Maricopa County Office of Enterprise Technology

Position Overview ABOUT THE OFFICE OF ENTERPRISE TECHNOLOGY (OET): The Office of Enterprise Technology provides infrastructure, application support, and other IT consulting services to the 50+ departments that provide services to the residents of Maricopa County. The Office of Information Security is responsible for protecting the confidentiality, integrity and availability of the County's information and information systems through Governance, Cyber Assurance, Security Operations, and Security Architecture. ABOUT THE POSITION: The Sr. Cyber Assurance Analyst provides support of the execution of the Enterprise Information Technology Cyber Assurance Program. This program includes management of the following activities: System and Data Classification, Data Protection Risk Management, Compliance, Security Risk Assessment, Electronic Discovery, and supporting implementation of policy and standards across the enterprise. These activities are leveraged to identify and report cyber security risks to the Chief Information Security Officer. Position Qualifications We recognize your time is valuable, so please apply if you meet the following required qualifications: Education: Bachelor's degree in Cybersecurity, Computer Science, Computer Engineering, Information Systems, or a related STEM field. Experience: Five(5) years ofprofessional Information Technology work experience, of which includes a minimum of two (2) years in one or more of the following IT Security areas: Security control gap analysis, implementation and evaluation of security controls in the NIST Compliance Frameworks, Conducting IT security risk assessments, Creating security policies and governance documents, Participating in secure system lifecycle management initiatives, and/or Conducting data security initiatives including data loss prevention and data classification. Our Preferred Candidate has: A minimum one of the following certifications: CompTIA: Security+ , CySA+ GIAC: GISP-ISP ISC2: CAP ISACA: CRISC Experience with conducting security risk assessments against internal and vendor resources. Experience with NIST security control frameworks. Essential Job Tasks Conducts activities surrounding data protections including System Identification/Classification, Data Classification, Data Loss Prevention, and Impact Analyses for all Maricopa County Information Systems in alignment with standards such as the NIST SP 800-60. Documents and monitors the implementation of technology controls including evaluating, implementing and utilizing associated software tools. Supports Management, Operational and Technical Assessments of the County's Enterprise Architecture and security posture with multiple security compliance standards. Supports execution of the Maricopa County electronic discovery process which includes triaging of all eDiscovery requests including; Litigation Hold, Preservation of evidence, and personnel investigation requests. Supports management and implementation of the Maricopa County Enterprise Cyber Security Risk Management Framework based on the NIST Standards. Supports tracking and monitoring all information security risks to the enterprise network with inputs from various IT departments, Security Operations and to Security Architecture. Supports development and delivery of County training programs for Information Security awareness, policies, standards, and guidelines. Conceptualizes complex business and technical requirements into comprehensible models and templates. Expresses complex technical concepts to non-technical individuals and groups effectively, both verbally and in writing. Plans and executes initiatives including identifying customer/business needs, identifying deliverables and resource requirements, setting goals and milestones, and organizing and leading work efforts assigned to other individuals. Working Conditions: Work is performed in a general office environment, and may require the ability to respond 24/7 as needed. May require occasional lifting of equipment weighing up to 50 pounds. Position may require travel to and from job related locations during the course of a scheduled workday, subject to County policies regarding use of County vehicles and/or private vehicles used on County business. Maricopa County is an EEO/ADA Reasonable Accommodation Employer. Selection Procedure The Maricopa County Human Resources Department reserves the right to admit to the selection process only those candidates considered to be the most highly qualified. Those selected will be assessed based on evaluation of listed education and experience. The hiring authority will interview and select the successful candidate from a list provided by Human Resources. All offers of employment made to new hires and rehires at Maricopa County are contingent upon successful completion of a post-offer, pre-employment thorough background investigation. A background investigation is conducted on a current employee who changes to a Safety Sensitive Position or one having the potential for serious adverse impact on the integrity or efficiency of the County. These requirements do not pertain to employees of elected officials who undergo background investigation processes administered through their respective offices. Typically, successful candidates are hired at a salary rate up to midpoint of the range, based on applicable experience, internal equity and budgetary allowances. Closing Date/Time: 11/25/2019 11:59 PM Arizona