IT Security Analyst

Marion County requires on-site work. Remote work is not available.

This recruitment has been reopened for additional applicants and will remain open until filled. If you have already applied for recruitment #you do not need to reapply. New applicants are encouraged to submit applications as soon as possible as this recruitment may close at any time without further notice.

Works inter-departmentally to identify and correct flaws in the Countys security systems solutions and programs while recommending specific measures that can improve the Countys overall security posture. Plans organizes manages and administers information security programs operations and functions. Assists in develops and maintains information security policies procedures and business practices. Leads security risk assessment efforts and supports the employee security-awareness training program. Evaluates security goals objectives priorities and activities to improve performance and outcomes. Recommends and establishes physical technical and administrative security controls and improvements; serves as an advisor to the management team.

• Develops and maintains the framework for the Countys IT information security program.
• Evaluates and recommends new information security technologies and countermeasures against threats to information or privacy.
• Identifies information technology security initiatives and standards for the enterprise.
• Manages the development implementation and maintenance of information security policy standards guidelines and procedures.

• Monitors and maintains security tools/systems including:
  • Endpoint Threat Protection Monitoring (Devices with Antivirus)
  • Cloud Security Monitoring alerts & reports
  • Advanced Threat Protection (ATP)
  • SIEM or other logging and correlation technologies
  • Vulnerability scans for security and compliance
  • Vulnerability remediation assessment and planning
• Implements new security configurations
  • Researches security configuration enhancements and make recommendations to management

• Monitors data access: ensures the internal control systems are monitored and that appropriate access levels are maintained following the principle of least privilege.
• Conducts security assessments through vulnerability testing and risk analysis using available vulnerability scanning tools.
• Assists with internal and external security audits.
• Ensures adopted security policies procedures and best practices are followed.
• Contributes to weekly security status reports to IT leadership.

• Analyzes security breaches to identify the root cause.
• Responds to potential security policy violations or complaints from external parties.
• Assists in oversight and activities for intrusion detection and response.
• Investigates security incidents and develop after-action reports.
• Serves as a point of contact for external security auditors survey requests and for department security/privacy matters.
• Assists in facilitating and promoting activities to create information security awareness and training.

• Participates in meetings in-service training workshops etc. for the purpose of gathering information required to perform job functions.
• Performs other duties as assigned.

EXPERIENCE AND TRAINING

1. Bachelors degree with significant coursework in computer science information technology or a related field; AND
2. Three years of progressive experience in cybersecurity and information security including experience with internet technology and security issues; OR
3. Any satisfactory combination of work education training or experience relevant to the position as determined by Marion County.

• Must possess a current drivers license in the applicants state of residence and an acceptable driving history. Marion County will obtain a copy of the driving record for all qualified applicants from Driver and Motor Vehicle Services and review the driving record according to the Marion County policy and procedure for Driving on County Business. The policy can be found at: finalist for this position will be required to pass a criminal history background check including fingerprinting; however conviction of a crime may not necessarily disqualify an individual for this position.
• This is a full-time position which is not eligible for overtime.
• This assignment is represented by a union.
• Typical Work Schedule: Monday through Friday 8:00 a.m. - 5:00 p.m. with flexibility depending upon the needs of the department and program.

PUBLIC SERVICE LOAN FORGIVENESS
Marion County is a qualifying public employer for the Public Service Loan Forgiveness Program. Through the Public Service Loan Forgiveness Program full-time employees working at the County may qualify for forgiveness of the remaining balance on Direct Student Loans after 120 qualifying monthly payments under a qualifying repayment plan. Questions about your student loan eligibility should be directed to your loan servicer or the US Department of Education.

VISA SPONSORSHIP
Marion County does not offer VISA sponsorship. Within three days of hireyou will be required to complete the US Department of Homeland Securitys I-9 form confirming authorization to work in the United States. Marion County is an E-Verify employer and will use E-Verify to confirm that hires are authorized to work in the United States.

VETERANS PREFERENCE
Applicants are eligible to use Veterans Preference when applying with Marion County in accordance with ORS 408.225 408.230 and 408.235 and OAR and . Preference will be awarded only if the applicant meets the minimum requirements of the position and attaches the required documentation at the time of application.

DOCUMENTS REQUIRED FOR VETERANS PREFERENCE

• One of the following:
  • MEMBER COPY 4 of the Certificate of Release or Discharge from Active Duty (DD Form 214 or 215); OR
  • Letter from the US Department of Veterans Affairs indicating receipt of a non-service connected pension; OR
  • Certification that discharge or release from active duty under honorable conditions will take place not later than 120 days after the submission of the certificate.

• In addition to one of the above documents Disabled Veterans must also submit one of the following:
  • A copy of their Veterans disability preference letter from the Department of Veterans Affairs; OR
  • Certification that medical separation from active duty under honorable conditions will take place not later than 120 days after the submission of the certificate.

You can request copies of your military service record through the National Archives website at County is an Equal Opportunity Affirmative Action Veteran and Disability employer committed to increasing the diversity of its workforce.

Applicants with a disability may request reasonable accommodation through Human Resources in any step of the process to assist them in demonstrating their qualifications to perform the duties of the position for which they are applying. Please e-mailHuman Resourcesif you wish to request an accommodation.