Marketing Statement Ride BART to a satisfying career that lets you both: 1) make a difference to Bay Area residents, and 2) enjoy excellent pay, benefits, and employment stability. BART is looking for people who like to be challenged, work in a fast-paced environment, and have a passion for connecting riders to work, school and other places they need to go. BART offers a competitive salary, comprehensive health benefits, paid time off, and the CalPERS retirement program. Job Summary Pay Rate Non-Represented Pay Band E07 Annual Salary: $113,621.00 (Minimum) - $172,136.00 (Maximum) The negotiable starting salary offer will be between $113,621.00/annually - $164,346.25/annually, commensurate with education and experience. Reports To Manager of Cyber Security Current Assignment This job announcement will be used to establish a pool of eligible candidates for vacancies that may occur within the next twelve (12) months. BART is looking for a highly experienced Cyber Security Engineer that wants to focus their career on working with cutting edge network security tools. An ideal candidate is a former or current enterprise network security professional with a deep understanding of routing, switching and next generation firewalls. The Cybersecurity Division in the Office of the Chief Information Officer (OCIO) offers a collaborative environment with a major emphasis on ensuring that our Cyber Security Engineers get the training, support, and certifications they need to better combat the evolving threat landscape. Selection Process Initial screening of resumes received will begin on May 8, 2024. Applications will be screened to assure that minimum qualifications are met. Those applicants who meet minimum qualifications will then be referred to the hiring department for the completion of further selection processes. Qualified applications received up to the initial screening date may be enrolled into the selection process. If no successful candidate(s) are identified, applications received past the initial screening date will then be reviewed for consideration. The selection process for this position may include a skills/performance demonstration, a written examination, and a panel and/or individual interview. The successful candidate must have an employment history demonstrating reliability and dependability; provide copies of certificates, diplomas or other documents as required by law, including those establishing his/her right to work in the U. S; pass a pre-employment medical examination which may include a drug and alcohol screen, and which is specific to the essential job functions and requirements. Pre-employment processing will also include a background check. (Does not apply to current full-time District employees unless specific job requires additional evaluations). Examples of Duties Under general supervision develops and implements the network design of a complex unified cyber security infrastructure. Monitors and Tunes the District’s Unified Cyber network infrastructure. Provides highly technical security expertise and support related to alarms and monitoring devices that participate in District Security Objectives (DSO’s); Oversees and resolves business and network support issues related to Regional Anti-Terrorism Integrated Law Enforcement System (RAILS). Manages the various network security projects including performing impact diagnostics on existing technology projects. Evaluates business and technical security requirements; driving the selection, prototyping and implementation of applications and technical solutions; and effectively communicating inherent security risks to non-technical users and administrators. Participates as a member of the Computer Security Incident Response Team (CSIRT). Coordinates and implements enterprise network design and remediation solutions based on gathered statistics. Collects automated progress metrics for all technology projects. Coordinates with law enforcement, as necessary, to maintain District security. Responsible for analyzing and testing attack and penetration of Internet infrastructure and Web-based applications utilizing manual and automated tools. Performs other duties as assigned within the scope of the qualifications. Minimum Qualifications Education: A Bachelor’s Degree in Computer Science, Information Security or related field. Experience: Three (3) years of (full-time equivalent) verifiable professional experience in an Information Security Operations and/or design role, which must have included Cyber Intelligence, Cyber Defense, Digital Surveillance, or related experience. Substitution: Additional professional experience as outlined above may be substituted for the education on a year-for- year basis. A college degree and information security related certification (s) and detailed hands-on network experience developing enterprise cyber security programs is highly preferred. Other Requirements: Professional Certification such as CISSP, CISM, GSEC, GIAC, CEH, CPT are strongly preferred. Knowledge and Skills Knowledge of: Network security management, design, and deployment. Datacenter operations in Co-Located datacenters and on-premises datacenters. Transportation and Rail-specific security concerns. (SCADA, CBTC). Next Generation Firewalls (NGFW), Software Defined Wide-Area Networking (SDWaN). Advanced Threat Protection and Sandboxing solutions. Intrusion Detection/Prevention Systems: Anomaly-based, signature-based, and host-based. Cybersecurity Standards, Practices & Solutions. Cloud services and platforms such as Azure, AWS, GCP. Virtual computing infrastructure platforms such as Nutanix, VMware, Azure. Related federal, state, and local laws, codes and regulations. Information security tools such as Nessus, Elastic, F5/BigIP, NMAP, Vectra, Tines, WebInspect, Nikto or similar. Enterprise Information Systems and Information Security which address system development and maintenance procedures, system software and hardware controls, security and access controls, computer operations, environmental protection and detection, and backup and recovery procedures. Enterprise system architecture and security controls, such as firewall and border router configurations, operating systems configurations, wireless architectures, databases, specialized appliances and information security policies and procedures. Relational Database Administration (DBA) in Oracle, SQL, or similar data systems. Technical knowledge of Unix, Linux and Windows operating systems. Technical knowledge of remote access methodologies, log management tools, firewalls, cryptography and digital certificates. Surveillance, Access Control and related Alarm Systems. Methods and techniques of networking protocols and remote access. Experience with Unix shell, scripting languages, regular expressions. Programming languages such as Java, C, C++, C#, and .NET. Industry Standards, eg, ISO 17799/27001, NIST Publications and other Industry Related Security Standards. Skill in: Performing manual techniques to exploit vulnerabilities in the OWASP top 10 including but not limited to cross-site Scripting, SQL injections, session hi-jacking and buffer overflows to obtain controlled access to target systems. Performing network traffic forensic analysis, utilizing packet capturing software, to isolate malicious network behavior, inappropriate network use or identification of insecure network protocols. TCP/IP and application layer troubleshooting. Managing interfaces between disparate alarm systems. Preparing clear and concise reports and documentation. Advanced troubleshooting.Software Application source code security review. Communicating clearly and concisely, both orally and in writing. Establishing and maintaining effective working relationships with those contacted in the course of work. Creating training materials. Training employees to maintain situational awareness. Equal Employment Opportunity GroupBox1 The San Francisco Bay Area Rapid Transit District is an equal opportunity employer. Applicants