LOS ANGELES COUNTY
Los Angeles, California, United States
Position/Program Information EXAM NUMBER Q2611A-R APPLICATION FILING PERIOD We will begin receiving applications on Mon da y, April 22, 2024, at 8:00 a.m. (PT). This examination will remain open until the needs of the service are met and is subject to closure without prior notice. TYPE OF RECRUITMENT Open Competitive Job Opportunity SPECIAL SALARY INFORMATION Management Appraisal and Performance Plan (MAPP): This position is subject to the provisions of the County's Management Appraisal of Performance Plan (MAPP) and is compensated at MAPP range S10. Initial salary placement and subsequent salary adjustments will be made in accordance with MAPP guidelines and regulations. CHECK OUT OUR OUTSTANDING BENEFITS! Los Angeles County offers one of the strongest public-sector benefits packages in the nation. Click here to see a list of employee benefits. WHO WE ARE: LA County Library is one of the largest and most innovative public library systems in the United States. It offers free public resources, including books, music, multimedia materials, computers and internet access and educational and recreational services to 3.4 million residents through its 85 libraries and mobile fleet of vehicles. LA County library is dedicated to reducing barriers and increasing equity and access to public services for all. WHO WE ARE LOOKING FOR: LA County Library seeks to attract and retain a high performing and diverse workforce in which employees’ differences are respected and valued to better meet the varying needs of the diverse customers we serve. We are looking for multi-taskers who are able to work independently and as part of a team. Our ideal candidate is someone with an analytical mind and excellent communication skills, who will lead the information security function for LA County Library, as well as develop and deliver a comprehensive departmental information security strategy to optimize the department’s security posture. Essential Job Functions As a Departmental Information Security Officer I, your responsibilities will include, but are not limited to the following: Developing and maintaining the departmental Information Security Program including policies, standards, and procedures; cybersecurity control evaluation, selection, and implementation; and architectures, products and services, pursuant to County Chief Information Office architectures, standards and guidelines, and Board polices and applicable laws. Collaborating with departmental business units to conduct comprehensive information security risk assessments, and participating in regular reviews of security standards, governance, data compliance and privacy management, audit, risk assessments, physical and logical access reviews, risk assessments and data destruction solutions. Conducting vulnerability assessments to identify existing or potential weaknesses in systems and processes that could lead to compromises; facilitating remediation of identified vulnerabilities within processes, systems and applications and coordinating investigations with relevant authorities, including the Countywide Chief Privacy Officer (CPO), Countywide Cybersecurity Incident Response Committee (CCIRC) , Auditor-Controller, and law enforcement agencies as necessary. Leading and conducting routine assessments and periodic inspections of departmental information technology systems to ensure the effectiveness of security controls and recommending appropriate corrective measures to eliminate or mitigate system compromises. Actively participating in federal, State and local audits and reviews for the department. Coordinating the department's information technology-related aspects of annual or biennial Internal Control Certification Program (ICCP) audits. Providing guidance to department management and implementing necessary policies, standards, or controls to address department-specific regulatory and contractual factors. Collaborating with departmental stakeholders to align security posture with business objectives. Collaborating with application and software developers to ensure that production applications comply with established information security policies, standards and business requirements. Facilitating the development and distribution of information security and privacy awareness training and education for departmental employees in cooperation with the Chief Information Security Officer (CISO) and CPO. Promotes Countywide initiatives pertaining to information security and privacy education and awareness programs. Representing the department on County cybersecurity governance bodies, committees and workgroups. Participating in the development, review, and recommendation of Countywide information technology security policies, technical and operational standards, procedures and guidelines. Identifying and recommending industry best practices for cybersecurity, fostering communication and collaboration among County departments on countywide and departmental cybersecurity issues. Serving as a member of the CCIRC. Establishing and leading a Departmental Cybersecurity Emergency Response Team (DCERT). Developing appropriate security incident notification procedures for departmental management, CISO, CPO and CCIRC. Participating in Countywide activities and providing recommendations of software products and controls related to cybersecurity. Collaborating with responsible County entities in the development and implementation of Countywide business continuity and disaster recovery plans to ensure appropriate cybersecurity measures. Liaising between the department and the CPO regarding electronic data and physical records, privacy incident and breach response, privacy audits, and other initiatives pertaining to the County’s privacy program components and related policies. Ensuring proper departmental inventories of information technology assets and software licenses i n collaboration