Oregon Health Authority
Salem, OR (Hybrid)
The Oregon Health Authority (OHA) has a fantastic opportunity for an experienced Privacy Compliance Officer (PCO) OPA 4 to join an excellent team and work to support agency access needs.
The Office of Information Service’s (OIS) mission is to deliver technology solutions and services that support Oregon Health Authority and Oregon Department of Health Services in helping Oregonians achieve health, well-being, and independence.
The Oregon Health Authority is committed to:
Eliminating health inequities in Oregon by 2030
Becoming an anti-racist organization
Developing and promoting culturally and linguistically appropriate programs,
Developing and retaining a diverse, inclusive, and equitable workforce that represents the diversity, cultures, strengths, and values of the people of Oregon.
Click here to learn more about OHA’s mission, vision, and core values.
What you will do!
As a Privacy Compliance Officer (PCO), you will support Information Security and Privacy Office (ISPO) through delivery of agency compliance and effectiveness of the privacy program that follows the agency mission and all relevant regulations.
The PCO is a shared service position servicing Oregon Department of Health of Human Services (ODHS) and Oregon Health Authority (OHA) (Hybrid entity) as the HIPAA Privacy Officer as required by law.
In this role, you will be responsible for working with all levels of management in OHA and ODHS, other state agencies, and external community partners etc. The PCO’s main role and function developing and managing the privacy compliance program, perform audits of compliance including audit plans, risk assessments and remediation plans, investigations and resolutions, and compliance and privacy related policies, procedures, education, and training in collaboration with our Awareness and Education Coordinator. PCO reviews contracts related to third party access including contractual agreements to support data protections.
Additionally, will support all reports of compliance issues and prepares reports and corrective action plans as directed by the Privacy Manager. The PCO works with agency partners to ensure access control, secure data sharing, disaster recovery, business continuity, incident response, and risk management for both HIPAA covered and non-covered entities.
What we are looking for!
SPECIAL QUALIFICATIONS:
Two (2) plus years’ experience in security and privacy investigations, drafting, negotiating, and managing a variety of contracts.
MINIMUM REQUIREMENTS: (Please clearly outline how you meet the minimum requirements and special qualifications in your application/resume/cover letter. Failure to do so might disqualify you from consideration)
(a) A bachelor’s degree in business or public Administration, Behavioral or Social Sciences, Finance, Political Science, or any degree demonstrating the capacity for the knowledge and skills; and four years professional-level evaluative, analytical, and planning work.
OR
(b) Any combination of experience and education equivalent to eight years of experience that typically supports the knowledge and skills for the classification.
Desired Attributes
Direction, expertise, and support on all aspects of information data privacy, data security and agency technical, administrative and physical safeguards, compliance with federal, state and local laws including but not limited to best practices.
Support confidentiality within both agencies, serving as the agencies' subject matter expert in these areas.
Oversees the compliance efforts of the agency’s compliance program.
Collaborates in agency performed audits by outside agencies, regulators, and audit functions. Support oversight and completion of appropriate responses to requests and findings.
Collaborates with ISPO in the performance and reporting of planned risk assessments (privacy impact assessments (PIA), plan of action milestones (POAM) etc.
Acts as policy coordinator with oversight responsibilities for the agency's privacy policies and procedures including providing consult on security policies when appropriate.
Recommend changes to Oregon Administrative Rules on privacy.
Response to public comment pursuant to administrative Notice of Proposed Rulemaking process.
Ability to support multiple projects and competing agency priorities.
Strong PC skills (Microsoft Suite, Excel, Outlook, PowerPoint).
Excellent written and verbal communication and presentation skills.
Experience in creating and maintaining a work environment that is respectful and accepting of diversity among team members and the people we serve.
What's in it for you?
Medical, vision, and dental benefits
11 paid holidays
8 hours of vacation per month, eligible to be used after 6 months of service.
8 hours of sick leave per month, eligible to be used as accrued.
24 hours of personal business leave per fiscal year, eligible to be used after 6 months of service.
Pension and retirement programs
Opportunity to potentially receive loan forgiveness under the Public Service Loan Forgiveness Program (PSLF)
Continuous growth and development opportunities
Opportunities to serve your community and make an impact through meaningful work.
A healthy work/life balance, including fulltime remote options as well
How to Apply
Complete the online application at oregonjobs.org using job number REQ-153736
Complete questionnaire.
Attach a resume.
Attach a cover letter of no more than two pages addressing the “What we are looking for?” section including required and preferred skills.
The Oregon Health Authority is an equal opportunity, affirmative action employer committed to workforce diversity.
The Oregon Health Authority (OHA) has a fantastic opportunity for an experienced Privacy Compliance Officer (PCO) OPA 4 to join an excellent team and work to support agency access needs.
The Office of Information Service’s (OIS) mission is to deliver technology solutions and services that support Oregon Health Authority and Oregon Department of Health Services in helping Oregonians achieve health, well-being, and independence.
The Oregon Health Authority is committed to:
Eliminating health inequities in Oregon by 2030
Becoming an anti-racist organization
Developing and promoting culturally and linguistically appropriate programs,
Developing and retaining a diverse, inclusive, and equitable workforce that represents the diversity, cultures, strengths, and values of the people of Oregon.