shall not be discriminated against because of race, color, sex, sexual orientation, gender identity, gender expression, age (40 and above), religion, national origin (including language use restrictions), disability (mental and physical, including HIV and AIDS), ancestry, marital status, military status, veteran status, medical condition (cancer/genetic characteristics and information), or any protected category prohibited by local, state or federal laws. The BART Human Resources Department will make reasonable efforts in the examination process to accommodate persons with disabilities or for religious reasons. Please advise the Human Resources Department of any special needs in advance of the examination by emailing at least 5 days before your examination date at employment@bart.gov . Qualified veterans may be eligible to obtain additional veteran's credit in the selection process for this recruitment (effective Jan. 1, 2013). To obtain the credit, veterans must attach to the application a DD214 discharge document or proof of disability and complete/submit the Veteran's Preference Application no later than the closing date of the posting. For more information about this credit please go to the Veteran's Preference Policy and Application link at www.bart.gov/jobs . The San Francisco Bay Area Rapid Transit District (BART) prides itself in offering best in class benefits packages to employees of the District. Currently, the following benefits may be available to employees in this job classification. Highlights Medical Coverage (or $350/month if opted out) Dental Coverage Vision Insurance (Basic and Enhanced Plans Available) Retirement Plan through the CA Public Employees’ Retirement System (CalPERS) 2% @ 55 (Classic Members) 2% @ 62 (PEPRA Members) 3% at 50 (Safety Members - Classic) 2.7% @ 57 (Safety Members - PEPRA) Reciprocity available for existing members of many other public retirement systems (see BART website and/or CalPERS website for details) Money Purchase Pension Plan (in-lieu of participating in Social Security tax) 6.65% employer contribution up to annual maximum of $1,868.65 Deferred Compensation & Roth 457 Sick Leave Accruals (12 days per year) Vacation Accruals (3-6 weeks based on time worked w/ the District) Holidays: 9 observed holidays and 5 floating holidays Life Insurance w/ ability to obtain additional coverage Accidental Death and Dismemberment (AD&D) Insurance Survivor Benefits through BART Short-Term Disability Insurance Long-Term Disability Insurance Flexible Spending Accounts: Health and Dependent Care Commuter Benefits Free BART Passes for BART employees and eligible family members. Closing Date/Time: Continuous
Apr 09, 2024
Full Time
Marketing Statement Ride BART to a satisfying career that lets you both: 1) make a difference to Bay Area residents, and 2) enjoy excellent pay, benefits, and employment stability. BART is looking for people who like to be challenged, work in a fast-paced environment, and have a passion for connecting riders to work, school and other places they need to go. BART offers a competitive salary, comprehensive health benefits, paid time off, and the CalPERS retirement program. Job Summary Pay Rate Non-Represented Pay Band E07 Annual Salary: $113,621.00 (Minimum) - $172,136.00 (Maximum) The negotiable starting salary offer will be between $113,621.00/annually - $164,346.25/annually, commensurate with education and experience. Reports To Manager of Cyber Security Current Assignment This job announcement will be used to establish a pool of eligible candidates for vacancies that may occur within the next twelve (12) months. BART is looking for a highly experienced Cyber Security Engineer that wants to focus their career on working with cutting edge network security tools. An ideal candidate is a former or current enterprise network security professional with a deep understanding of routing, switching and next generation firewalls. The Cybersecurity Division in the Office of the Chief Information Officer (OCIO) offers a collaborative environment with a major emphasis on ensuring that our Cyber Security Engineers get the training, support, and certifications they need to better combat the evolving threat landscape. Selection Process Initial screening of resumes received will begin on May 8, 2024. Applications will be screened to assure that minimum qualifications are met. Those applicants who meet minimum qualifications will then be referred to the hiring department for the completion of further selection processes. Qualified applications received up to the initial screening date may be enrolled into the selection process. If no successful candidate(s) are identified, applications received past the initial screening date will then be reviewed for consideration. The selection process for this position may include a skills/performance demonstration, a written examination, and a panel and/or individual interview. The successful candidate must have an employment history demonstrating reliability and dependability; provide copies of certificates, diplomas or other documents as required by law, including those establishing his/her right to work in the U. S; pass a pre-employment medical examination which may include a drug and alcohol screen, and which is specific to the essential job functions and requirements. Pre-employment processing will also include a background check. (Does not apply to current full-time District employees unless specific job requires additional evaluations). Examples of Duties Under general supervision develops and implements the network design of a complex unified cyber security infrastructure. Monitors and Tunes the District’s Unified Cyber network infrastructure. Provides highly technical security expertise and support related to alarms and monitoring devices that participate in District Security Objectives (DSO’s); Oversees and resolves business and network support issues related to Regional Anti-Terrorism Integrated Law Enforcement System (RAILS). Manages the various network security projects including performing impact diagnostics on existing technology projects. Evaluates business and technical security requirements; driving the selection, prototyping and implementation of applications and technical solutions; and effectively communicating inherent security risks to non-technical users and administrators. Participates as a member of the Computer Security Incident Response Team (CSIRT). Coordinates and implements enterprise network design and remediation solutions based on gathered statistics. Collects automated progress metrics for all technology projects. Coordinates with law enforcement, as necessary, to maintain District security. Responsible for analyzing and testing attack and penetration of Internet infrastructure and Web-based applications utilizing manual and automated tools. Performs other duties as assigned within the scope of the qualifications. Minimum Qualifications Education: A Bachelor’s Degree in Computer Science, Information Security or related field. Experience: Three (3) years of (full-time equivalent) verifiable professional experience in an Information Security Operations and/or design role, which must have included Cyber Intelligence, Cyber Defense, Digital Surveillance, or related experience. Substitution: Additional professional experience as outlined above may be substituted for the education on a year-for- year basis. A college degree and information security related certification (s) and detailed hands-on network experience developing enterprise cyber security programs is highly preferred. Other Requirements: Professional Certification such as CISSP, CISM, GSEC, GIAC, CEH, CPT are strongly preferred. Knowledge and Skills Knowledge of: Network security management, design, and deployment. Datacenter operations in Co-Located datacenters and on-premises datacenters. Transportation and Rail-specific security concerns. (SCADA, CBTC). Next Generation Firewalls (NGFW), Software Defined Wide-Area Networking (SDWaN). Advanced Threat Protection and Sandboxing solutions. Intrusion Detection/Prevention Systems: Anomaly-based, signature-based, and host-based. Cybersecurity Standards, Practices & Solutions. Cloud services and platforms such as Azure, AWS, GCP. Virtual computing infrastructure platforms such as Nutanix, VMware, Azure. Related federal, state, and local laws, codes and regulations. Information security tools such as Nessus, Elastic, F5/BigIP, NMAP, Vectra, Tines, WebInspect, Nikto or similar. Enterprise Information Systems and Information Security which address system development and maintenance procedures, system software and hardware controls, security and access controls, computer operations, environmental protection and detection, and backup and recovery procedures. Enterprise system architecture and security controls, such as firewall and border router configurations, operating systems configurations, wireless architectures, databases, specialized appliances and information security policies and procedures. Relational Database Administration (DBA) in Oracle, SQL, or similar data systems. Technical knowledge of Unix, Linux and Windows operating systems. Technical knowledge of remote access methodologies, log management tools, firewalls, cryptography and digital certificates. Surveillance, Access Control and related Alarm Systems. Methods and techniques of networking protocols and remote access. Experience with Unix shell, scripting languages, regular expressions. Programming languages such as Java, C, C++, C#, and .NET. Industry Standards, eg, ISO 17799/27001, NIST Publications and other Industry Related Security Standards. Skill in: Performing manual techniques to exploit vulnerabilities in the OWASP top 10 including but not limited to cross-site Scripting, SQL injections, session hi-jacking and buffer overflows to obtain controlled access to target systems. Performing network traffic forensic analysis, utilizing packet capturing software, to isolate malicious network behavior, inappropriate network use or identification of insecure network protocols. TCP/IP and application layer troubleshooting. Managing interfaces between disparate alarm systems. Preparing clear and concise reports and documentation. Advanced troubleshooting.Software Application source code security review. Communicating clearly and concisely, both orally and in writing. Establishing and maintaining effective working relationships with those contacted in the course of work. Creating training materials. Training employees to maintain situational awareness. Equal Employment Opportunity GroupBox1 The San Francisco Bay Area Rapid Transit District is an equal opportunity employer. Applicants shall not be discriminated against because of race, color, sex, sexual orientation, gender identity, gender expression, age (40 and above), religion, national origin (including language use restrictions), disability (mental and physical, including HIV and AIDS), ancestry, marital status, military status, veteran status, medical condition (cancer/genetic characteristics and information), or any protected category prohibited by local, state or federal laws. The BART Human Resources Department will make reasonable efforts in the examination process to accommodate persons with disabilities or for religious reasons. Please advise the Human Resources Department of any special needs in advance of the examination by emailing at least 5 days before your examination date at employment@bart.gov . Qualified veterans may be eligible to obtain additional veteran's credit in the selection process for this recruitment (effective Jan. 1, 2013). To obtain the credit, veterans must attach to the application a DD214 discharge document or proof of disability and complete/submit the Veteran's Preference Application no later than the closing date of the posting. For more information about this credit please go to the Veteran's Preference Policy and Application link at www.bart.gov/jobs . The San Francisco Bay Area Rapid Transit District (BART) prides itself in offering best in class benefits packages to employees of the District. Currently, the following benefits may be available to employees in this job classification. Highlights Medical Coverage (or $350/month if opted out) Dental Coverage Vision Insurance (Basic and Enhanced Plans Available) Retirement Plan through the CA Public Employees’ Retirement System (CalPERS) 2% @ 55 (Classic Members) 2% @ 62 (PEPRA Members) 3% at 50 (Safety Members - Classic) 2.7% @ 57 (Safety Members - PEPRA) Reciprocity available for existing members of many other public retirement systems (see BART website and/or CalPERS website for details) Money Purchase Pension Plan (in-lieu of participating in Social Security tax) 6.65% employer contribution up to annual maximum of $1,868.65 Deferred Compensation & Roth 457 Sick Leave Accruals (12 days per year) Vacation Accruals (3-6 weeks based on time worked w/ the District) Holidays: 9 observed holidays and 5 floating holidays Life Insurance w/ ability to obtain additional coverage Accidental Death and Dismemberment (AD&D) Insurance Survivor Benefits through BART Short-Term Disability Insurance Long-Term Disability Insurance Flexible Spending Accounts: Health and Dependent Care Commuter Benefits Free BART Passes for BART employees and eligible family members. Closing Date/Time: Continuous
Description THIS POSTING MAY CLOSE AT ANY TIME ONCE A SUFFICIENT NUMBER OF APPLICATIONS HAVE BEEN RECEIVED. The Senior Server Engineer works with minimum supervision, typically regarding matters requiring greater technical expertise. This position supports the Denton County server and storage environments. Acts as a mentor and shares knowledge with team members to help develop and improve knowledge, skills, and performance. Serves as a primary resource for problem management and resolution. The Senior Server Engineer is required to provide excellent customer service, resolve problems in a timely manner, communicate effectively, and be a positive contributor to the Denton County Technology Services team. Examples of Duties Handles service request escalations from entry and intermediate-level positions. Acts as a primary resource for problem management and resolution. Manages server and storage projects. Installs, configures, and troubleshoots server and storage hardware and software applications. Provides advanced administration for server and storage applications. Installs, configures, and troubleshoots video surveillance systems. Performs IP telephony configuration, installation, and repair. Manages all aspects of Microsoft identity and access management services. Mentors and trains team members to help develop and improve knowledge, skills, and performance. Researches, evaluates, tests and recommends new technologies beneficial for county employees. Maintains server and network documentation. Maintains an accurate inventory database of county servers and network assets. Provides weekly written report to the team manager. Creates specialized reports as needed. Documents all work and maintains related files and records. Reviews work product of entry and intermediate positions to ensure adherence to policies, department procedures, and best operational and security practices. Supervises, directs, and leads the team in the absence of the team manager. Assigns service requests and/or projects to team members as directed by the team manager. Provides budget estimates and recommendations relating to the team to the team manager. Follows county policies and best practices related to information security; exercises good judgment to protect the confidentiality, integrity, and availability of Denton County computer systems and electronic records; operates as a Denton County cybersecurity champion and promotes a cypersecurity-minded culture; supports compliance with CJIS, HIPAA, and other information security regulations. Displays and reflects the culture, mission, vision, values, and direction of the department. Regular and punctual attendance is required. Performs other related duties as required. Minimum Qualifications High School Diploma or GED and a minimum four years of experience in a related field; or an equivalent combination of education and related experience required. Bachelor's degree in related field preferred. Microsoft Certified Solutions Associate (MCSA) and/or ITIL Certification preferred. Position may require various computer or technical-related certifications. Must not have any Class B misdemeanor or higher convictions or deferred adjudications. Possession of a valid driver's license required. Must obtain a valid Texas driver's license within 90 days of employment. Supplemental Information To ensure proper delivery of emails please add jobs@dentoncounty.gov to your email safe list. Closing Date/Time: Continuous