with information technology operations. Reviewing departmental information technology projects and information technology contrac t terms, in conjunction with County Counsel, to ensure information security sufficiency. Participating in the review of information technology facility acquisition, construction, and remodeling projects to ensure adherence to County information security policies, standards, guidelines and industry best practices as needed. Supervising and/or managing subordinate security officers, supervisors and technical staff as needed. Serving as a witness or subject-matter expert (SME) for the department in legal matters concerning cybersecurity as needed. Requirements SELECTION REQUIREMENTS: Graduation from an accredited college or university with a bachelor's* degree or higher in Computer Science, Information Security, Information Assurance, Business Administration, or a related discipline - AND - two (2) years of recent** progressively responsible*** experience in a combination of risk management, information security and cybersecurity roles - AND - two (2) years of recent** experience in Information Technology project management. LICENSE REQUIREMENTS: A valid California Class C Driver's License or the ability to utilize an alternative method of transportation when needed to carry out job-related essential functions. PHYSICAL EXPECTATIONS: 2 - Light: This class includes administrative and clerical positions requiring light physical effort that may include occasional light lifting to a 10-pound limit and some bending, stooping, or squatting. Considerable ambulation may be involved. SPECIAL REQUIREMENT INFORMATION: * In order to receive credit for your education, you must include a legible copy of the official diploma, official transcripts, or official letter from the accredited institution which shows the area of specialization with your application at the time of filing or within seven (7) calendar days from application submission. Note: Foreign studies must be evaluated by an academic credential evaluation agency and deemed to be equivalent to degrees from the United States. (See Accreditation Information under Employment Information). ** Recent experience is defined as experience within the last five (5) years. *** Progressively responsible experience is defined as a significant increase in the complexity and scope of responsibility in IT and systems functions over time. ENDORSEMENT OF COUNTY QUALIFICATIONS: County employees who wish to meet the requirements using out-of-class experience must provide official documentation such as additional responsibility bonus, out-of-class bonus, temporary assignment bonus, or reclassification study from CEO Classification with your application at the time of filing or within seven (7) calendar days from application submission. Employees do not need to submit such verification if they hold or have held a position at an appropriate level. Out-of-class duties should be accurately described in the application work history, and questionable experience will be verified through the departmental HR Manager when necessary. WITHHOLD INFORMATION: No withholds will be allowed for this examination. Required education and experience must be fully met and indicated on the application by the last day of filing. Additional Information OUR ASSESSMENT PROCESS: This examination will consist of TWO (2) parts: Part I: Multiple-choice and/or simulation assessment(s), weighted 45 % , assessing: Deductive Reasoning Professional Potential Achievement Working Relationships Analyzing Information Learning Quickly Generating New Ideas Using Time Efficiently Working to High Quality Standards Adapting to Change Coping with Uncertainty Willingness to Learn Responsibility Candidates must achieve a passing score of 70% or higher on Part I to proceed to Part II of this examination. Part II: Multiple-choice and/or simulation assessment(s), weighted 55 % , assessing: Cyber Risk covering knowledge of Cyber Risk Management, System and Application Security, Network Security, and Security Management; Cloud Computing covering knowledge of Cloud Computing Concepts, Cloud Service Models, Virtualization, and Private Clouds; Systems Analysis covering knowledge of Fundamental Systems Analysis Skills, Implementation and Support, Systems Analysis Tasks, Systems Design Tasks, and technical methods for specifying requirements. MULTIPLE-CHOICE AND/OR SIMULATION ASSESSMENT(S) ARE NOT REVIEWABLE BY CANDIDATES PER CIVIL SERVICE RULE 7.19. Candidates must meet the Selection Requirements and achieve a passing score of 70% or higher on each weighted part of the examination in order to be placed on the Eligible List. TRANSFER OF TEST COMPONENTS: Applicants who have taken identical components recently for other exams may have their scores automatically transferred to this examination. This examination contains test components that may be used in the future for new examinations and your test scores may be transferred. Please add the below email addresses to your email address book and list of approved senders to prevent email notifications from being filtered as spam/junk/clutter mail. JHines@hr.lacounty.gov info@governmentjobs.com talentcentral@shl.com donot-reply@amcatmail.com noreply@proctoru.com TEST PREPARATION: Study guides and other test preparation resources are available to help candidates prepare for employment tests. While the guides will help in preparing for the test, we advise you to review all related materials that you deem necessary. An interactive, Online Test Preparation System for taking practice tests may be accessed on the Department of Human Resources website at http://hr.lacounty.gov/ . Please click on "Find a Job" and then "Job Search Toolkit." Test preparation information is located under the "Employment Test Assistance" section. Additional online practice tests are available at https://www.shldirect.com/en-us/practice-tests / . Please note that