Information Security & Compliance Administrator

The MPRB is seeking a dedicated Information Security and Compliance Administrator to plan, develop, and administer information security systems configuration, monitoring, maintenance, and work to ensure compliance with NIST 800, CJIS, and PCI-DSS standards across the organization.  This position is primarily responsible to identify and oversee information security needs, processes, protocols, and incident response for the MPRB. This individual adheres to and upholds industry best practices and standards regarding information security configurations, compliance, and controls, and ensures information security standards meet legal and regulatory requirements.

Employee will be eligible to request a teleworking arrangement (up to two days per week of remote work) after 6 months of continuous regular employment and a satisfactory performance record.  

JOIN OUR CREW, WE NEED YOU:

Join the Minneapolis Park & Recreation Board and make a difference in your community!
We are seeking employees who love nature, people, and fun. Apply today and enjoy learning new skills, meeting new friends, and serving the community, all while working in our beautiful park system. Whether you are interested in recreation, environmental education, maintenance, or customer service, we have a job for you!
Don't miss this opportunity to be part of one of the premier park systems in the United States. Our picturesque lakes, neighborhood parks, recreation centers, and diversified programming make the park system an important component of what makes Minneapolis a great place to live, play, and work!

• Stay current on relevant laws and regulations and advise individuals and work units on how to comply with them. Research and analyze industry regulations and ensure compliance; work with departments and field staff to implement changes in business practices and procedures to ensure compliance with laws and regulations.
• Recommend and manage improvements in security systems or procedures. Design security policies, programs, or practices to ensure adequate security relating to asset protection, alarm response, access card use, and other security needs.
• Perform compliance audits and assessments. Assess compliance-related risks and administer ways to reduce them. Document findings, recommendations, and other information. Measure the effectiveness of compliance programs.
• Monitor networks for security breaches and investigate when one occurs. Check for vulnerabilities in computer and network systems.
• Implement and maintain software, such as firewalls and data encryption programs, to protect sensitive information.  
• Stay current on IT security and on the latest methods attackers are using to infiltrate computer systems. Research new security technology to decide what will most effectively protect the organization. Recommend security enhancements to management or senior IT staff.
• Develop security standards and best practices for the organization. Perform risk analyses so that appropriate countermeasures can be developed. Conduct security assessments to identify potential vulnerabilities related to physical security, staff safety, or asset protection, and design security systems and processes. 
• Maintain, update, and audit disaster recovery plan to allow for the continued operation of IT department, including but not limited to preventive measures such as regularly copying and transferring data to an offsite location; plans to restore proper IT functioning after a disaster; tests to ensure the steps in their recovery plans.
• Research requirements for industry oversight bodies, and prepare relevant submissions. Communicate with body on any objections, work with internal partners to file objections, suggest changes to filings, coordinate systems output due to filing with IT and other departments.
• Identify measures or indicators of system performance and the actions needed to improve or correct performance, relative to the goals of the system. Engineer, install, maintain, or repair security systems, programmable logic controls, or other security-related electronic systems. Conduct tests and inspections of products, services, or processes to evaluate quality or performance.
• Respond to urgent or emergent situations on an on-call basis.

Need to Have: 

• Bachelor’s degree from an accredited college with a focus on information technology or a related field
• Experience in information technology services: Four (4) years
• Experience in information security: Two (2) years
• Must meet Criminal Justice Information Systems (CJIS) security requirements including background check.
• An equivalent combination of related experience, education, and training may be considered.
  • Associate’s degree from an accredited college with a focus on information technology
  • Experience in information technology services: Six (6) years
  • Experience in information security: Three (3) years

Nice to Have:

• Certified Information Systems Security Professional preferred

Skills Crucial to Success in This Role: 

• Knowledge of industry best practices for information security regulatory compliance
• Knowledge of National Institute of Standards and Technology (NIST 800)
• Knowledge of Payment Card Industry Data Security Standards (PCI DSS)
• Knowledge of Criminal Justice Information Services (CJIS)
• Knowledge of firewalls, security configuration controls
• Understand the rules that affect the industry and make sure that the organization and individuals follow them.
• Use logic and reason to identify the strengths and weaknesses of alternative solutions, conclusions, or approaches to problems.

Bargaining Unit: Non-represented
FLSA Classification:  Exempt

Job Information Session:  A 30-minute Job Information Session will be held on May 15, 2026, at 12:00pm CDT via conference call.  This is your opportunity to ask questions about the position and to gain a better understanding of the civil service application process.  Interested parties are encouraged to call 612-474-1955, 618 116 322#

View a full list of qualifications and job description

Learn more about Veteran’s Preference

Selection Process:

To apply for this full-time civil service position, applicants must complete an online application with supplemental questions at www.minneapolisparks.org/jobs.  Late applications will be rejected.

What steps the selection process involves:

• We review your minimum qualifications.
• We rate your training and experience based on application materials and supplemental questions (30%).
• We conduct a structured panel interview (oral exam) (70%).
• We calculate your civil service score based on the above components and place you on the eligible list if all testing components are passed (passing score for each component and as an overall score is 70.00 or above).  Eligible list will expire in three (3) months.
• We refer the top finalists to the hiring manager for an interview.
• References, including verification of employment and work performance, may be considered. 
• We conduct a background check.  Upon receiving a conditional offer of employment, the applicant will be asked to sign an informed consent allowing the Minneapolis Park and Recreation Board to obtain their criminal history in connection with the positions sought. View the MPRB Background Check Policy

• Upon receiving a conditional offer of employment, applicants will also need to successfully pass a pre-employment physical examination paid for by the MPRB.

Please note that HR reserves the right to limit the number of people invited to successive testing events.

Minneapolis Park and Recreation Board- a great place to play, work, and make a difference in the lives of others.

The MPRB is an Equal Opportunity Employer and a tobacco-free workplace and park system.

MPR123

Salary : $93,849 - $110,848