Apr 10, 2024
Full Time
Description THIS POSTING MAY CLOSE AT ANY TIME ONCE A SUFFICIENT NUMBER OF APPLICATIONS HAVE BEEN RECEIVED. The Senior Server Engineer works with minimum supervision, typically regarding matters requiring greater technical expertise. This position supports the Denton County server and storage environments. Acts as a mentor and shares knowledge with team members to help develop and improve knowledge, skills, and performance. Serves as a primary resource for problem management and resolution. The Senior Server Engineer is required to provide excellent customer service, resolve problems in a timely manner, communicate effectively, and be a positive contributor to the Denton County Technology Services team. Examples of Duties Handles service request escalations from entry and intermediate-level positions. Acts as a primary resource for problem management and resolution. Manages server and storage projects. Installs, configures, and troubleshoots server and storage hardware and software applications. Provides advanced administration for server and storage applications. Installs, configures, and troubleshoots video surveillance systems. Performs IP telephony configuration, installation, and repair. Manages all aspects of Microsoft identity and access management services. Mentors and trains team members to help develop and improve knowledge, skills, and performance. Researches, evaluates, tests and recommends new technologies beneficial for county employees. Maintains server and network documentation. Maintains an accurate inventory database of county servers and network assets. Provides weekly written report to the team manager. Creates specialized reports as needed. Documents all work and maintains related files and records. Reviews work product of entry and intermediate positions to ensure adherence to policies, department procedures, and best operational and security practices. Supervises, directs, and leads the team in the absence of the team manager. Assigns service requests and/or projects to team members as directed by the team manager. Provides budget estimates and recommendations relating to the team to the team manager. Follows county policies and best practices related to information security; exercises good judgment to protect the confidentiality, integrity, and availability of Denton County computer systems and electronic records; operates as a Denton County cybersecurity champion and promotes a cypersecurity-minded culture; supports compliance with CJIS, HIPAA, and other information security regulations. Displays and reflects the culture, mission, vision, values, and direction of the department. Regular and punctual attendance is required. Performs other related duties as required. Minimum Qualifications High School Diploma or GED and a minimum four years of experience in a related field; or an equivalent combination of education and related experience required. Bachelor's degree in related field preferred. Microsoft Certified Solutions Associate (MCSA) and/or ITIL Certification preferred. Position may require various computer or technical-related certifications. Must not have any Class B misdemeanor or higher convictions or deferred adjudications. Possession of a valid driver's license required. Must obtain a valid Texas driver's license within 90 days of employment. Supplemental Information To ensure proper delivery of emails please add jobs@dentoncounty.gov to your email safe list. Closing Date/Time: Continuous
SAN ANTONIO WATER SYSTEM
San Antonio, Texas, United States
Grade 22: Salary starts at $87,893.00 annually. Rate of pay depends on qualifications. Job Description JOB SUMMARY Works for and under the general direction of the Director, Network Security Services. Responsibilities include design and review of security controls, monitoring of internal/external access controls and security safeguards to protect the confidentiality, integrity and availability of information systems assets. This role will be the subject matter expert in the domain of information security as it relates to servers/workstations, networks, web applications, IT processes and regulatory compliance. Evaluates, selects, implements, and monitors administration of information system security tools across enterprise. Assist in developing and implementing policy and control frameworks, and promoting security awareness and compliance throughout the organization. Leads a staff of two or more security engineers. ESSENTIAL FUNCTIONS Researches, designs and advocates new technologies, architectures, and security products that will support business security requirements for the enterprise. Conducts threat and vulnerability risk assessments to determine security requirements and proactively fix security flaws and vulnerabilities. Plays a lead role in the identification, analysis, evaluation, deployment and optimization of security technologies. Maintains oversight of the design, implementation and testing of IT systems to ensure appropriate and effective security controls are built from the start. Works closely with other groups, including System Administrators, Network Engineering, Applications, SCADA/I&C and other information system staff to ensure adequate security solutions are in place for all IT systems and platforms to sufficiently mitigate identified risks and meet business objectives. Leads projects and initiatives to design and verify implementation of various information security controls. Governs security design and architecture during project delivery by enforcing the use of established standards and evolving solutions and patterns. Supports information security leadership team in strategic planning and development. Provides security design, consultancy, and assessment services; and introduces improvements in technical security standards and security implementation patterns and designs. Conducts analysis of security requirements and controls to identify gaps and provides recommendations of industry best practices, trends, and technology products. Detects, investigates and manages recovery efforts from security incidents, and assists with incident response plans. Increases company-wide security awareness and monitors information security related web sites and newsletters to stay up to date on current attacks and trends. Analyzes potential impact of new threats and exploits and communicates risks to relevant business units. Designs technical solutions and coordinates with the staff to ensure timely and accurate implementation. Performs other duties as assigned. DECISION MAKING This position works under limited supervision. This position serves as a technical lead, providing guidance and mentorship to network security engineers. MINIMUM REQUIREMENTS FOR ALL SPECIALTIES Bachelor's Degree in Information Technology, Computer Science or related field of study required. Six years of relevant IT work experience, to include five years in information security field, preferably in an environment certified and compliant with a globally recognized Security Framework / Information Security Management System (NIST SP 800-53, ISO27001, HIPAA, SOX, PCI). At least one professional