icrunchdata Network Longmont, CO, USA
Jan 25, 2020Full-time
POSITION: 20190200 Security Analyst Hiring Range: $7,181- $7,979/MO Regular full time plus Benefits, 5 days a week, 8 hours per day Division: Enterprise Technical Services Department: Shared Services DEFINITION: Responsible for protecting the confidentiality, integrity, and availability of City information. Provides system level support of enterprise operating systems and enterprise applications for systems such as: Active Directory, Firewalls, VPN Access, IDS/IPS devices, Web application firewalls, web filtering, SIEM log management and analysis. Provides analysis and support for security systems. Understands and adheres to best practices for supported platforms. Responsible for analyzing and resolving security breaches and vulnerability issues in a timely and accurate fashion, and conducting user activity audits where required. Performs vulnerability management and monitoring for all servers and workstations. Provides technical support for compliance policies such as PCI DSS, HIPAA and CJIS. Responsible to manage Endpoint Protection Systems, hardening of Servers and PCI workstations. Conducts Spam Review and Control, Log Review - Optimizing Settings, Monitors Patching of servers and workstations. Adheres to the NIST Cyber Security Framework, following best practices. This position also provides technical support and direction to the application staff as it relates to security of enterprise and division level applications. Collaborates with other ETS staff to provide system administration support for City projects. WORKING ENVIRONMENT: Work is performed in a standard office environment. Work requires problem-solving skills and the ability to communicate effectively orally and in writing. Work involves frequent reading, reasoning, customer contact, multiple concurrent tasks, constant interruptions, heavy lifting and carrying (50 pounds. or more), pulling, pushing, reaching, walking, standing, bending/stooping. Work involves occasional sitting, climbing, twisting, kneeling, and squatting. Requires periodic travel to other departments. Responsibilities may include evening and weekend work in response to needs of the systems being supported. QUALIFICATIONS : Any combination of experience or education equivalent to a Bachelor’s Degree from an accredited college with major course work in business information systems, computer science or a closely related field and a minimum of three years of cyber security and vulnerability management experience required. Proficiency in PowerShell scripting. Experience in securing and management of firewalls, Active Directory and O365 is required. Security experience including IPS devices, Web Application Firewalls, Web filters, Anti-Virus and SIEM technologies desired. Experience in supporting compliance regulations such as PCI, HIPAA, and CJIS. Cisco CCNA Security, GIAC or other security certifications are a plus. Selection process will include complete job description review, personal interview, background investigation, criminal background check and substance screening. DEADLINE: An ONLINE APPLICATION is required. This job is Open Until Filled. An online application process is available for this position on our website at www.longmontcolorado.gov . Resumes are not accepted in lieu of the City Application. For more information, call (303) 651-8609. The City of Longmont offers Equal Opportunity for employment to all qualified applicants. It is the policy of the City of Longmont not to discriminate on the basis of race, color, religion, creed, national origin, sex, sexual orientation, age, ancestry, veteran status or disability unless related to a bona fide occupational qualification. If you need special assistance in the selection process, please contact the Human Resources Department in advance to make arrangements. AN EQUAL OPPORTUNITY EMPLOYER All City of Longmont Facilities are Smoke Free www.longmontcolorado.gov PRINCIPAL DUTIES : Collect data to analyze and evaluate existing or proposed systems for effectiveness, reporting to the organization and return on investment. Strong analytical and diagnostic skills. Ability to clearly articulate complex concepts both written and verbally. Understand architecture, administration, and management of operating systems, networking, and virtualization software. Conduct technical Vulnerability Assessments including systems and network vulnerability assessments, penetration testing, web application assessments, social engineering assessments, physical security assessments, wireless security assessments and implementing secure infrastructure solutions. Proactively assist with detection and mitigation of security incidents. Maintain the integrity of process and approach, as well as controls, for the whole incident management process including the ability to coordinate and manage major/highly sensitive investigations with potential for business wide impact/reputational damage. Be able to understand and forensically show how attacks from the Internet are done. Respond to and mitigate such attacks. Ability to work with current SIEM software platform to create AI rules. Monitor and detect threats. Research, plan, install, configure, troubleshoot, maintain and upgrade security systems, hardware and software interfaces with the operating system. Experience in administration, configuration, and upgrades of Enterprise Level Firewalls. Certification is desired. Analyze and evaluate present or proposed business procedures or problems to define data processing needs. Prepare detailed flow charts and diagrams outlining security systems capabilities and processes. Research and recommend hardware and software development, purchase, and use. Troubleshoot and resolve hardware, software, and connectivity problems including user access and component configuration as related to security. Select among authorized procedures and seek assistance when guidelines are inadequate, significant deviations are proposed, or when unanticipated problems arise. Write and maintain system documentation. Conduct technical research on system upgrades to determine feasibility, cost, time required, and compatibility with current system. Maintain confidentiality with regard to the information processed, stored or accessed by the network. Document system problems and resolutions for future reference. Perform typical system administration within the security environment under direction of enterprise security lead. Assist end-users (customers) by answering questions about security training materials. Respond to end-user concerns, answering questions and working under the supervision of senior staff to problem solve with vendors. Document problem resolution. Administer and maintain user access (security): adds new users, sets or changes permissions/authority, deletes user accounts. Monitors computer networks for security issues. Installs, maintains and upgrades Security enterprise software according to vendor procedures and City configurations. Produce basic reports from various database tables per user requirements. Demonstrate collaboration across the organization for business intelligence strategy, design, development, implementation and support. Collaborate with team members to develop, test and deploy business solutions and reports. Assist with administration of enterprise-wide software to modify application configuration files, administering and maintaining user access to ensure system availability. Respond quickly and appropriately to urgent requests from a wide variety of sources. Assist with development and delivery of both technical documentation and end-user training material. Perform penetration testing. Assist with online security training as needed. Stay up-to-date on information technology trends and security standards. Performs essential duties and additional tasks in a manner which enhances City Attributes.