Information Security Officer

City of Midland•Tx, TX

3d•Onsite

About The Position

The Information Security Officer oversees the City of Midland's information security strategy and operations. This role involves creating, implementing, and overseeing policies and frameworks that protect IT systems, data, and operations from cyber threats. The Officer ensures compliance with state and federal regulations, conducts and manages audits, assesses risks, and responds promptly to security incidents. As a manager, this position also requires leading a team of security professionals and coordinating with other departments. The items below are intended to describe the general nature and level of work performed by an individual assigned to this position. These are not intended to be an exhaustive list of all responsibilities, duties, and skills required of personnel classified in this position. The position description is subject to change by the City as the needs of the City and requirements of the position change. This position directly supports the City of Midland’s strategic goal of Transparent and Consistent Communication by providing accurate, timely, and courteous information to the public; maintaining clear and reliable case records; and ensuring effective communication between Municipal Court staff and the community.

Requirements

Lead, mentor, and develop a team of information security professionals.
Manage the information security team's staffing, including recruitment, supervision, scheduling, development, evaluation, and disciplinary actions.
Establish and track key performance indicators (KPIs) for the security team.
Coordinate with other department heads to facilitate the integration of security practices.
Report to senior management on the effectiveness of the City's security strategy.
Ensure team members have the necessary tools and support to perform effectively.
Ability to be helpful and provide quality customer service
Positively interact with other persons at all times
Strong communication and leadership skills.
Must be organized and have the ability to manage projects of varying length
Flexible and able to adapt to a rapidly changing environment
A Bachelor’s Degree in Information Security, Computer Science, or a related degree plus four years of management experience in a related field is required, or a Master’s Degree plus two years of management experience in a related field is required.
Six years of experience may be substituted for the Bachelor’s/Master’s degree requirement.
Proven experience in information security or related fields.
Comprehensive understanding of security protocols and best practices.
Experience in incident management and response.
Knowledge of relevant laws, regulations, and standards.
Valid Texas Driver's License.

Nice To Haves

At least one of the professional security management certifications (CISSP, CISM, CISA) is preferred. If you do not have a certification, you will be required to get it within a year of hire.

Responsibilities

Develop, implement, and manage a comprehensive information security program.
Oversees the implementation, maintenance, and optimizations of security systems.
Ensure compliance with state and federal regulations related to information security and privacy.
Create and enforce security policies, standards, and procedures.
Lead and coordinate security efforts across various departments.
Conduct risk assessments, audits, and implement risk mitigation strategies.
Respond to security breaches, and oversee incident response planning and investigations.
Develop and manage disaster recovery policies and align them with business continuity goals.
Liaise with external stakeholders for the security of organizational data.
Design and deliver security awareness training programs.
Provide strategic security guidance for IT projects and new technologies.
Performs related duties as assigned
Subject to recall 24/