information security certification required (CCNP-Security, CISSP, CISM, CRISC, and/or SANS GIAC). Valid Class "C" Texas Driver's License. PREFERRED QUALIFICATIONS Master's Degree in Cybersecurity and Information Assurance. CISSP, CISM, & CCNP Certifications. Knowledge of SCADA/ICS security controls and best practices. Knowledge of Linux/Unix and other open source software to include BIND and Nessus. Programming skills in one or more languages (Python, Ruby, Bash, PHP, Perl, Java). Experience with Cisco and Palo Alto enterprise grade products to include: Nexus 7000, 4500, ISR G2, Firewalls, Sourcefire, Web Proxy, TACACS+, DMVPN, ISE, etc. JOB DIMENSIONS Knowledge of network security, security-related systems and applications as well as security protocols and related tools, including tcpdump, Wireshark, Splunk, AccelOps, and Nessus Security Center. Knowledge of Metaspoit, Nessus, digital Forensics tools. Demonstrated ability to identify security requirements and validate implementation of applicable controls into a robust architecture that sufficiently repels most malicious attacks. Regular contact with internal and external customers and contractor representatives involved with LAN/WAN design, network implementation, and network management. PHYSICAL DEMANDS AND WORKING CONDITIONS Working conditions are primarily inside an office environment with travel to various locations on an occasional basis. Physical requirements include occasional lifting/carrying of 70 pounds; visual acuity, speech and hearing; hand and eye coordination and manual dexterity necessary to operate a computer keyboard and basic office equipment. Subject to sitting, standing, reaching, walking, twisting, and kneeling to perform the essential functions. May be required to work hours other than regular schedule such as nights, weekends and holidays. San Antonio Water System values the contributions of all its employees, providing them the best in compensation and benefits. The benefits package is designed to attract and retain a workforce of qualified employees who share a responsibility in providing quality water to 1 million consumers. From an affordable medical and dental plan to life-sustaining retirement and insurance plans, we offer benefits that reward employees for their commitment to a challenging career at SAWS. Employee benefits include the following: Competitive, market-based salaries Performance-based incentives Medical benefits Dental benefits Life insurance Prescription drug program Vision care plan Two retirement plans Deferred compensation plans (457 plan) Disability income Paid leave (vacation, sick, personal) Education assistance program Employee assistance program Flexible, tax-deferred health and dependent care spending accounts Wellness programs On-Site Fitness Facilities Community service opportunities Closing Date/Time: 4/21/2024 11:59 PM Central
Apr 05, 2024
Full Time
Grade 22: Salary starts at $87,893.00 annually. Rate of pay depends on qualifications. Job Description JOB SUMMARY Works for and under the general direction of the Director, Network Security Services. Responsibilities include design and review of security controls, monitoring of internal/external access controls and security safeguards to protect the confidentiality, integrity and availability of information systems assets. This role will be the subject matter expert in the domain of information security as it relates to servers/workstations, networks, web applications, IT processes and regulatory compliance. Evaluates, selects, implements, and monitors administration of information system security tools across enterprise. Assist in developing and implementing policy and control frameworks, and promoting security awareness and compliance throughout the organization. Leads a staff of two or more security engineers. ESSENTIAL FUNCTIONS Researches, designs and advocates new technologies, architectures, and security products that will support business security requirements for the enterprise. Conducts threat and vulnerability risk assessments to determine security requirements and proactively fix security flaws and vulnerabilities. Plays a lead role in the identification, analysis, evaluation, deployment and optimization of security technologies. Maintains oversight of the design, implementation and testing of IT systems to ensure appropriate and effective security controls are built from the start. Works closely with other groups, including System Administrators, Network Engineering, Applications, SCADA/I&C and other information system staff to ensure adequate security solutions are in place for all IT systems and platforms to sufficiently mitigate identified risks and meet business objectives. Leads projects and initiatives to design and verify implementation of various information security controls. Governs security design and architecture during project delivery by enforcing the use of established standards and evolving solutions and patterns. Supports information security leadership team in strategic planning and development. Provides security design, consultancy, and assessment services; and introduces improvements in technical security standards and security implementation patterns and designs. Conducts analysis of security requirements and controls to identify gaps and provides recommendations of industry best practices, trends, and technology products. Detects, investigates and manages recovery efforts from security incidents, and assists with incident response plans. Increases company-wide security awareness and monitors information security related web sites and newsletters to stay up to date on current attacks and trends. Analyzes potential impact of new threats and exploits and communicates risks to relevant business units. Designs technical solutions and coordinates with the staff to ensure timely and accurate implementation. Performs other duties as assigned. DECISION MAKING This position works under limited supervision. This position serves as a technical lead, providing guidance and mentorship to network security engineers. MINIMUM REQUIREMENTS FOR ALL SPECIALTIES Bachelor's Degree in Information Technology, Computer Science or related field of study required. Six years of relevant IT work experience, to include five years in information security field, preferably in an environment certified and compliant with a globally recognized Security Framework / Information Security Management System (NIST SP 800-53, ISO27001, HIPAA, SOX, PCI). At least one professional information security certification required (CCNP-Security, CISSP, CISM, CRISC, and/or SANS GIAC). Valid Class "C" Texas Driver's License. PREFERRED QUALIFICATIONS Master's Degree in Cybersecurity and Information Assurance. CISSP, CISM, & CCNP Certifications. Knowledge of SCADA/ICS security controls and best practices. Knowledge of Linux/Unix and other open source software to include BIND and Nessus. Programming skills in one or more languages (Python, Ruby, Bash, PHP, Perl, Java). Experience with Cisco and Palo Alto enterprise grade products to include: Nexus 7000, 4500, ISR G2, Firewalls, Sourcefire, Web Proxy, TACACS+, DMVPN, ISE, etc. JOB DIMENSIONS Knowledge of network security, security-related systems and applications as well as security protocols and related tools, including tcpdump, Wireshark, Splunk, AccelOps, and Nessus Security Center. Knowledge of Metaspoit, Nessus, digital Forensics tools. Demonstrated ability to identify security requirements and validate implementation of applicable controls into a robust architecture that sufficiently repels most malicious attacks. Regular contact with internal and external customers and contractor representatives involved with LAN/WAN design, network implementation, and network management. PHYSICAL DEMANDS AND WORKING CONDITIONS Working conditions are primarily inside an office environment with travel to various locations on an occasional basis. Physical requirements include occasional lifting/carrying of 70 pounds; visual