Click here to learn more about OHA’s mission, vision, and core values.
What you will do!
As a Privacy Compliance Officer (PCO), you will support Information Security and Privacy Office (ISPO) through delivery of agency compliance and effectiveness of the privacy program that follows the agency mission and all relevant regulations.
The PCO is a shared service position servicing Oregon Department of Health of Human Services (ODHS) and Oregon Health Authority (OHA) (Hybrid entity) as the HIPAA Privacy Officer as required by law.
In this role, you will be responsible for working with all levels of management in OHA and ODHS, other state agencies, and external community partners etc. The PCO’s main role and function developing and managing the privacy compliance program, perform audits of compliance including audit plans, risk assessments and remediation plans, investigations and resolutions, and compliance and privacy related policies, procedures, education, and training in collaboration with our Awareness and Education Coordinator. PCO reviews contracts related to third party access including contractual agreements to support data protections.
Additionally, will support all reports of compliance issues and prepares reports and corrective action plans as directed by the Privacy Manager. The PCO works with agency partners to ensure access control, secure data sharing, disaster recovery, business continuity, incident response, and risk management for both HIPAA covered and non-covered entities.
What we are looking for!
SPECIAL QUALIFICATIONS:
Two (2) plus years’ experience in security and privacy investigations, drafting, negotiating, and managing a variety of contracts.
MINIMUM REQUIREMENTS: (Please clearly outline how you meet the minimum requirements and special qualifications in your application/resume/cover letter. Failure to do so might disqualify you from consideration)
(a) A bachelor’s degree in business or public Administration, Behavioral or Social Sciences, Finance, Political Science, or any degree demonstrating the capacity for the knowledge and skills; and four years professional-level evaluative, analytical, and planning work.
OR
(b) Any combination of experience and education equivalent to eight years of experience that typically supports the knowledge and skills for the classification.
Desired Attributes
Direction, expertise, and support on all aspects of information data privacy, data security and agency technical, administrative and physical safeguards, compliance with federal, state and local laws including but not limited to best practices.
Support confidentiality within both agencies, serving as the agencies' subject matter expert in these areas.
Oversees the compliance efforts of the agency’s compliance program.
Collaborates in agency performed audits by outside agencies, regulators, and audit functions. Support oversight and completion of appropriate responses to requests and findings.
Collaborates with ISPO in the performance and reporting of planned risk assessments (privacy impact assessments (PIA), plan of action milestones (POAM) etc.
Acts as policy coordinator with oversight responsibilities for the agency's privacy policies and procedures including providing consult on security policies when appropriate.
Recommend changes to Oregon Administrative Rules on privacy.
Response to public comment pursuant to administrative Notice of Proposed Rulemaking process.
Ability to support multiple projects and competing agency priorities.
Strong PC skills (Microsoft Suite, Excel, Outlook, PowerPoint).
Excellent written and verbal communication and presentation skills.
Experience in creating and maintaining a work environment that is respectful and accepting of diversity among team members and the people we serve.
What's in it for you?
Medical, vision, and dental benefits
11 paid holidays
8 hours of vacation per month, eligible to be used after 6 months of service.
8 hours of sick leave per month, eligible to be used as accrued.
24 hours of personal business leave per fiscal year, eligible to be used after 6 months of service.
Pension and retirement programs
Opportunity to potentially receive loan forgiveness under the Public Service Loan Forgiveness Program (PSLF)
Continuous growth and development opportunities
Opportunities to serve your community and make an impact through meaningful work.
A healthy work/life balance, including fulltime remote options as well
How to Apply
Complete the online application at oregonjobs.org using job number REQ-153736
Complete questionnaire.
Attach a resume.
Attach a cover letter of no more than two pages addressing the “What we are looking for?” section including required and preferred skills.
The Oregon Health Authority is an equal opportunity, affirmative action employer committed to workforce diversity.