these resources are intended to provide general information about the types of tests and assessments used by the County of Los Angeles. These resources do not contain details of the exam nor the specific questions you will be asked to answer during the test administration. The exam content section describes the areas assessed by the test and you are invited to study and review whatever material you believe will help you to prepare. Note: All notifications, including invitation notices, will be sent electronically to the email address provided on the application. Test scores cannot be given over the telephone. ELIGIBILITY INFORMATION: The names of candidates receiving a passing score in the examination will be placed on the eligible list for a period of twelve (12) months. VACANCY INFORMATION: The resulting eligible list will be used to fill a vacancy within the LA County Library. AVAILABLE SHIFT: Any HOW TO APPLY: Applications must be filed online only. We will begin receiving applications on Monday, April 22, 2024, at 8:00 a.m. (PT) . All application must be received BEFORE 5:00 p.m., (PT) on the last day of filing. Applications submitted by U.S. mail, fax, or in person will not be accepted. Apply online by clicking on the green " Apply " button at the top right of this posting. Plan to submit your online application well in advance of the 5:00 p.m. (PT) deadline as you may be required to verify your email address. This only needs to be done once per email address, and if you already have a job seeker account on governmentjobs.com/careers/lacounty , you can verify at any time by logging in and following the prompts. This is to enhance the security of your online application and to ensure you do not enter an incorrect email address. Fill out your application completely. The acceptance of your application depends on whether you have clearly shown that you meet th e Selection Requirements as listed on this job posting. Provide any relevant job experience in the spaces provided so we can evaluate your qualifications for the job. For each job held, give the name and address of your employer, your job title, beginning and ending dates, number of hours worked per week, and description of work performed. If your application is incomplete, it will be rejected. IMPORTANT: Please note that all information included in the application materials is subject to verification at any point during the examination and hiring process, including after an appointment has been made. Falsification of any information may result in disqualification or rescission of appointment . Utilizing verbiage from Class Specification and Selection Requirements serving as your description of duties will not be sufficient to demonstrate that you meet the requirements. Doing so may result in an incomplete application and you may be disqualified. ________________________________________________________________________ ANTI-RACISM, DIVERSITY, AND INCLUSION (ARDI): The County of Los Angeles recognizes and affirms that all people are created equal and are entitled to all rights afforded by the Constitution of the United States. The Department of Human Resources is committed to promoting Anti-racism, Diversity, and Inclusion efforts to address the inequalities and disparities amongst race. We support the ARDI Strategic Plan and its goals by improving equality, diversity, and inclusion in recruitment, selection, and employment practices. SOCIAL SECURITY NUMBER: Please include your Social Security Number for record control purposes. Federal law requires that all employed persons have a Social Security Number. NO SHARING OF USER ID AND PASSWORD: All applicants must file their application online using their own user ID and password. Using a family member's or friend's user ID and password may erase a candidate's original application record. COMPUTER AND INTERNET ACCESS AT PUBLIC LIBRARIES: For candidates who may not have regular access to a computer or the internet, applications can be completed on computers at public libraries throughout Los Angeles County. Refer to their website for updated information at Library Locator - LA County Library . TESTING ACCOMMODATION: If you require an accommodation to fairly compete in any part of the assessment process, you will be given the opportunity to make a request when completing your application. Please note, you may be required to submit documentation from a qualified medical provider or other qualified professional to support your request for a testing accommodation. Testing Accommodations Coordinator: TestingAccommodations@hr.lacounty.gov Teletype Phone: (800) 735-2929 California Relay Services Phone: (800) 735-2922 Have any questions about anything listed above? Contact us: Department Contact Name: Jasmine Hines Department Contact Phone: (213) 738-2008 Department Contact Email: jhines@hr.lacounty.gov Exam Number: Q2611A-R For detailed information, please click here
Position/Program Information EXAM NUMBER Q2611A-R APPLICATION FILING PERIOD We will begin receiving applications on Mon da y, April 22, 2024, at 8:00 a.m. (PT). This examination will remain open until the needs of the service are met and is subject to closure without prior notice. TYPE OF RECRUITMENT Open Competitive Job Opportunity SPECIAL SALARY INFORMATION Management Appraisal and Performance Plan (MAPP): This position is subject to the provisions of the County's Management Appraisal of Performance Plan (MAPP) and is compensated at MAPP range S10. Initial salary placement and subsequent salary adjustments will be made in accordance with MAPP guidelines and regulations. CHECK OUT OUR OUTSTANDING BENEFITS! Los Angeles County offers one of the strongest public-sector benefits packages in the nation. Click here to see a list of employee benefits. WHO WE ARE: LA County Library is one of the largest and most innovative public library systems in the United States. It offers free public resources, including