IT Security Analyst

Career Opportunity:

The city of Las Vegas invites applicants for IT Security Analyst I. This position performs professional information security work enforcing information security practices and protocols. Maintains and helps deploy the city’s cyber security platform and solution efforts as well as perform network and host threat assessments to identify, evaluate and mitigate security risks, threats and vulnerabilities. Works with the city staff to develop action plans to mitigate identified vulnerabilities and promote security initiatives. Participates in team activities, including threat management, vulnerability management, assessments, audits, incident response, disaster recovery planning, end user education and network security monitoring.

Ideal Candidate:

The ideal candidate for this role should demonstrate a strong combination of organizational skills, analytical skills, technical savvy, and a strong desire to learn and grow.

Ideal candidates will:

• Be a self-starter, willing to learn what’s needed to get the job done, correctly and efficiently
• Be able to take general direction and translate it into actionable steps to complete assignments.
• Be able to proactively analyze compliance challenges and develop innovative and effective solutions to those challenges
• Be able to work harmoniously and effectively with technical teams, business stakeholders, and external vendors.
• Will have a demonstrated track record of follow up and follow through when assigned tasks, ensuring timely and practical resolution to assignments.

Distinguishing Characteristics

IT Security Analyst I: This is the entry-level class within the Security Analyst series. Employees within this class are distinguished from the Security Analyst II by the amount of cyber security experience an individual has, as well as the performance of more routine tasks and duties. This class may be used as a training class, wherein employees have limited cyber security experience, and therefore receive instruction and assistance in cyber security principles, techniques and practices.

IT Security Analyst II: This is the second class within the Security Analyst series. Employees within this class are distinguished from the Security Analyst I by the performance of the full range of duties as assigned, including more complex research assignments. Employees at this level receive only occasional instruction or assistance as new or unusual situations arise, and are fully aware of the operating procedures and policies of the work unit.

Supervision Received and Exercised

Receives direction from the Information Technologies Section Manager.

Selection Process: The selection process will include a review of all applications with only the most qualified participating in an interview. Final candidate selection may include a hiring interview and/or skills demonstration (if applicable). Any individual offered employment will be required to pass a pre-employment drug test and complete background check. Some positions may require preliminary background checks.

EXAMPLE OF DUTIES

Essential Functions:

1. Work at the direction of the IT Section Manager to improve information security for the city.
2. Install, configure and administer security systems and tools.
3. Work with and provide information and guidance to security service providers. Monitor performance of security services providers and provide feedback to the IT Section Manager. Participate in regular calls with security services providers to ensure optimal performance from service providers.
4. Conduct proactive research to identify and understand new threats, vulnerabilities, and exploits. Provide recommendations to management concerning cyber security issues.
5. Ensure department disaster recovery and business continuity and related plans are reviewed on a regular basis and kept up-to-date.
6. Perform security scans of network devices and systems.
7. Analyze logs to improve system and network performance, isolate and detect failures, and identify security vulnerabilities or malicious activity.
8. Respond to security incidents and report on incident handling and resolution.
9. Provide Incident Response (IR) support when analysis confirms actionable incident.
10. Create and maintain documentation of information security policies, procedures, reports, processes and diagrams.
11. Participate in developing and implementing departmental and citywide policies relating to cyber security and compliance topics. Assist with the enforcement of security policies and procedures by monitoring system activity and by conducting both periodic and ad-hoc audits and reviews.
12. Review security violation reports and investigate possible security exceptions.
13. Provide analysis of information security related events and incidents; independently address cyber security events as needed in order to prevent further compromise of technical assets and data.
14. Provide threat and vulnerability analysis as well as security advisory services.
15. Analyze and respond to previously undisclosed software and hardware vulnerabilities.
16. Investigate, document and report on information security issues and emerging trends, including current or proposed legislation, laws and regulations related to information security to determine applicability and impact to city operations.
17. Provide assistance to the City Auditor’s Office, Human Resources, City Attorney’s Office, external auditors, and external attorneys as required for investigations, legal discovery and open records requests.
18. Support and assist the development of baseline infrastructure and application hardening guides based on industry best practices.
19. Collaborate with technology and business teams to ensure that the implementation of new technologies and security solutions can be supported and that they are in alignment with security architecture, industry best practice, principles of secure design, and business strategies.
20. Determine security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; and preparing cost estimates.
21. Performs related duties and responsibilities as required.

MINIMUM REQUIREMENTS

IT Security Analyst I

Experience:

Three years of general IT experience. Experience working specifically in IT security is desirable.

Training:

Bachelor's degree from an accredited college or university with major in computer science, telecommunications, management information systems or related fields. May substitute a combination of equivalent education and related experience. The city assesses 1.5 years of fulltime experience as equivalent to one year of education.

License or Certificate:

One or more of the following certifications (or equivalent) is preferred on the date of application:

• CompTIA Security
• Certified Ethical Hacker (CEH)
• Global Information Assurance Certification Security Essentials Certification (GSEC)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)

IT Security Analyst II

Experience:

Two years of cyber security experience. Experience with at least one of the following is required: PCI-DSS, HIPAA, NCJIS, or PII.

Experience with project management in an IT environment is desirable.

Training:

Bachelor's degree from an accredited college or university with major in computer science, telecommunications, management information systems or related fields. May substitute a combination of equivalent education and related experience. The city assesses 1.5 years of fulltime experience as equivalent to one year of education.

License or Certificate:

One or more of the following certifications (or equivalent) is preferred on the date of application:

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)

KNOWLEDGE, SKILLS, AND ABILITIES

IT Security Analyst I

Knowledge of:

Microsoft Word, Project, Excel, PowerPoint and Visio.

Basic understanding of systems including but not limited to Microsoft Windows.

Basic understanding of network switches, routers and firewalls.

Basic knowledge of various security concepts, and technical security solutions, such as firewall and IDS/IPS, anti-virus, and spam filtering.

Common Internet protocols and applications.

Ability to:

Treat sensitive information with the highest degree of confidentiality and discretion.

Advise users in the application of security processes.

Work under pressure, and meet deadlines individually and collaboratively.

Think logically, assess problems, and be results-oriented.

Exercise independent judgment and discretion when dealing with cyber security events, particularly during off hours when management personnel may not be available to provide direction or feedback.

Quickly learn and understand new technologies.

Communicate effectively, both orally and in writing, to interact with team members, customers, management and support personnel (technical and non-technical).

Communicate clearly and concisely, both orally and in writing.

Establish and maintain effective working relationships with those contacted in the course of work.