acuity, speech and hearing; hand and eye coordination and manual dexterity necessary to operate a computer keyboard and basic office equipment. Subject to sitting, standing, reaching, walking, twisting, and kneeling to perform the essential functions. May be required to work hours other than regular schedule such as nights, weekends and holidays. San Antonio Water System values the contributions of all its employees, providing them the best in compensation and benefits. The benefits package is designed to attract and retain a workforce of qualified employees who share a responsibility in providing quality water to 1 million consumers. From an affordable medical and dental plan to life-sustaining retirement and insurance plans, we offer benefits that reward employees for their commitment to a challenging career at SAWS. Employee benefits include the following: Competitive, market-based salaries Performance-based incentives Medical benefits Dental benefits Life insurance Prescription drug program Vision care plan Two retirement plans Deferred compensation plans (457 plan) Disability income Paid leave (vacation, sick, personal) Education assistance program Employee assistance program Flexible, tax-deferred health and dependent care spending accounts Wellness programs On-Site Fitness Facilities Community service opportunities Closing Date/Time: 4/21/2024 11:59 PM Central
City of San Jose
United States, California, San Jose
The City of San José is a place where we use civic technology to help our community thrive. As the 10th largest city in the nation, the City manages a large set of services and assets. The City operates on a budget of $5 billion, with 7,000 employees serving 1+ million residents and 80,000 businesses in the heart of Silicon Valley. Information Technology's (IT) mission: Put powerful tools and information in the hands of people to unleash their brilliance in service to our community. IT enables that mission through business and infrastructure systems, cybersecurity, data management and analysis, productivity and collaboration tools, the San Jose 311 resident experience platform, data equity and privacy programs, and strategic planning. San Jose is powered by truly great people, a robust technology environment, and a strong sense of purpose. We promote work-life integration and a focus on growth to bring out the best in our people. Come join us in making San Jose the most vibrant, equitable, sustainable, and innovative city in America! You can visit the Information Technology Department website to learn more about us. NOTE - The first review of applications will be on Monday, April 22, 2024. Please submit your application by 11:59 p.m. (PST) on Friday, April 19, 2024, if you would like your application to be included in the first review. Candidates who pass the first application review round will be invited to interviews on the week of April 29, 2024. The City of San José is recruiting for an Infrastructure and Operations Support Manager, Emergency Operations Center in the Information Technology Department. As a technical manager, this position will be responsible for overseeing infrastructure service and day-to-day operations for the City's Emergency Operation Center (EOC). The Infrastructure and Operations Support Manager, Emergency Operations Center supports the essential technologies needed to operate the City's EOC in disasters, including the core network infrastructure, computing servers, storage, enterprise applications, collaboration tools, Mobile Device Management (MDM), and Motorola Computer Dispatch workstations. The EOC technologies include a multi-layer redundant/backup network connectivity with a localized data center, servers, and storage. This allows the EOC's technology services available during large-scale emergency events. This position requires strong technical hands-on experience and leadership skills as well as the ability to take initiative and direct others. We are seeking an individual with a willingness to adapt to an ever-changing business as well as an ever-changing technical environment. The ideal candidate must be able to take full ownership of managing and delegating the services of IT infrastructure, business collaboration tools, and City applications to support the EOC and lead projects to completion. Infrastructure operations include identity management, private and public cloud infrastructure, server virtualization, system management, and monitoring, client and server Windows Operating Systems and client applications, etc. Business collaboration tools include Microsoft Office 365 Productivity Suite, Microsoft Teams, SharePoint, related Office 365 Suite offerings, Zoom, etc. City applications include GIS, desktop applications, etc. This position demands a proven ability to resolve complex technical issues with limited resources. A strong leadership mindset, the ability to collaborate well with teams, and a strong civil servant mentality are essential to this position. The Infrastructure and Operations Support Manager for the Emergency Operations Center is a member of the IT Department with a mission to support the EOC. The work plan defines the business requirements with priorities set by the Office of Emergency Management. As a member of the EOC response team, the Infrastructure and Operations Support Manager, Emergency Operations Center will need to be available onsite to support the emergency event. Work hours during an emergency event could be after the City's business hours or on the weekend. Duties may include but are not limited to: Providing technical leadership for the City's enterprise infrastructure which includes: network, servers, hyperconverged infrastructure, desktops and mobile devices, Active Directory, VPN, Federation Service, Public/Private Cloud support, enterprise storage, system management and monitoring, enterprise system backups and restore, as well as Disaster Recovery of EOC IT services. Leading advanced troubleshooting and triage responsibilities for infrastructure issues to ensure service availability to meet service level expectations. Validating and managing system configuration changes to ensure successful system upgrades and configuration changes to the production environment. Developing technical guidelines and governance framework to ensure best practices and security. Triaging, leading, and resolving advanced infrastructure issues and service outages. Leading project implementation to completion. Coordinating communication and IT service needs with Public Safety and departments. Managing asset life cycle, including tracking, replacement, and surplus of equipment. Managing infrastructure maintenance and support contracts. Providing technical leadership and IT training to EOC staff and City employees Please note that the Infrastructure and Operations Support Manager, Emergency Operation Center position is currently eligible for a hybrid telework schedule. The schedule for working remotely and onsite is subject to change. Salary Information: The final candidate's qualifications and experience shall determine the actual salary. In addition to the starting salary, employees in the Enterprise Supervising Technology Analyst (ESTA) classification shall also receive an approximate five percent (5%) ongoing non-pensionable compensation pay. Salary Range (including the 5% NPWI): $136,237.92 - $ 166,005.84 The ESTA classification is represented by the City Association of Management Personnel (CAMP) bargaining unit. Education and Experience: A Bachelor's Degree from an accredited college or university in a relevant field, AND four (4) years of progressively responsible professional/journey level experience, of which at least two (2) years of experience include lead technical work in development, implementation and maintenance of electronic business systems/solutions, or application development and/or support. Acceptable Substitution: Additional years of increasingly responsible directly related work experience may be substituted for education on a year-for-year basis up to two (2) years. Completion of a Master's Degree in a relevant field from an accredited college or university may be substituted for one (1) year of the required two (2) years of experience which include lead technical work in development, implementation and maintenance of electronic business systems/solutions or application development and/or support. Required Licensing (such as driver's license, certifications, etc.): Possession of a valid State of California driver's license may be required. Certification as a Microsoft Certified Systems Engineer (MCSE) or equivalent certification from a professional organization acceptable to the City of San Jose may be required. Passing a San Jose Police Department background check and FEMA training and certification are conditions of employment. Competencies The ideal candidate will possess the following competencies, as demonstra