books, music, multimedia materials, computers and internet access and educational and recreational services to 3.4 million residents through its 85 libraries and mobile fleet of vehicles. LA County library is dedicated to reducing barriers and increasing equity and access to public services for all. WHO WE ARE LOOKING FOR: LA County Library seeks to attract and retain a high performing and diverse workforce in which employees’ differences are respected and valued to better meet the varying needs of the diverse customers we serve. We are looking for multi-taskers who are able to work independently and as part of a team. Our ideal candidate is someone with an analytical mind and excellent communication skills, who will lead the information security function for LA County Library, as well as develop and deliver a comprehensive departmental information security strategy to optimize the department’s security posture. Essential Job Functions As a Departmental Information Security Officer I, your responsibilities will include, but are not limited to the following: Developing and maintaining the departmental Information Security Program including policies, standards, and procedures; cybersecurity control evaluation, selection, and implementation; and architectures, products and services, pursuant to County Chief Information Office architectures, standards and guidelines, and Board polices and applicable laws. Collaborating with departmental business units to conduct comprehensive information security risk assessments, and participating in regular reviews of security standards, governance, data compliance and privacy management, audit, risk assessments, physical and logical access reviews, risk assessments and data destruction solutions. Conducting vulnerability assessments to identify existing or potential weaknesses in systems and processes that could lead to compromises; facilitating remediation of identified vulnerabilities within processes, systems and applications and coordinating investigations with relevant authorities, including the Countywide Chief Privacy Officer (CPO), Countywide Cybersecurity Incident Response Committee (CCIRC) , Auditor-Controller, and law enforcement agencies as necessary. Leading and conducting routine assessments and periodic inspections of departmental information technology systems to ensure the effectiveness of security controls and recommending appropriate corrective measures to eliminate or mitigate system compromises. Actively participating in federal, State and local audits and reviews for the department. Coordinating the department's information technology-related aspects of annual or biennial Internal Control Certification Program (ICCP) audits. Providing guidance to department management and implementing necessary policies, standards, or controls to address department-specific regulatory and contractual factors. Collaborating with departmental stakeholders to align security posture with business objectives. Collaborating with application and software developers to ensure that production applications comply with established information security policies, standards and business requirements. Facilitating the development and distribution of information security and privacy awareness training and education for departmental employees in cooperation with the Chief Information Security Officer (CISO) and CPO. Promotes Countywide initiatives pertaining to information security and privacy education and awareness programs. Representing the department on County cybersecurity governance bodies, committees and workgroups. Participating in the development, review, and recommendation of Countywide information technology security policies, technical and operational standards, procedures and guidelines. Identifying and recommending industry best practices for cybersecurity, fostering communication and collaboration among County departments on countywide and departmental cybersecurity issues. Serving as a member of the CCIRC. Establishing and leading a Departmental Cybersecurity Emergency Response Team (DCERT). Developing appropriate security incident notification procedures for departmental management, CISO, CPO and CCIRC. Participating in Countywide activities and providing recommendations of software products and controls related to cybersecurity. Collaborating with responsible County entities in the development and implementation of Countywide business continuity and disaster recovery plans to ensure appropriate cybersecurity measures. Liaising between the department and the CPO regarding electronic data and physical records, privacy incident and breach response, privacy audits, and other initiatives pertaining to the County’s privacy program components and related policies. Ensuring proper departmental inventories of information technology assets and software licenses i n collaboration with information technology operations. Reviewing departmental information technology projects and information technology contrac t terms, in conjunction with County Counsel, to ensure information security sufficiency. Participating in the review of information technology facility acquisition, construction, and remodeling projects to ensure adherence to County information security policies, standards, guidelines and industry best practices as needed. Supervising and/or managing subordinate security officers, supervisors and technical staff as needed. Serving as a witness or subject-matter expert (SME) for the department in legal matters concerning cybersecurity as needed. Requirements SELECTION REQUIREMENTS: Graduation from an accredited college or university with a bachelor's* degree or higher in Computer Science, Information Security, Information Assurance, Business Administration, or a related discipline - AND - two (2) years of recent** progressively responsible*** experience in a combination of risk management, information security and cybersecurity roles - AND - two (2) years of recent** experience in Information Technology project management. LICENSE REQUIREMENTS: A valid California Class C Driver's License or the ability to utilize an alternative method of transportation when needed to carry out job-related essential functions. PHYSICAL EXPECTATIONS: 2 - Light: This class includes administrative and clerical positions requiring light physical effort that may include occasional light lifting to a 10-pound limit and some bending, stooping, or squatting. Considerable ambulation may be involved. SPECIAL REQUIREMENT INFORMATION: * In order to receive credit for your education, you must include a legible copy of the official diploma, official transcripts, or official letter from the accredited institution which shows the area of specialization with your application at the time of filing or within seven (7) calendar days from application submission. Note: Foreign studies must be evaluated by an academic credential evaluation agency and deemed to be equivalent to degrees from the United States. (See Accreditation Information under Employment Information). ** Recent experience is defined as experience within the last five (5) years. *** Progressively responsible experience is defined as a significant increase in the complexity and scope of responsibility in IT and systems functions over time. ENDORSEMENT OF COUNTY QUALIFICATIONS: County employees who wish to meet the requirements using out-of-class experience must provide official documentation such as additional responsibility bonus, out-of-class bonus, temporary assignment bonus, or reclassification study from CEO Classification with your application at the time of filing or within seven (7) calendar days from application submission. Employees do not need to submit such verification if they hold or have held a position at an appropriate level. Out-of-class duties should be accurately described in the application work history, and questionable experience will be verified through the departmental HR Manager when necessary. WITHHOLD INFORMATION: No withholds will be allowed for this examination. Required education and experience must be fully met and indicated on the application by the last day of filing. Additional Information OUR ASSESSMENT PROCESS: This examination will consist of TWO (2) parts: Part I: Multiple-choice and/or simulation assessment(s), weighted 45 % , assessing: Deductive Reasoning Professional Potential Achievement Working Relationships Analyzing Information Learning Quickly Generating New Ideas Using Time Efficiently Working to High Quality Standards Adapting to Change Coping with Uncertainty Willingness to Learn Responsibility Candidates must achieve a passing score of 70% or higher on Part I to proceed to Part II of this examination. Part II: Multiple-choice and/or simulation assessment(s), weighted 55 % , assessing: Cyber Risk covering knowledge of Cyber Risk Management, System and Application Security, Network Security, and Security Management; Cloud Computing covering knowledge of Cloud Computing Concepts, Cloud Service Models, Virtualization, and Private Clouds; Systems Analysis covering knowledge of Fundamental Systems Analysis Skills, Implementation and Support, Systems Analysis Tasks, Systems Design Tasks, and technical methods for specifying requirements. MULTIPLE-CHOICE AND/OR SIMULATION ASSESSMENT(S) ARE NOT REVIEWABLE BY CANDIDATES PER CIVIL SERVICE RULE 7.19. Candidates must meet the Selection Requirements and achieve a passing score of 70% or higher on each weighted part of the examination in order to be placed on the Eligible List. TRANSFER OF TEST COMPONENTS: Applicants who have taken identical components recently for other exams may have their scores automatically transferred to this examination. This examination contains test components that may be used in the future for new examinations and your test scores may be transferred. Please add the below email addresses to your email address book and list of approved senders to prevent email notifications from being filtered as spam/junk/clutter mail. JHines@hr.lacounty.gov info@governmentjobs.com talentcentral@shl.com donot-reply@amcatmail.com noreply@proctoru.com TEST PREPARATION: Study guides and other test preparation resources are available to help candidates prepare for employment tests. While the guides will help in preparing for the test, we advise you to review all related materials that you deem necessary. An interactive, Online Test Preparation System for taking practice tests may be accessed on the Department of Human Resources website at http://hr.lacounty.gov/ . Please click on "Find a Job" and then "Job Search Toolkit." Test preparation information is located under the "Employment Test Assistance" section. Additional online practice tests are available at https://www.shldirect.com/en-us/practice-tests / . Please note that these resources are intended to provide general information about the types of tests and assessments used by the County of Los Angeles. These resources do not contain details of the exam nor the specific questions you will be asked to answer during the test administration. The exam content section describes the areas assessed by the test and you are invited to study and review whatever material you believe will help you to prepare. Note: All notifications, including invitation notices, will be sent electronically to the email address provided on the application. Test scores cannot be given over the telephone. ELIGIBILITY INFORMATION: The names of candidates receiving a passing score in the examination will be placed on the eligible list for a period of twelve (12) months. VACANCY INFORMATION: The resulting eligible list will be used to fill a vacancy within the LA County Library. AVAILABLE SHIFT: Any HOW TO APPLY: Applications must be filed online only. We will begin receiving applications on Monday, April 22, 2024, at 8:00 a.m. (PT) . All application must be