Systems Analyst Ia - Cybersecurity Analyst

About The Position

Requirements

• Bachelor’s degree in Business, Analytics, Computer Science, or Engineering; CISSP, CCSP, OSCP or equivalent
• 3 years IT experience including 1 year proven experience in Cybersecurity, information security or related technical field
• working knowledge of and experience in information security policy frameworks (PCI DSS, IS0 27001, NIST 800-53, etc.)
• Experience in supporting a Cybersecurity, or information security operational program
• Experience in system and network incident response practices and procedures
• Strong technical knowledge, understanding of a variety of technical Cybersecurity technologies, solutions, practices, and familiarity with implementing these in public sector organizations
• Experience in Risk Management frameworks and their application
• Ability to collaborate with project teams, creative teams, and solution development teams within a matrix organization
• Demonstrated ability to work in a technical team of individuals to find ways to ensure secure delivery of technology services
• Demonstrated operational skills: planning, coordination, organization, and problem-solving skills; results-focused, team-oriented
• Excellent oral, written and presentation/facilitation skills, with the ability to communicate at technical and non-technical levels while working with projects and teams within the organization
• Working Knowledge of business and technical risks, current computer security issues and trends
• Ability to prepare reports on risk assessment results, product recommendations and computer forensic analysis
• Strong analytical and problem solving skills
• Strong working knowledge of Windows and Linux operating systems
• Ability to handle confidential and/or sensitive information with a high degree of discretion and impartially
• Demonstrable creativity, problem solving and negotiating skills
• Ability to deal with changing and competing deadlines
• Ability to deal effectively with staff at all levels of the organization
• Ability to exercise independent judgement and action in the technical and operational aspects of the work

Responsibilities

• Monitors firewall logs, intrusion detection logs and other data collected by City systems, which entails a detailed review of all pertinent traffic and transactions on any given system or network within the City
• Executes risk assessments to determine the security posture of the City’s data and infrastructure from existing City systems and those being considered for purchase or implementation. Makes recommendations based on best practices and in context of the risk to the City and its operational environment
• Implement, administer, maintain and monitor IT security controls for all digital assets and processes (network, hypervisor, endpoint, server, application, etc), including but not limited to: Vulnerability assessment, validation and remediation, Firewalls, routing and switching equipment, Intrusion Detection/Prevention Systems, Anti-malware protection and management, Remote Access Systems and VPN, Identity and Access Management Systems and Directories, Security incident management and response, Data Loss Prevention, Endpoint security (laptops, workstations, mobile devices), Network Security (Wired & Wireless), Application Security, Operating system hardening, Managed file transfer, Logging and monitoring systems (SIEM), Network segmentation, System forensics, Multi-factor authentication, Mobile device management, User and system administration
• Participates in the development and maintenance of Internal Security Policy and Cyber Security Policies
• Support the Systems Team by acting as a resource checking patching for completeness and timeliness
• Assist in trouble shooting security related network issues with the network support team
• Develop scripts and system integrations to assist in the detection of system misuse or breaches of security
• Identifies and investigates computer security incidents and inappropriate use of City computing and telecommunications facilities
• Reviews records of technology usage and presents findings to management
• Works in conjunction with the Internal Audit division on audits that relate to IT Security technologies within the City
• Implements Cybersecurity technologies for use across city business units to secure and protect services delivered to citizens and staff, supporting cost savings, financial responsibility and legal compliance
• Provides tactical technical advice and consultation to business unit clients and project teams and provides assistance with the adoption of Cybersecurity technology
• Remains current with developments in Cybersecurity and recommends new approaches and application of new technology which will assist the City and clients to meet their business objectives
• Delivers educational security awareness framework for City staff; business and technical; including multi-channel approaches
• Other duties/responsibilities as assigned