CAREER DESCRIPTION
Cybersecurity Operations Supervisor (IT Supervisor)In addition to performance-based merit increases, this position is scheduled to receive salary range increases on the following dates:
Effective June 28, 2024 - 4.25% increase
Effective June 27, 2025 - 4.00% increase
Salary may be negotiable within the range listed above, based on position requirements and the successful candidate's qualifications, subject to appropriate authorization.
OPEN TO THE PUBLICThis recruitment will establish an open eligible list that will be used to fill current and future IT Supervisor positions. The eligible list established may also be used to fill positions in similar and/or lower classifications throughout the County of Orange.
DEADLINE TO APPLYThis recruitment will be open for a minimum of five (5) business days and will close
Friday, July 19th, 2024 at 11:59PM (PST).
ORANGE COUNTY INFORMATION TECHNOLOGYThe mission of Orange County Information Technology (OCIT) is to provide innovative, reliable, and secure technology solutions that support County departments in the delivery of quality public services. OCIT provides IT solutions across
County departments for voice communications, network services, application support, service desk, desktop support, as well as data center services.
Click here for more information on OCIT
Click here for more information on the County of Orange
THE OPPORTUNITYOCIT is seeking an experienced Cybersecurity Operations Supervisor (IT Supervisor) for the Enterprise Cybersecurity Operations Team. The selected candidate will lead and oversee a team of cybersecurity analysts in charge of continuous monitoring of the County enterprise environment assets, analyzing threats, mitigating vulnerabilities, detecting compromises, and conducting incident response. The candidate is also responsible for the design, configuration, implementation and ongoing support of County Enterprise security tools.
Essential duties and responsibilities of the position will include but are not limited to:
- Supervising a team of County and contractor staff at the County 24x7 Security Operations Center (SOC)
- Providing leadership in day-to-day operation of the SOC, including, but not limited to threat analysis, tools enhancement, event correlation, threat hunting, and incident response
- Reviewing SOC performance, contract deliverables, end of shift reports and other metrics to obtain a common operating picture and report to management and executive staff
- Training and mentoring staff in the latest cybersecurity tools and concepts
- Serving as the subject matter expert on security systems and concepts, including but not limited to SIEM, SOAR, EDR, IAM, PAM, IPS/IDS, Web Proxy, Firewall, DLP, Email Security, and WAF.
- Ensuring the service ability and integrity of SOC equipment and tools
- Overseeing threat hunting activities including analysis of threat intelligence, detection and evaluation of IoCs, and escalation of incidents
- Evaluating vendor solutions, make recommendations, and lead projects for deployment and/or enhancement of security systems
- Participating in the incident response team and execute the County Incident Response Plan and cyber incident playbooks
- Reviewing cybersecurity requests against normal operational security processes and provide approval or escalation
- Overseeing SOC efforts in digital forensics and eDiscovery
- Liaise with County departments on operational security matters, requests, and problems
- Creating/maintaining superior documentation on tools, processes, procedures, and playbooks
DESIRABLE QUALIFICATIONS & CORE COMPETENCIESThe ideal candidate will possess a bachelor’s degree in Information Computer Sciences, Information Computer Technology, Information Systems, or in a related field AND a minimum of three (3) years of professional experience in a cybersecurity lead role.
Possession of at least one active cybersecurity certification such as CISSP, CISA, CEH, Security+ CySa+, is required.
In addition, the ideal candidate will possess extensive professional work experience and/or knowledge in the following core competencies:
Technical Knowledge | Expertise- Understanding the NIST 800-53 framework and application of its controls in operational security
- Proficiency in scripting languages and PowerShell
- Implementing enterprise security best practices including encryption, implicit and explicit permissions, multi-factor authentication, auditing and digital forensics, and data retention
- Understanding network protocols, routing and switching, LAN/WAN, remote access, and encryption protocols
- Understanding and applying network security concepts and troubleshooting enterprise firewalls, IDS/IPS, DNS Security, and WAF
- Knowledge of Microsoft Office365, Azure Cloud, and related security concepts
- Supporting email routing and messaging systems, email security gateways, and email encryption
- Intimate knowledge of security tools such as SIEM, SOAR, EDR, DLP, and Web Filter/Proxy
- Knowledge/background in installing, configuring, and supporting all varieties of Microsoft Windows Services and platforms in an enterprise environment is highly desirable
- Red-teaming/offensive security expertise
Problem Solving | Analytical Skills- Identifying and resolving challenging technical issues and problems through good judgment and decision making
- Proactively detecting problem areas and recommending/implementing solutions
- Analyzing problems and proposing solutions while dealing with changing priorities
Supervision | Leadership Skills- Mentoring and training staff
- Writing staff performance evaluations and conducting bi-annual performance reviews
- Conducting team meetings and fostering effective communication
- Directing work and oversee staff assignments
Communication Skills | Oral & Written- Developing and delivering effective written and verbal communication with stakeholders
- Collaborating with other OCIT staff and management
- Effective in building rapport and negotiating with vendors and department staff to resolve or mitigate contract performance issues and conflicts
- Self-driven learner with the ability to rapidly assimilate and communicate instructions
- Ability to translate and interpret difficult/technical topics to any given audience in a succinct and courteous manner
MINIMUM QUALIFICATIONSClick here to learn more about the minimum qualifications for the IT Supervisor classification as well as the physical, mental, and environmental conditions.