received BEFORE 5:00 p.m., (PT) on the last day of filing. Applications submitted by U.S. mail, fax, or in person will not be accepted. Apply online by clicking on the green " Apply " button at the top right of this posting. Plan to submit your online application well in advance of the 5:00 p.m. (PT) deadline as you may be required to verify your email address. This only needs to be done once per email address, and if you already have a job seeker account on governmentjobs.com/careers/lacounty , you can verify at any time by logging in and following the prompts. This is to enhance the security of your online application and to ensure you do not enter an incorrect email address. Fill out your application completely. The acceptance of your application depends on whether you have clearly shown that you meet th e Selection Requirements as listed on this job posting. Provide any relevant job experience in the spaces provided so we can evaluate your qualifications for the job. For each job held, give the name and address of your employer, your job title, beginning and ending dates, number of hours worked per week, and description of work performed. If your application is incomplete, it will be rejected. IMPORTANT: Please note that all information included in the application materials is subject to verification at any point during the examination and hiring process, including after an appointment has been made. Falsification of any information may result in disqualification or rescission of appointment . Utilizing verbiage from Class Specification and Selection Requirements serving as your description of duties will not be sufficient to demonstrate that you meet the requirements. Doing so may result in an incomplete application and you may be disqualified. ________________________________________________________________________ ANTI-RACISM, DIVERSITY, AND INCLUSION (ARDI): The County of Los Angeles recognizes and affirms that all people are created equal and are entitled to all rights afforded by the Constitution of the United States. The Department of Human Resources is committed to promoting Anti-racism, Diversity, and Inclusion efforts to address the inequalities and disparities amongst race. We support the ARDI Strategic Plan and its goals by improving equality, diversity, and inclusion in recruitment, selection, and employment practices. SOCIAL SECURITY NUMBER: Please include your Social Security Number for record control purposes. Federal law requires that all employed persons have a Social Security Number. NO SHARING OF USER ID AND PASSWORD: All applicants must file their application online using their own user ID and password. Using a family member's or friend's user ID and password may erase a candidate's original application record. COMPUTER AND INTERNET ACCESS AT PUBLIC LIBRARIES: For candidates who may not have regular access to a computer or the internet, applications can be completed on computers at public libraries throughout Los Angeles County. Refer to their website for updated information at Library Locator - LA County Library . TESTING ACCOMMODATION: If you require an accommodation to fairly compete in any part of the assessment process, you will be given the opportunity to make a request when completing your application. Please note, you may be required to submit documentation from a qualified medical provider or other qualified professional to support your request for a testing accommodation. Testing Accommodations Coordinator: TestingAccommodations@hr.lacounty.gov Teletype Phone: (800) 735-2929 California Relay Services Phone: (800) 735-2922 Have any questions about anything listed above? Contact us: Department Contact Name: Jasmine Hines Department Contact Phone: (213) 738-2008 Department Contact Email: jhines@hr.lacounty.gov Exam Number: Q2611A-R For detailed information, please click here
Cal State University (CSU) LA
5151 State University Drive, Los Angeles, CA 90032, USA
As part of our equity and diversity commitment and continuing effort to offer career ladder opportunities to our employees, the following position is being offered as a promotional recruitment effort. Only current state staff on-campus may apply. Job No: 537808; 4/10/2024 SECURITY NETWORK ANALYST Operating Systems Analyst- Career ITS Salary Range: $4,912 - $12,124/Monthly (Budgeted Hiring Salary Range: $5,000 - $6,000/Monthly) Work Schedule : Full-Time, Monday - Friday, 8:00 a.m. to 5:00 p.m.; exempt classification. Essential Functions : Under the direction of the Chief Information Security Officer (CISO), the incumbent works as a confidential technical employee to perform ongoing network, server, and desktop computer security monitoring, threat detection, and vulnerability assessments to detect, prevent, and control the system security risks and vulnerabilities. Based on findings, the incumbent may work with the network, server, and desktop services teams to contain the detected risks, and remediate the identified vulnerabilities. The incumbent will assist the CISO to ensure all the associated documentations, including inventories of servers, systems, and network components, is updated regularly by appropriate IT Infrastructure staff and retained for incident response and audit compliance purposes. The incumbent participates in the assigned IT security-related projects to improve knowledge base and experience in cybersecurity standards and best practices. The incumbent is a core member of the virtual Security Operation Center (SOC) in daily security briefings. The incumbent is also a core member of the Computer Security Incident Response Team (CSIRT) when security incidents occur. Required Qualifications & Experience : A bachelor’s degree from an accredited four-year college or university, preferably in computer science, mathematics, or a related technical field, or equivalent technical training and/or experience. A minimum 5-year IT-related working experience as well as a minimum 