measures to protect information from unauthorized or accidental modification, destruction or disclosure.  Participates in the evaluation, development and implementation of security standards and procedures for multiple platforms.   Develops specifications for network security and protection technologies. Assist with maintaining anti-virus and anti-spam systems.

 Daily 10%
5

Investigates security breaches and other cybersecurity incidents.

 Daily 30%
6

Installs security measures and operates software to protect systems and information infrastructure.

 Daily 20%
7

Documents security breaches and assess the damage they cause.

 Daily 10%
8

Identify and detect vulnerabilities to maintain a high-security standard and a hardened environment.

 Daily 10%
9

Coordinates the efforts of vendors, contractors and staff to ensure maximum use of security equipment and software. Including delivering high quality cyber security awareness training to staff regularly.

Weekly 5%
10

Develops company-wide best practices for IT security and develops incident response and mitigation plan. Participates in the creation of disaster recovery and business continuity plan.

 Weekly 15%
11

Conducts routine cyber table top exercises. Researches security enhancements and makes recommendations to management.

 Monthly 5%
12

Audits assessments and compliance activities: Ensures the organization complies with all relevant cybersecurity laws, regulations, industry standards, and relevant agency policies and procedures.

 Always
13

Provides outstanding customer service and technology-related problem resolution to our stakeholders, clients, and vendors.

As Required
14

Performs other duties as assigned.

 As Required
15

Must meet regular time and attendance standards.

 Always

Knowledge:

Knowledge of:

  •   Relevant cybersecurity frameworks
  •  Current cybersecurity best practices
  •   Most / all the following: TCP/IP, VLAN, DHCP.
  •   Fundamental Computer Forensics Skills
  •  Advanced networking principles and concept.

 Cloud platforms (Such as Azure and AWS)

Skills:

Skill in:

  • Adjusting priorities and workflows based on evolving team or leadership needs.
  • Providing excellent customer service;
  • The ability to research and learn new information
  • Advanced troubleshooting skills;
  • Defining problems, collecting data, establishing facts, drawing conclusions, and making appropriate recommendations;
  • Customer service skills and excellent verbal communication skills;
  • Written communication and documentation;
  • Operating computers and related software applications;
  • Troubleshooting and resolving hardware, software, network, and peripheral problems;
  • Written and oral communications;
  • Preparing reports;
  • Audit and compliance.

Licensing Requirements:

 

Washington Driver's License or the ability to respond in a timely manner to issues arising throughout the Intercity Transit service area on a 24-7 basis.

One or more of the following is preferred: 

  • Security +;
  • CISA;
  • CISSP;
  • Other industry recognized certifications.

Must submit to criminal background check the results of which must meet hiring criteria for the role.

Physical Requirements:

 

Positions in this class typically require: stooping, kneeling, crouching, crawling, reaching, standing, walking, pushing, pulling, lifting, fingering, grasping, feeling, talking, hearing, seeing and repetitive motions.

This position requires frequent use of a lift to access equipment that is mounted to roofs and other high surfaces in excess of 15 feet (Fall Protection training is required and provided by the agency).

Incumbents may be subjected to moving mechanical parts, workspace restrictions, and travel.

Medium Work: Exerting up to 50 pounds of force occasionally, and/or up to 20 pounds of force frequently, and/or up to 10 pounds of force constantly to move objects.

Training and Experience:

Bachelor’s Degree and five years of progressively responsible cybersecurity experience in medium to large organizations;

An equivalent combination of education and experience may be considered

Note:

The above job description is intended to represent only the key areas of responsibilities; specific position assignments will vary depending on the business needs of the department.