Note: Foreign degrees require an evaluation of U.S. equivalency by an agency that is a member of the National Association of Credential Services (N.A.C.E.S.).
SPECIAL REQUIREMENTSPart of the selection process for this position, that all candidates undergo an extensive background investigation process, to the satisfaction of the Department.
RECRUITMENT PROCESSHuman Resource Services (HRS) will screen all application materials for minimum qualifications. After the initial screening, qualified applicants will be referred to the next step of the selection process. All applicants will be notified via email of their status in the process.
Application Screening (Refer/Non-Refer)Applications and supplemental responses will be screened for qualifications that are highly desirable and most needed to successfully perform the duties of this job. Only those applicants that meet the qualifications as listed in the job bulletin will be referred to the next step.
Structured Oral Interview | SOI (Weighted 100%)Applicants will be interviewed and rated by an oral interview panel of job knowledge experts. Each applicant's rating will be based on responses to a series of structured questions designed to elicit the applicant's qualifications for the job. Only the most successful candidates will be placed on the eligible list.
Based on the Department's needs, the selection procedures listed above may be modified. All candidates will be notified of any changes in the selection procedure.Eligible ListOnce the assessment has been completed, HRS will establish an eligible list of candidates. Candidates placed on the eligible list may be referred to a selection interview to be considered for present and future vacancies.
Veterans Employment PreferenceThe County is committed to providing a mechanism to give preferential consideration in the employment process to veterans and their eligible spouses and will provide eligible participants the opportunity to receive interviews in the selection process for employment and paid internship openings. Please click here to review the policy.
ADDITIONAL INFORMATIONPlease see below for important information regarding COVID-19-related recommendations. Effective April 3, 2023, it is strongly recommended that County employees working in health care settings and correctional facilities follow vaccination and booster guidelines provided by the California Department of Public Health (CDPH) and the Centers for Disease Control and Prevention (CDC). Please click here to see the latest guidance for more details.
EMAIL NOTIFICATION
Email
is the primary form of notification during the recruitment process. Please ensure your correct email address is included in our application and use only one email account.
NOTE: User accounts are established for one person only and should not be shared with another person. Multiple applications with multiple users may jeopardize your status in the recruitment process for any positions for which you apply.
Candidates will be notified regarding their status as the recruitment proceeds via email through the GovernmentJobs.com site. Please check your email folders, including spam/junk folders, and/or accept emails ending with "governmentjobs.com" and "ocgov.com." If your email address should change, please update your profile at www.governmentjobs.com .
FREQUENTLY ASKED QUESTIONS
Click
here for additional Frequently Asked Questions.
Questions:
For specific information pertaining to this recruitment, contact Aniko Ruha at aniko.ruha@ocgov.com or 714.834.7370.
EEO INFORMATIONOrange County, as an equal employment opportunity employer, encourages applicants from diverse backgrounds to apply.Non-Management Benefits
In addition to the County's standard suite of benefits, such as a variety of health plan options, annual leave and paid holidays--we also offer an excellent array of benefits such as a Health Care Reimbursement Account, 457 Defined Contribution Plan and Annual Education and Professional Reimbursement. Employees are provided a Retirement Plan through the Orange County Employees Retirement System (OCERS).
Please go to the following link to find out more about Defined Benefit Pensions and OCERS Plan Types/Benefits.
http://www.ocers.org/active-member-information
Click here for information about benefits offered to County of Orange employees.
Closing Date/Time: 7/19/2024 11:59 PM Pacific
