Information Systems Security Analyst II

About The Position

Requirements

• Bachelor’s degree in Computer Science or related field.
• Additional related experience may substitute for a degree on a year for year basis up to four years.
• Four (4) years of progressively responsible experience in infrastructure applications, systems, and Cybersecurity related services and experience in Windows server network or IT systems management.
• Experience with direct end-user support in a customer service role.
• Demonstrated dedication to customer service
• Knowledge of major hardware and software systems including local area networks, PC architecture and networking topologies.
• Skills with current major network system applications.
• Customer service experience and working team concepts.
• Strong analytical and troubleshooting skills to resolve hardware, software, and Cybersecurity issues.
• Strong oral and written communication skills and ability to establish and maintain effective working relationships.
• Ability to deliver quality work timely and accurately
• Ability to coordinate several diverse job requirements and projects.
• Excellent organization abilities, analytical skills and communication skills including the ability to effectively communicate technical information to a non-technical audience.
• Be self-motivated and seek opportunities for continuous process improvement.
• Be a catalyst and a willing participant of organizational changes.
• Ability to work in a team environment in a matrix organization, partnering well with employees, management, users, business areas, vendors, contractors and undertake duties and tasks as assigned without close supervision.
• Ability to be a positive and constructive contributor in a team-based environment.
• Ability to effectively manage multiple priorities and diverse groups of people and activities simultaneously.
• Proficiency using Microsoft Office Suite.
• Demonstrated leadership ability.

Nice To Haves

• Formal Cybersecurity certifications are desired but not required – such as CISSP.
• Knowledge of Information System Implementation Lifecycle desired.

Responsibilities

• Install and maintain IT Cybersecurity infrastructure.
• Monitor internal alerts, industry bulletins, federal notifications on cybersecurity threats, take action needed and escalate appropriately.
• Assess new systems for security vulnerabilities prior to acquisition.
• Install new software releases and system upgrades.
• Perform tuning and capacity planning to enhance performance of the IT cybersecurity infrastructure.
• Perform system and user analysis to plan and implement short/mid-range hardware improvements.
• Assist with all system backups and recovery operations related to cybersecurity infrastructure.
• Review user accounts and system access levels as appropriate.
• Ensure infrastructure security policies are implemented and maintained.
• Perform system and user analysis to resolve advance system problems.
• Analyze, monitor, and optimize IT cybersecurity infrastructure performance.
• Mentor other network administrators and other team members to facilitate business goals and agency processes.
• Provide input to supervisor for process change, enterprise system priorities, and team goals.
• Manage maintenance and license agreements.
• Maintain hardware and software inventory related to cybersecurity infrastructure.
• Ensure cybersecurity infrastructure systems are documented according to approved standards.
• Participate in after-hours on call support rotation when necessary.
• Provide customer focused service.
• Build positive and constructive relationships with business areas, customers, understand their needs, problems and provide timely communication and service.
• Partner with business to undertake full IT ownership of the systems and projects assigned and become proficient in the technical and functional aspects of these systems.
• Provide technical support and leadership assistance on projects.
• Successfully support and assist in leading tasks or projects as assigned.
• Provide leadership assistance and support in working with technology vendors and implementation partners to implement technical solutions.
• Provide periodic reports to management.
• Develop and ensure updates to technical and/or user documentation.
• Train users on systems and processes related to cybersecurity to include managing annual mandatory training events.
• Lead in efforts to encourage system use and adoption with the business areas.
• Act as an advocate and advisor for the application of cybersecurity technology solutions to the agency.
• Provide support and assist in leadership in proactively setting up and managing systems in excellent working condition through implementation and monitoring of alerts, regular maintenance activities, performance tuning, software updates and patches.
• Provide support and assist in leadership in working with internal IT teams and technology vendors to ensure all systems are available and secure on a 24 by 7 basis.
• Support and assist in leading efforts in system security by ensuring compliance to security standards and policies, monitoring access privileges, conducting risk assessments, investigation of suspicious activities, and remediation of identified security threats or risks.
• Document test cases and perform comprehensive testing during implementation and upgrades.
• Support and assist in leading the planning and undertaking of periodic risk analysis of systems and mitigate risks wherever possible.
• Follow change management and change control processes to plan and deploy system changes.
• Perform change-impact analysis.
• Communicate changes to business areas and IT.
• Research, contribute to the development of IT standards, and implement IT standards and best practice policies and procedures.
• Be self-motivated and seek opportunities for continuous improvement of IT skills and processes.
• Be responsible and always maintain a safe working environment.
• Support Capital Metropolitan Transportation Authority’s Safety Management Systems (SMS) process by following safety and security policies, considering safety in every action and reporting safety and security concerns.
• Perform other duties as required and/or assigned in support of the CapMetro Strategic Goals and the IT Vision, Mission, and Objectives aligned to these goals.