3-year of hand-on IT network support experience. An advanced degree from an accredited four-year college or university in IT-related discipline can substitute 2 years of experience. Hands-on experience in troubleshooting security incidents on computer network. The incumbent must have knowledge or experience in vulnerability management and security patching. The incumbent must also have general knowledge of Firewall systems such as Palo Alto Network components; data privacy standards, requirements, and policies; network security best practices; state and federal laws governing the handling, access, storage, and disposal of Level 1 confidential data and Level 2 internal use data; and of disaster recovery and business continuity measures. The incumbent must have good written, verbal, and listening communication skills; and critical thinking and analytical skills. The incumbent must have the ability to effectively communicate complex and detailed concepts to others; determine cause and effect, and identify critical issues and solutions that are not readily apparent; work on multiple assignments simultaneously without loss of integrity and accuracy; and work in a confidential, need-to-know environment. The incumbent must have a demonstrated interest and/or ability to work in a multicultural/multiethnic environment. A background check (including a criminal records check) must be completed satisfactorily before any candidate can be offered a position with the California State University. Failure to satisfactorily complete the background check may affect the application status of applicants or continued employment of current California State University employees who may apply for the position. California State University, Los Angeles, as part of the CSU system, is a State of California Employer. As such, the University requires all employees upon date of hire to reside in the State of California. As of January 1, 2022 the CSU Out-of-State Employment Policy prohibits the hiring of employees to perform CSU-related work outside the state of California. Desired Qualifications : CISSP certification. CompTIA Network+ certification or similar professional networking certification. An advanced degree in cybersecurity or computer networking is preferred. Working experience conducting network traffic analysis using tools such as Airwave and ClearPass tools. Experience working with Palo Alto firewalls; HP ArcSight log management tools; of Security XDR, SIEM tools; in security incident triage; with NeXpose/InsightVM or similar vulnerability scanning tools and creating vulnerability reports; and in administrating/supporting Microsoft Active Directory, SSO, or Multi-factor authentication systems such as Duo Security or Azure MFA. Knowledge of data life cycle, data loss prevention, and data privacy is a plus. Knowledge or experience in MITRE Attack Framework or NIST Cybersecurity Framework. Working Knowledge or experience in ITIL or ITSM, Quality Improvement methodologies such as Six Sigma or Global 8D. Closing Date : Review of applications will begin on April 24, 2024 and will continue until the position is filled; however, the position may close when an adequate number of qualified applications are received. A COMPLETED ON-LINE CAL STATE LA EMPLOYMENT APPLICATION IS REQUIRED. RESUMES WILL NOT BE ACCEPTED IN LIEU OF A COMPLETED APPLICATION. The person holding this position is considered a "mandated reporter" under the California Child Abuse and Neglect Reporting Act and is required to comply with the requirements set forth in CSU Executive Order 1083 revised July 21, 2017, as a condition of employment. In addition to meeting fully its obligations under federal and state law, California State University, Los Angeles is committed to creating a community in which a diverse population can live and work in an atmosphere of tolerance, civility and respect for the rights and sensibilities of each individual. To that end, all qualified individuals will receive equal consideration without regard to economic status, race, ethnicity, color, religion, disability, national origin or cultural background, political views, sex or sexual orientation, gender, or other personal characteristics or beliefs. Candidates must demonstrate ability and/or interest in working in a multicultural/multiethnic environment. Certain positions require fingerprinting. The University actively encourages qualified minorities, women and persons with a disability to apply. Upon request, reasonable accommodation will be provided to individuals with protected disabilities to (a) complete the employment process and (b) perform essential job functions when this does not cause an undue hardship. We are an Equal Opportunity/Title IX Employer. To obtain employment information for the impaired call: TDD Line (323) 343-3670 24-hour Dial-A-Job Line (323) 343-3678 Advertised: Apr 10 2024 Pacific Daylight Time Applications close: Closing Date/Time:
As part of our equity and diversity commitment and continuing effort to offer career ladder opportunities to our employees, the following position is being offered as a promotional recruitment effort. Only current state staff on-campus may apply. Job No: 537808; 4/10/2024 SECURITY NETWORK ANALYST Operating Systems Analyst- Career ITS Salary Range: $4,912 - $12,124/Monthly (Budgeted Hiring Salary Range: $5,000 - $6,000/Monthly) Work Schedule : Full-Time, Monday - Friday, 8:00 a.m. to 5:00 p.m.; exempt classification. Essential Functions : Under the direction of the Chief Information Security Officer (CISO), the incumbent works as a confidential technical employee to perform ongoing network, server, and desktop computer security monitoring, threat detection, and vulnerability assessments to detect, prevent, and control the system security risks and vulnerabilities. Based on findings, the incumbent may work with the network, server, and desktop services teams to contain the detected risks, and