ted in past and current employment history. Desirable competencies for this position include: Job Expertise - Demonstrates knowledge of and experience with applicable professional/technical principles and practices including Enterprise Architecture, technical project management, application lifecycle management, and applicable industry applications/systems platform tools. Breadth of expertise to enable managing major technology services, programs, and products across multiple departmental technology environments and ensuring cross coordination between departments, including adherence with Citywide and departmental procedures/policies and federal and state rules and regulations. The ideal candidate will also possess a combination of the following knowledge and experience: Strong technical hands-on experience in designing, managing, and troubleshooting current technologies such as: Network (Ruckus) L2/L3 switches; Hyperconverged Infrastructure (Nutanix); Private Virtual Infrastructure and NSX (VMWare); Azure Public Cloud Infrastructure; Configuration Management (SCCM); Identity Management (Active Directory, Federation Services, Azure Active Directory); Windows OS (Desktop Windows 10 and 11, Server OS 2016 and above); Enterprise Backup and Restore, Disaster Recovery; Microsoft Office 365 Productivity Suite and Collaboration Tools; Mobile Device Management (Microsoft Intune, VMware Workspace One); and/or Powershell scripting Experience in leading Incident Response and Change Management. Experience creating and updating technical documentation. Understand infrastructure operations, security best practices, and Disaster and Recovery. Ability to train end users on the use of computers and related applications Decision Making - Identifies and understands issues, problems, and opportunities; uses effective approaches for choosing a course of action or developing appropriate solutions. Analytical Thinking - Approaching a problem or situation by using a logical, systematic, sequential approach. Problem Solving - Approaches a situation or problem by defining the problem or issue; determines the significance of problem; collects information; uses logic and intuition to arrive at decisions or solutions to problems that achieve the desired outcome. Leadership - Leads by example; demonstrates high ethical standards; remains visible and approachable and interacts with others on a regular basis; promotes a cooperative work environment, allowing others to learn from mistakes; provides motivational supports and direction. Teamwork & Interpersonal Skills - Develops effective relationships with co-workers and supervisors by helping others accomplish tasks and using collaboration and conflict resolution skills. Project Management - Ensures support for projects and implements agency goals and strategic objectives. Communication Skills - Effectively conveys information and expresses thoughts and facts clearly, orally and in writing; demonstrates effective use of listening skills; displays openness to other people's ideas and thoughts. Selection Process The selection process will consist of an evaluation of the applicant's training and experience based on the application and responses to all the job-specific questions . You must answer all questions to be considered, or your application may be deemed incomplete and withheld from further consideration. Only those candidates whose backgrounds best match the position will be invited to proceed in the selection process. Additional phases of the selection process will consist of one or more interviews, one of which may include a practical and/or writing exercise. If you have questions about the duties of these positions, the selection, or the hiring processes, please contact Tram Nguyen at tramt.nguyen@sanjoseca.gov .
Apr 05, 2024
Full Time
The City of San José is a place where we use civic technology to help our community thrive. As the 10th largest city in the nation, the City manages a large set of services and assets. The City operates on a budget of $5 billion, with 7,000 employees serving 1+ million residents and 80,000 businesses in the heart of Silicon Valley. Information Technology's (IT) mission: Put powerful tools and information in the hands of people to unleash their brilliance in service to our community. IT enables that mission through business and infrastructure systems, cybersecurity, data management and analysis, productivity and collaboration tools, the San Jose 311 resident experience platform, data equity and privacy programs, and strategic planning. San Jose is powered by truly great people, a robust technology environment, and a strong sense of purpose. We promote work-life integration and a focus on growth to bring out the best in our people. Come join us in making San Jose the most vibrant, equitable, sustainable, and innovative city in America! You can visit the Information Technology Department website to learn more about us. NOTE - The first review of applications will be on Monday, April 22, 2024. Please submit your application by 11:59 p.m. (PST) on Friday, April 19, 2024, if you would like your application to be included in the first review. Candidates who pass the first application review round will be invited to interviews on the week of April 29, 2024. The City of San José is recruiting for an Infrastructure and Operations Support Manager, Emergency Operations Center in the Information Technology Department. As a technical manager, this position will be responsible for overseeing infrastructure service and day-to-day operations for the City's Emergency Operation Center (EOC). The Infrastructure and Operations Support Manager, Emergency Operations Center supports the essential technologies needed to operate the City's EOC in disasters, including the core network infrastructure, computing servers, storage, enterprise applications, collaboration tools, Mobile Device Management (MDM), and Motorola Computer Dispatch workstations. The EOC technologies include a multi-layer redundant/backup network connectivity with a localized data center, servers, and storage. This allows the EOC's technology services available during large-scale emergency events. This position requires strong technical hands-on experience and leadership skills as well as the ability to take initiative and direct others. We are seeking an individual with a willingness to adapt to an ever-changing business as well as an ever-changing technical environment. The ideal candidate must be able to take full ownership of managing and delegating the services of IT infrastructure, business collaboration tools, and City applications to support the EOC and lead projects to completion. Infrastructure operations include identity management, private and public cloud infrastructure, server virtualization, system management, and monitoring, client and server Windows Operating Systems and client applications, etc. Business collaboration tools include Microsoft Office 365 Productivity Suite, Microsoft Teams, SharePoint, related Office 365 Suite offerings, Zoom, etc. City applications include