Information Technology Security Coordinator
Company: Escambia County
Location: Pensacola
Posted on: June 9, 2021
|
|
|
Job Description:
Description Benefits Supplemental Questions Home to more than 300,000 residents in northwest Florida,
Escambia County is the westernmost and one of the oldest counties
in the state. The mission of Escambia County government is to
provide efficient, responsive services that enhance our quality of
life, meet common needs and promote a safe and healthy community.
With nearly 1,800 employees, we pride ourselves on being the
perfect climate for everything - building a business, raising a
family and enjoying recreational pursuits. Picture perfect white
sand beaches and clear, emerald Gulf waters draw millions of
vacationers to Escambia each year, especially to Pensacola Beach,
named the #4 Top U.S. Beach in 2020 by TripAdvisor. Under the direction of the Network/Infrastructure Manager, the
Information Technology Security Coordinator is responsible for the
development and delivery of a comprehensive information security
program for the Departments and Divisions of the Escambia County
Board of County Commissioners. The scope of this activity is
County-wide and includes information in electronic, print, and
other formats. This position assures that information created,
acquired, received by or maintained by the BCC and the information
technology infrastructure is protected from external or internal
threats and that the BCC complies with statutory and regulatory
requirements regarding information access, security, and privacy.
This position will also develop and maintain comprehensive systems
and network and application documentation. The Information Technology Security Coordinator ensures the
secure operation of the in-house computer systems, servers, and
network connections. This includes checking server and firewall
logs, scrutinizing network traffic, establishing and updating virus
scans, and troubleshooting. This person will also analyze and
resolve security breaches and vulnerability issues in a timely and
accurate fashion and conduct user activity audits where
required. Examples of Duties: Acts as the IT Director's designee by representing the BCC on
Information Security matters and serving as the responsible BCC
contact person for external agencies and audits including the CJIS
triennial Technical Audit Leads the development of BCC information security and other
policies, standards, procedures, and processes by working with the
IT divisions and data custodians in the development of such
documents and ensuring that BCC policies support compliance with
external requirements Leads the development and delivery of an education and training
program on information security for employees and other authorized
users and coordinates with Human Resources to document security
training in the employee's permanent file Develops and implements an ongoing risk assessment program
targeting information security by recommending methods for
vulnerability detection and remediation, overseeing vulnerability
testing, maintaining an inventory of all sources of PHI and PII,
identifying and documenting risks associated with these sources,
the likelihood and impact of each risk, and identifying methods of
mitigating or eliminating each risk Serves as the BCC security contact with respect to all State and
Federal information security policies and regulations including,
but not limited to, HIPAA, PCI, CJIS, Patriot Act, etc., by
preparing and submitting any required reports to external
agencies Ensures compliance by performing audits and inspections of
internal BCC operations and business associates, its agents, or
sub-contractors Develops and implements an Incident Reporting and Response
System to address any BCC-related security incidents by defining
what incidents require responses and what level of response is
needed based on the finding of the Risk Assessment by responding to
alleged policy violations or complaints from external parties,
serving as the official BCC contact point for information security
including relationships with law enforcement entities, and ensuring
appropriate communications are issued per statutory and regulatory
requirements, including promptly notifying the CSA ISO of CJIS
related security incidents Provides security oversight by documenting the technical aspects
of the BCC network showing how all CJIS related equipment is
connected to the County network and to the State CJIS systems
and/or networks and staying abreast of the latest security
legislation, regulations, advisories, alerts, and vulnerabilities
pertaining to the BCC Performs other duties as assigned Qualifications: Minimum Qualification Requirements: Training and Experience: Bachelor's degree in Information Technology, Information
Security, Business Administration, or a related field and a minimum
of three years of related experience supporting Information
Technology infrastructure or Information Security technology; or a
combination of education and experience equivalent to the
above. Licenses and Certifications: Must possess a valid driver's license from state of
residence Must complete the online CJIS training available on CJNet and
maintain an active certification status of Level 4 Security
Awareness Training Preferred Qualifications: Knowledge of HIPAA and CJIS security requirements Experience with application, network, and physical security
architectures Strong knowledge of TCPIP, DHCP, DNS, Active Directory,
firewall, wireless, VPN, RADIUS, PKI, virus check expertise
etc. Strong knowledge of encryption techniques such as HSM, PGP,
HTTPS Strong knowledge of Windows & Unix Operating Systems Strong knowledge of SIEM Technology, Next-Generation Firewalls,
Next-Generation Endpoint Protection, NetFlow Monitoring, Database
Encryption. Experience with NIST framework with best practices Knowledge, Skills, Abilities, and Other Characteristics
(KSAOs): Knowledge of: supervisory principles project management principles Skilled in: recognizing and proactively addressing potential problems communicating technical information to a non-technical
audience communication and interpersonal skills as applied to interaction
with coworkers, supervisor, the general public, etc. sufficient to
exchange or convey information and to receive work direction Ability to: monitor and evaluate staff delegate and prioritize work perform basic budgeting, accounting, and financial
transactions work independently and as part of a team conceive and present creative solutions communicate technical information to a non-technical
audience handle multiple tasks simultaneously work collaboratively with a broad range of constituencies read, analyze, and interpret general computer periodicals,
technical manuals, and government publications and regulations work under pressure and meet deadlines be flexible with working schedules, including shift and out of
hours working maintain confidentiality effectively present information and respond to questions
relating to information security functions Supplemental Information: County-wide Employee
Responsibilities: All Escambia County BCC employees must serve the public and
fellow employees with honesty and integrity in full accord with the
letter and spirit of Escambia County BCC's Employee Code of Ethics,
gift, and conflict of interest policies. All Escambia County BCC employees must establish and maintain
effective working relationships with the general public,
co-workers, elected and appointed officials and members of diverse
cultural and linguistic backgrounds, regardless of race, color,
religion, sex, national origin, age, disability, marital status,
political affiliation, familial status, sexual orientation,
pregnancy, or gender identity and expression. Emergency Management Responsibilities: During emergency conditions, the incumbent of this position will
automatically be considered an emergency service worker. This
employee is subject to being called to work in the event of a
disaster, such as a hurricane, or other emergency situation and is
expected to perform emergency service duties, as assigned. Physical Requirements: Positions in this class typically require sitting, standing,
talking, hearing, seeing, finger and hand dexterity as well as
repetitive motions. Light Work: Exerting up to 20 pounds of force occasionally,
and/or up to 10 pounds of force frequently. This is sedentary work
which involves sitting for long periods of time and occasional
standing and walking. Benefits/Compensation Package:
Keywords: Escambia County, Pensacola , Information Technology Security Coordinator, Other , Pensacola, Florida
|
Click
here to apply!
|
