Information Security Analyst Print (https://www.governmentjobs.com/careers/adams/jobs/newprint/4642760) Apply  Information Security Analyst Salary $93,124.08 - $135,029.92 Annually Location Brighton, CO Job Type Regular Full-time Job Number 06701 Department IT & Innovation Division ITi Security Opening Date 09/03/2024 Closing Date 9/17/2024 11:59 PM Mountain Our Mission At Adams County, our team members engage in top-notch opportunities to grow and expand their impact. We cultivate an inclusive and innovative culture where diversity matters! Diversity, Equity & Inclusion (DEI) is a core cultural competency at Adams County, and we actively seek and welcome applicants that bring diverse experiences and value inclusion. Cultural Competencies/EEO Adams County is an equal opportunity employer. We strive to have a workforce that reflects the community we serve. No person is unlawfully excluded from employment opportunities based on race, color, national origin, ancestry, religion, creed, sex, sexual orientation, gender expression, gender identity, age, disability, genetic information, veteran status,marital status or any other legally protected characteristic. Position classification Hybrid -- Job duties and expectations allow for onsite and remote work scheduled every week. Employees in this classification are regularly scheduled onsite one (1) to four (4) days per week based on the County needs and as determined by Department Director. Hybrid classified roles can be onsite more than the set minimum based on employee preference. + Description + Benefits + Questions What Success Looks Like In This Job The Information Security Analyst will primarily be responsible for monitoring for intrusions and malicious activity, assessing effectiveness of security controls protecting county information assets, identifying gaps, assessing risk, facilitating and participating in the execution the security lifecycle for IT projects, and overseeing compliance with laws and regulations pertaining to county information systems. The ideal candidate for this role will have a holistic approach to assessing security risks and uses abstract thinking to contextualize problems and formulate solutions. This job requires the ability to utilize information from many sources including: frameworks, guidelines, threat-intelligence, and industry best-practices to inform decision making. Examples of Duties for Success + Monitor systems and networks for malicious activity. + Participate in internal and external security & compliance audits. + Installation, configuration, and support of technical security controls and countermeasures. + Maintenance of security policies, procedures, guidelines, and standards. + Promotes activities to create information security awareness throughout organization. + Participate as a technical security role of the internal computer incident response team. + Perform regular vulnerability scans and participate in remediation efforts. + Monitor and Manage Data Loss Prevention (DLP) solution. + Work with subject matter experts to complete System Security Plan. + Assist with monitoring and operating other security solutions under the responsibility of the IT Security group. + Assist with day-to-day operations within the IT Security group. + Assist security and technical teams with monitoring and responding to operational alerts. + Participate as member of internal computer incident response team. + Attends conferences and training as required to maintain proficiency. + Perform other related duties and responsibilities as required. + Research and stay up-to-date on latest threats, vulnerabilities, tools, and techniques, compliance, laws, regulations, and best-practices. + Must be able to work a flexible schedule when required to operate during maintenance windows of various county departments. + Unplanned after-hours work is rare but should be expected occasionally. Qualifications for Success + Technical aptitude to adapt and learn in a rapidly changing environment and solve complex problems. + Technical competency to assess and propose security controls to address security gaps. + Working knowledge of common compliance frameworks such as HIPAA, PCI, NIST. + Skilled in log and packet analysis. + Excellent written and verbal communication skills. + Ability to take initiative with minimal supervision. + Ability to perform well under pressure and in disruptive environments. + Strong interpersonal skills, and demonstrated ability to work effectively with customers and colleagues. + Prior experience in a technical support capacity. + Knowledge of SAML and Microsoft ADFS is a plus. + Firewall Administration a plus. + Working knowledge of TCP-IP networks. + Ability to work after-hours when required. + Proficient with Microsoft Windows and Linux operating systems. + Communicate clearly and concisely, both orally and in writing. + Establish, maintain and foster positive and harmonious working relationships with those contacted in the course of work. + At least three (3) years experience working in technology or information security roles. + Strong knowledge of HIPAA Security Rule and PCI compliance. + Knowledge of CJIS is a plus. + Strong technical background and understanding of enterprise networking and datacenter environments. + Experience with Microsoft Azure and Office 365 is a plus. + Knowledge of industry best practices and frameworks. + Up-to-date knowledge of security threats and exploitation techniques. + Experience configuring, tuning, and troubleshooting Nexpose vulnerability scanner or similar product Experience with Metasploit and Kali Linux a plus More Qualifications for Success Education and Training: A BS in Information Security, Computer Science, Telecommunications, or closely related field, OR equivalent experience is required. License or Certificate: Security+, GIAC, OSCP, CISSP, CCSP, or other equivalent certifications preferred but not required. Background Check: Must pass a criminal (CBI) background check. Adams County complies with Colorado’s Job Application Fairness Act (“JAFA”). JAFA prohibits employers from asking individuals to disclose their age, date of birth, or dates of school attendance or graduation on an initial employment application. However, additional application materials such as certifications and transcripts containing this information may be required for certain positions; if such additional materials are requested, applicants may redact information that identifies the applicant’s age, date of birth, or dates or attendance or graduation. Adams County provides a comprehensive benefits package to employees that goes above and beyond what is offered at most organizations. Clickhere (https://youtu.be/ILAvllPaGb4) to watch our video about why Adams County is an Employer of Choice! Benefits You Expect: + AFLAC Supplemental Medical Insurance + Basic Term Life & Optional Term Life Insurance + Deferred Compensation Plan + Dental/Vision/Medical Plans + Generous Vacation/Sick leave + Long-Term Disability + Retirement Plan + Short-Term Disability Plus some you might not expect: + Employee Assistance Program + Employee Fitness Center + Employee Health Clinics + Flexible Work Schedules + Recreation Center Discounts + Training & Tuition Reimbursement Programs + Wellness programs + Lactation friendly certified workplace 01 Please be aware that your cover letter and resume will not be accessed in the initial screening process, so you must complete your application and supplemental questions with as much detail as possible. Any personally identifiable information (PII) such as name and address will be redacted from applications that meet the minimum screening requirements and are forwarded to the hiring manager. If the hiring manager selects you to advance in the hiring process, your cover letter and resume will then be accessible to the hiring team. Information provided on the application is used to determine if a candidate meets minimum qualifications. Only information provided at the time of the application being completed will be considered and additional information that is not listed on the application will not be considered when deciding if a candidate meets or does not meet the qualifications. Applicants are STRONGLY encouraged to include all information and details on their application. I understand and agree that only information provided at the time of my application will be used to determine if I meet the minimum requirements for this position. + Yes, I understand and agree + Yes, I understand but disagree. 02 A BS in Information Security, Computer Science, Telecommunications, or closely related field, OR equivalent experience is required. Do you meet this requirement? + Yes + No 03 Please select your highest level of education: + High School Diploma/GED + Associate's Degree + Bachelor's Degree + Master's Degree + Doctorate + None of the Above 04 Do you possess CISSP, GIAC (GCIA/GCIH/GDAT), OSCP, CCSP, or other equivalent certifications? If Yes please specify which. 05 Do you have any prior full-time work experience in Information Security, Information Technology, or closely related field? + 1 year or less + 1.01-4.99 years + 5 years or more 06 To be eligible for this position, you will be required to physically report to Adams County offices at least 1 day per week. Are you able to meet this requirement? + Yes + No Required Question Agency Adams County Address 4430 S. Adams County Parkway, Suite C4000BBrighton, Colorado, 80601-8213 Website http://www.adcogov.org/current-career-opportunities Apply Please verify your email addressVerify Email