remediate the identified vulnerabilities. The incumbent will assist the CISO to ensure all the associated documentations, including inventories of servers, systems, and network components, is updated regularly by appropriate IT Infrastructure staff and retained for incident response and audit compliance purposes. The incumbent participates in the assigned IT security-related projects to improve knowledge base and experience in cybersecurity standards and best practices. The incumbent is a core member of the virtual Security Operation Center (SOC) in daily security briefings. The incumbent is also a core member of the Computer Security Incident Response Team (CSIRT) when security incidents occur. Required Qualifications & Experience : A bachelor’s degree from an accredited four-year college or university, preferably in computer science, mathematics, or a related technical field, or equivalent technical training and/or experience. A minimum 5-year IT-related working experience as well as a minimum 3-year of hand-on IT network support experience. An advanced degree from an accredited four-year college or university in IT-related discipline can substitute 2 years of experience. Hands-on experience in troubleshooting security incidents on computer network. The incumbent must have knowledge or experience in vulnerability management and security patching. The incumbent must also have general knowledge of Firewall systems such as Palo Alto Network components; data privacy standards, requirements, and policies; network security best practices; state and federal laws governing the handling, access, storage, and disposal of Level 1 confidential data and Level 2 internal use data; and of disaster recovery and business continuity measures. The incumbent must have good written, verbal, and listening communication skills; and critical thinking and analytical skills. The incumbent must have the ability to effectively communicate complex and detailed concepts to others; determine cause and effect, and identify critical issues and solutions that are not readily apparent; work on multiple assignments simultaneously without loss of integrity and accuracy; and work in a confidential, need-to-know environment. The incumbent must have a demonstrated interest and/or ability to work in a multicultural/multiethnic environment. A background check (including a criminal records check) must be completed satisfactorily before any candidate can be offered a position with the California State University. Failure to satisfactorily complete the background check may affect the application status of applicants or continued employment of current California State University employees who may apply for the position. California State University, Los Angeles, as part of the CSU system, is a State of California Employer. As such, the University requires all employees upon date of hire to reside in the State of California. As of January 1, 2022 the CSU Out-of-State Employment Policy prohibits the hiring of employees to perform CSU-related work outside the state of California. Desired Qualifications : CISSP certification. CompTIA Network+ certification or similar professional networking certification. An advanced degree in cybersecurity or computer networking is preferred. Working experience conducting network traffic analysis using tools such as Airwave and ClearPass tools. Experience working with Palo Alto firewalls; HP ArcSight log management tools; of Security XDR, SIEM tools; in security incident triage; with NeXpose/InsightVM or similar vulnerability scanning tools and creating vulnerability reports; and in administrating/supporting Microsoft Active Directory, SSO, or Multi-factor authentication systems such as Duo Security or Azure MFA. Knowledge of data life cycle, data loss prevention, and data privacy is a plus. Knowledge or experience in MITRE Attack Framework or NIST Cybersecurity Framework. Working Knowledge or experience in ITIL or ITSM, Quality Improvement methodologies such as Six Sigma or Global 8D. Closing Date : Review of applications will begin on April 24, 2024 and will continue until the position is filled; however, the position may close when an adequate number of qualified applications are received. A COMPLETED ON-LINE CAL STATE LA EMPLOYMENT APPLICATION IS REQUIRED. RESUMES WILL NOT BE ACCEPTED IN LIEU OF A COMPLETED APPLICATION. The person holding this position is considered a "mandated reporter" under the California Child Abuse and Neglect Reporting Act and is required to comply with the requirements set forth in CSU Executive Order 1083 revised July 21, 2017, as a condition of employment. In addition to meeting fully its obligations under federal and state law, California State University, Los Angeles is committed to creating a community in which a diverse population can live and work in an atmosphere of tolerance, civility and respect for the rights and sensibilities of each individual. To that end, all qualified individuals will receive equal consideration without regard to economic status, race, ethnicity, color, religion, disability, national origin or cultural background, political views, sex or sexual orientation, gender, or other personal characteristics or beliefs. Candidates must demonstrate ability and/or interest in working in a multicultural/multiethnic environment. Certain positions require fingerprinting. The University actively encourages qualified minorities, women and persons with a disability to apply. Upon request, reasonable accommodation will be provided to individuals with protected disabilities to (a) complete the employment process and (b) perform essential job functions when this does not cause an undue hardship. We are an Equal Opportunity/Title IX Employer. To obtain employment information for the impaired call: TDD Line (323) 343-3670 24-hour Dial-A-Job Line (323) 343-3678 Advertised: Apr 10 2024 Pacific Daylight Time Applications close: Closing Date/Time: