What are the responsibilities and job description for the Cyber Security Officer position at Navajo County?
Summary
Reports directly to the Chief Information Officer. Responsible for ensuring the security of Navajo County’s infrastructure, assets, and data using least privilege access models, anomaly detection models, attack detection models, and appropriate defensive tactics. Mitigates active cybersecurity incidents through direct actions, trigger-based automated actions, or managed third-party actions.
Essential Job Functions
(Essential function, as defined under the Americans with Disabilities Act, may include the following tasks, knowledge, skills and other characteristics. This list of tasks is ILLUSTRATIVE ONLY, and is not a comprehensive listing of all functions and tasks performed by positions in this class.)
Bachelor's Degree in Computer Science or closely related technical field or equivalent experience; AND eight years' experience in the IT landscape, including three years' experience in cyber security; prior work experience in a government setting preferred.
Employee Benefits
Navajo County offers a comprehensive employee benefits package to regular employees working 40
Hours Per Week That Includes
(Regular Part Time employees working 30 – 39 hours a week receive some benefits on a pro-rated basis.
Part Time employees working less than 30 hours a week and temporary employees do not receive benefits)
Reports directly to the Chief Information Officer. Responsible for ensuring the security of Navajo County’s infrastructure, assets, and data using least privilege access models, anomaly detection models, attack detection models, and appropriate defensive tactics. Mitigates active cybersecurity incidents through direct actions, trigger-based automated actions, or managed third-party actions.
Essential Job Functions
(Essential function, as defined under the Americans with Disabilities Act, may include the following tasks, knowledge, skills and other characteristics. This list of tasks is ILLUSTRATIVE ONLY, and is not a comprehensive listing of all functions and tasks performed by positions in this class.)
- A key asset in troubleshooting and solving computer and server problems.
- Respond to the needs and questions of IT and County management concerning the security of the network, servers, applications, and overall computer landscape.
- Install and update software and hardware related to cyber security.
- Collaborate on the design, plan, configure, and upgrade server equipment and software.
- Write and review bids, Request for Proposal (RFP), and Request for Qualification (RFQ) documents from the cyber security perspective.
- Collaborate with the backup, recovery, and maintenance of the County's networked servers, information, and equipment to insure the continuity of business plans are viable.
- Collaborate with the design, planning, configuration, and updates of systems business continuity and disaster recovery plans.Research and recommend software and hardware purchases related to cyber security to the Chief Information Officer.
- Prepare reports regarding usage, file size allocations and reserves, virus attacks, network vulnerabilities, and related topics related to cyber security.
- Be an active member of the IT Leadership Team in making decisions to move the County forward in terms of cyber security.
- Be an active member of National, State, and Local cyber security teams. (MS-ISAC, EL-ISAC, ACTRA, ACIP)
- Actively participate and develop plans, policies, and procedures for the County
- Answers questions and participate in responding to State Auditors.
- Familiarity with NIST 800-53 cybersecurity framework
- Familiarity with MITRE ATT&CK framework
- Familiarity with National Incident Management System’s (NIMS) Incident Command System (ICS)
- Experience with cyber security incident detection, active response and mitigation
- Experience with Security Information and Event Management (SIEM) tools
- Experience with Network Detection and Response (NDR) tools
- Experience with Endpoint Detection and Response (EDR) tools
- Experience with Data Classification and Access Auditing tools
- Experience with Firewall management on multiple platforms (Cisco, Windows, Linux)
- Experience with Intrusion Detection/Prevention tools
- Familiarity with Cyber Threat Intelligence Sharing platforms (ThreatConnect, MISP)
- Experience with modern cross-platform script programming languages
- Ability to deconstruct and determine root cause of security incidents
- Skill in effectively communicating verbally and in writing.
- Skill in handling stressful situations with hard deadlines.
- Skill in establishing and maintaining effective working relationships with employees, other agencies, and the public.
- Skill in planning, organizing, and directing the work of others.
Bachelor's Degree in Computer Science or closely related technical field or equivalent experience; AND eight years' experience in the IT landscape, including three years' experience in cyber security; prior work experience in a government setting preferred.
Employee Benefits
Navajo County offers a comprehensive employee benefits package to regular employees working 40
Hours Per Week That Includes
(Regular Part Time employees working 30 – 39 hours a week receive some benefits on a pro-rated basis.
Part Time employees working less than 30 hours a week and temporary employees do not receive benefits)
- Vacation/Annual/Personal Leave
- Sick Leave
- 10 Holidays Per Year
- Health Care Insurance
- Dental Plan
- Vision Plan
- Life Insurance
- Long-Term Disability
- Tel-A-Doc 24/7
- Arizona State Retirement System
- Public Safety Personnel Retirement System
- Correction Officer's Retirement Plan
- Employee Assistance Program
- On-going Training Opportunities
- Payroll Direct Deposit
- Dependent Medical, Dental, and Vision
- Supplemental Life (for employees & dependents)
- Flexible Spending Account
- Health Savings Account
- Deferred Compensation
- MetLife Elective Plans