GIS, desktop applications, etc. This position demands a proven ability to resolve complex technical issues with limited resources. A strong leadership mindset, the ability to collaborate well with teams, and a strong civil servant mentality are essential to this position. The Infrastructure and Operations Support Manager for the Emergency Operations Center is a member of the IT Department with a mission to support the EOC. The work plan defines the business requirements with priorities set by the Office of Emergency Management. As a member of the EOC response team, the Infrastructure and Operations Support Manager, Emergency Operations Center will need to be available onsite to support the emergency event. Work hours during an emergency event could be after the City's business hours or on the weekend. Duties may include but are not limited to: Providing technical leadership for the City's enterprise infrastructure which includes: network, servers, hyperconverged infrastructure, desktops and mobile devices, Active Directory, VPN, Federation Service, Public/Private Cloud support, enterprise storage, system management and monitoring, enterprise system backups and restore, as well as Disaster Recovery of EOC IT services. Leading advanced troubleshooting and triage responsibilities for infrastructure issues to ensure service availability to meet service level expectations. Validating and managing system configuration changes to ensure successful system upgrades and configuration changes to the production environment. Developing technical guidelines and governance framework to ensure best practices and security. Triaging, leading, and resolving advanced infrastructure issues and service outages. Leading project implementation to completion. Coordinating communication and IT service needs with Public Safety and departments. Managing asset life cycle, including tracking, replacement, and surplus of equipment. Managing infrastructure maintenance and support contracts. Providing technical leadership and IT training to EOC staff and City employees Please note that the Infrastructure and Operations Support Manager, Emergency Operation Center position is currently eligible for a hybrid telework schedule. The schedule for working remotely and onsite is subject to change. Salary Information: The final candidate's qualifications and experience shall determine the actual salary. In addition to the starting salary, employees in the Enterprise Supervising Technology Analyst (ESTA) classification shall also receive an approximate five percent (5%) ongoing non-pensionable compensation pay. Salary Range (including the 5% NPWI): $136,237.92 - $ 166,005.84 The ESTA classification is represented by the City Association of Management Personnel (CAMP) bargaining unit. Education and Experience: A Bachelor's Degree from an accredited college or university in a relevant field, AND four (4) years of progressively responsible professional/journey level experience, of which at least two (2) years of experience include lead technical work in development, implementation and maintenance of electronic business systems/solutions, or application development and/or support. Acceptable Substitution: Additional years of increasingly responsible directly related work experience may be substituted for education on a year-for-year basis up to two (2) years. Completion of a Master's Degree in a relevant field from an accredited college or university may be substituted for one (1) year of the required two (2) years of experience which include lead technical work in development, implementation and maintenance of electronic business systems/solutions or application development and/or support. Required Licensing (such as driver's license, certifications, etc.): Possession of a valid State of California driver's license may be required. Certification as a Microsoft Certified Systems Engineer (MCSE) or equivalent certification from a professional organization acceptable to the City of San Jose may be required. Passing a San Jose Police Department background check and FEMA training and certification are conditions of employment. Competencies The ideal candidate will possess the following competencies, as demonstra
ted in past and current employment history. Desirable competencies for this position include: Job Expertise - Demonstrates knowledge of and experience with applicable professional/technical principles and practices including Enterprise Architecture, technical project management, application lifecycle management, and applicable industry applications/systems platform tools. Breadth of expertise to enable managing major technology services, programs, and products across multiple departmental technology environments and ensuring cross coordination between departments, including adherence with Citywide and departmental procedures/policies and federal and state rules and regulations. The ideal candidate will also possess a combination of the following knowledge and experience: Strong technical hands-on experience in designing, managing, and troubleshooting current technologies such as: Network (Ruckus) L2/L3 switches; Hyperconverged Infrastructure (Nutanix); Private Virtual Infrastructure and NSX (VMWare); Azure Public Cloud Infrastructure; Configuration Management (SCCM); Identity Management (Active Directory, Federation Services, Azure Active Directory); Windows OS (Desktop Windows 10 and 11, Server OS 2016 and above); Enterprise Backup and Restore, Disaster Recovery; Microsoft Office 365 Productivity Suite and Collaboration Tools; Mobile Device Management (Microsoft Intune, VMware Workspace One); and/or Powershell scripting Experience in leading Incident Response and Change Management. Experience creating and updating technical documentation. Understand infrastructure operations, security best practices, and Disaster and Recovery. Ability to train end users on the use of computers and related applications Decision Making - Identifies and understands issues, problems, and opportunities; uses effective approaches for choosing a course of action or developing appropriate solutions. Analytical Thinking - Approaching a problem or situation by using a logical, systematic, sequential approach. Problem Solving - Approaches a situation or problem by defining the problem or issue; determines the significance of problem; collects information; uses logic and intuition to arrive at decisions or solutions to problems that achieve the desired outcome. Leadership - Leads by example; demonstrates high ethical standards; remains visible and approachable and interacts with others on a regular basis; promotes a cooperative work environment, allowing others to learn from mistakes; provides motivational supports and direction. Teamwork & Interpersonal Skills - Develops effective relationships with co-workers and supervisors by helping others accomplish tasks and using collaboration and conflict resolution skills. Project Management - Ensures support for projects and implements agency goals and strategic objectives. Communication Skills - Effectively conveys information and expresses thoughts and facts clearly, orally and in writing; demonstrates effective use of listening skills; displays openness to other people's ideas and thoughts. Selection Process The selection process will consist of an evaluation of the applicant's training and experience based on the application and responses to all the job-specific questions . You must answer all questions to be considered, or your application may be deemed incomplete and withheld from further consideration. Only those candidates whose backgrounds best match the position will be invited to proceed in the selection process. Additional phases of the selection process will consist of one or more interviews, one of which may include a practical and/or writing exercise. If you have questions about the duties of these positions, the selection, or the hiring processes, please contact Tram Nguyen at tramt.nguyen@sanjoseca.gov .