IT Security Administrator

Marion County requires onsite work. Remote work is not available.

This recruitment has been reopened for additional applicants and will remain open until filled. If you have already applied for recruitment #you do not need to reapply. New applicants are encouraged to submit applications as soon as possible as this recruitment may close at any time without further notice.

Information Technology (IT) provides technical services manages the countys technical resources and provides consulting services for technology improvements through three programs: Administration Operations and Technology Solutions. These programs provide a complete range of technology services which include strategic planning new service design business analysis project management security risk management data security applications delivery and support networks servers and storage desktop and mobile management database administration and enduser support through the service desk.

GENERAL STATEMENT OF DUTIES

Plan organize manage and administer information security operations and functions; develop and implement program and strategic planning; implement and assist in the development of information security program policies procedures and business practices; evaluate goals objectives priorities and activities to improve performance and outcomes; recommend and establish administrative controls and improvements; develop procedures to implement new and changing regulatory requirements; serve as an advisor to the management team.

SUPERVISION RECEIVED

Under general supervision of the IT Director who assigns work establishes goals and reviews the results obtained for overall effectiveness through analyzing work products observations and meetings.

SUPERVISION EXERCISED

Full supervision including employee selection and training performance evaluation complaint response and personnel recommendations.

DISTINGUISHING CHARACTERISTICS

Develop and maintain the framework for the organizations IT information security. Evaluate and recommend new information security technologies and countermeasures against threats to information or privacy. Identify information technology security initiatives and standards for the enterprise. Manage the development implementation and maintenance of information security policy standards guidelines and procedures. Set the access and authorization controls for everyday operations and emergency procedures for data. Set the standards for access controls audit trails event reporting encryption and integrity controls. Keep abreast of the latest security and legislation regulations advisories alerts and vulnerabilities about IT assets.

• Endpoint Threat Protection Monitoring (Devices with Antivirus)
• Cloud Security Monitoring alerts & reports
• Advanced Threat Protection (ATP)
• SIEM or other logging and correlation technologies
• Vulnerability Scans for security and compliance
• Vulnerability remediation assessment and planning

• Research security configuration enhancements and make recommendations to management

• Monitor data access: ensure the internal control systems are monitored and that appropriate access levels are maintained following the principle of least privilege.
• Conduct security assessments through vulnerability testing and risk analysis using available vulnerability scanning tools.
• Assist with internal and external security audits.
• Ensure adopted security policies procedures and best practices are followed.
• Contribute to weekly security status reports to IT leadership

• Analyze security breaches to identify the root cause.
• Respond to potential security policy violations or complaints from external parties.
• Assist in oversight and activities for intrusion detection and response.
• Investigate security incidents and develop afteraction reports.
• Serve as a point of contact for external security auditors survey requests and for department security/privacy matters.
• Assists in facilitating and promoting activities to create information security awareness and training.
• Other duties as assigned.

EXPERIENCE AND TRAINING

1. Bachelors degree in computer science information technology or related field; AND
2. Five years of progressive experience in computing information security and internet technologyincluding two years of supervisory experience; OR
3. Any satisfactory combination of work education training or experience relevant to the position as determined by Marion County.

• The finalist for this position will be required to pass a criminal history background check including finger printing; however conviction of a crime may not necessarily disqualify an individual for this position.
• Must possess a current drivers license in the applicants state of residence and an acceptable driving history. Marion County will obtain a copy of the driving record for all qualified applicants from Driver and Motor Vehicle Services and review the driving record according to the Marion County policy and procedure for Driving on County Business. The policy can be found at: assignment is not represented by a union.
• This is a fulltime exempt position which is not eligible for overtime.
• Typical Work Schedule: Monday through Friday 8:00 A.M. 5:00 P.M. with flexibility depending upon the needs of the department and program.
• Must be available to perform assigned rotating afterhour duties.
  

• Certified Information Systems Security Professional (CISSP) or formal security certifications from International Information System Security Certification Consortium(ISC) Global Information Assurance Certification GIAC) Computing Technology Industry Association CompTIA) Information Systems Audit and Control Association(ISACA).
• Information security principles and practices including any of the following: security risk assessment standards risk assessment methodologies and vulnerability assessments.
• Senior level knowledge of mainstream operating systems and a wide range of security technologies such as network security appliances identity and access management (IAM) systems antimalware solutions automated policy compliance tools and desktop security software.

PUBLIC SERVICE LOAN FORGIVENESS
Marion County is a qualifying public employer for the Public Service Loan Forgiveness Program. Through the Public Service Loan Forgiveness Program fulltime employees working at the County may qualify for forgiveness of the remaining balance on Direct Loans after 120 qualifying monthly payments under a qualifying repayment plan. Questions about your loan eligibility should be directed to your loan servicer or the US Department of Education.

VISA SPONSORSHIP
Marion County does not offer VISA sponsorship. Within three days of hireyou will be required to complete the US Department of Homeland Securitys I9 form confirming authorization to work in the United States. Marion County is an EVerify employer and will use EVerify to confirm that hires are authorized to work in the United States.

VETERANS PREFERENCE
Applicants are eligible to use Veterans Preference when applying with Marion County in accordance with ORS 408.225 408.230 and 408.235 and OARand. Preference will be awarded only if the applicant meets the minimum requirements of the position and attaches the required documentation at the time of application.

DOCUMENTS REQUIRED FOR VETERANS PREFERENCE

• One of the following:
  • MEMBER COPY 4 of the Certificate of Release or Discharge from Active Duty (DD Form 214 or 215; OR
  • Letter from the US Department of Veterans Affairs indicating receipt of a nonservice connected pension; OR
  • Certification that discharge or release from active duty under honorable conditions will take place not later than 120 days after the submission of the certificate.

• In addition to one of the above documents Disabled Veterans must also submit one of the following:
  • A copy of their Veterans disability preference letter from the Department of Veterans Affairs; OR
  • Certification that medical separation from active duty under honorable conditions will take place not later than 120 days after the submission of the certificate.

You can request copies of your military service record through the National Archives website at County is an Equal Opportunity Affirmative Action Veteran and Disability employer committed to increasing the diversity of its workforce.

Applicants with a disability may request reasonable accommodation through Human Resources in any step of the process to assist them in demonstrating their qualifications to perform the duties of the position for which they are applying. Please emailHuman Resourcesif you wish to request an accommodation.