Federal Reserve Board
Washington,District of Columbia
DESCRIPTION/RESPONSIBILITIES: I. JOB SPECIFIC DUTIES AND RESPONSIBILITIES: 1) Reporting to the director of IT, the deputy director, information security, privacy, and risk management oversees the Board's information security program responsible for the development of information security strategies, programs, and policies that protect the Board's information assets from cyber and other information security threats and inadvertent data disclosure. 2) Oversees a diverse team of technology and management professionals of moderate size consisting of officers, managers, and analysts. Provides developmental opportunities for management and staff and works to increase organizational productivity. 3) Ensures information security strategies enable business outcomes and are implemented in a manner informed by and integrated with enterprise architecture. 4) Ensures that the Board is compliant with all regulatory requirements related to information security and maintains processes to identify agency risks and risk mitigation activities. 5) Oversees the Board’s privacy program, ensures compliance with applicable privacy requirements, develops privacy policies, and manages privacy risks. 6) Serves as the Board's Senior Agency Official for Privacy, as required in the Office of Management and Budget (0MB) Circular No. A-130, responsible for ensuring the Board implements all privacy requirements and considers the privacy impact of all Board actions and policies that involve PII. 7) Provides direction for driving and supporting the establishment of an innovation culture and enabling technology and data environments. 8) Ensures close collaboration and alignment with the Federal Reserve System (FRS) and FRS National IT information security and cybersecurity strategies, risk mitigations, and incident response execution. 9) Ensures appropriate training and outreach are provided to all Board staff regarding information security and privacy matters. II. DIVISION SPECIFIC REQUIREMENTS: To meet evolving business capability needs and execute the Board’s technology and data strategies, the IT Division is organized to support an integrated service delivery model. The overriding objective is to provide highly integrated technology and information services that produce business value at the speed in which businesses require and are orchestrated at the enterprise level. Providing measurable levels of business value while maintaining operational excellence is foundational to all functions of the organization. The IT Division meets its mission by managing its services and operations according to five primary functions; managing a service delivery function which operates and integrates technology infrastructure and software development, managing the Board's information security and privacy programs, providing enterprise architecture and digital transformation services, directing the Board's and System's Statistics functions, and maintaining a program management function that supports administration, financial management, communications, and workforce development activities. The deputy director is responsible for providing leadership required to integrate the delivery of services across these functions and for providing executive support to the director as the division integrates its suite of technology and information service offerings to support the lifecycle of data at the Board. The deputy director supports and leads digital innovation and transformation, and partners with the division leadership to strategically focus on the development of outreach, education, and recruitment and retention programs that foster inclusivity and STEM opportunities. The deputy director is expected to routinely assess the type and quantity of demand for division services, understand the computing and data needs of business partners, review the effectiveness of programs, and ensure alignment with the Board's strategic plan, technology, and data strategies. The deputy director reports to the director of IT, also serves in the director's absence, and performs special duties and assignments as delegated by the director or assigned by the Board. Position offers a hybrid work environment with opportunities to work both remotely and in person in Washington, DC. Full vaccination is required as a condition of employment, unless a legally required exception applies. REQUIRED SKILLS: III. KNOWLEDGE/SKILL/EDUCATION REQUIREMENTS: 1) Bachelor’s degree in Computer Science, Information Systems, or related field. Advanced degree preferred. 2) At least 15 years of professional experience, 10 of which must be in technology or digital services leadership in an applied technology environment, which may encompass core infrastructure, information security, cybersecurity, data privacy, enterprise business systems, software development, and enterprise architecture, with recent leadership experience in information, cybersecurity, or the data privacy fields. 3) A minimum of 10 years of experience managing people including 5 years in senior management or leadership role managing cross-functional teams or projects and influencing senior-level management and key stakeholders. Ability to lead and manage staff and projects effectively, set priorities, assess performance, guide staff development, and make budgetary recommendations. 4) Demonstrated experience overseeing large-scale technology service delivery of high complexity at the enterprise level. 5) Demonstrated experience and commitment to fostering collaboration and employee engagement at the division level 6) Ability to lead and motivate the division to develop a culture and dynamic to embrace change as it embarks on its digital transformation journey 7) Ability to balance competing interests among a variety of clients and readily readjust priorities to respond to pressing and changing client demands. Must be able to anticipate and meet the clients' needs while maintaining high-quality end products. 8) Exceptional organization savvy and agility as demonstrated by ability to manage across organizational boundaries, building high performing teams, diminishing organizational silos, strengthening teams, and facilitating effective group and team dynamics. 9) Requires the ability to communicate effectively, both orally and in writing, with all levels of staff and management. IV. BOARD COMPETENCIES: 1) Decision Quality: Makes timely, thoughtful, strategic decisions 2) Learning Agility: Takes responsibility for building organizational agility 3) Drive for Excellence: Delivers results by developing shared vision and direction for the organization 4) Perspective and Strategic Agility: Leads and acts with the future in mind 5) Collaborative Relationships: Sets the tone for collaborative organization 6) Effective Communication: Effectively speaks and acts on behalf of the Board V. OFFICER SPECIFIC POSITION RESPONSIBILITIES: 1) Acts as responsible steward to the function, Division, and Board by demonstrating proficiency in the Board's espoused competencies. 2) Balances and mitigates key organizational and functional risks where appropriate and develops and executes sustainable risk mitigation strategies. 3) Fosters a continuous learning culture. 4) Exercises appropriate judgement and decision-making in complex situations. 5) Demonstrates innovation and thought leadership relevant to future state organizational and functional people strategies. 6) Demonstrates strong leadership and management skills aligned to The Board's espoused values. 7) Keeps skills and knowledge current and aligned to best practices relative to key rules, regulations, and policies, as well as economic, political, and social trends that affect the organization. Understands near term and long-term needs for the organization and determines how operations should be positioned to meet such needs. 8) Demonstrates proficiency in political savvy, organizational savvy, and interpersonal communication skills. VI. PERSONAL RELATIONSHIPS: 1) Has frequent contact with members of the Board, both in discussions and through memoranda, regarding matters pertaining to area of responsibility. 2) Has regular contact with a11 staff in the function to stay connected to the pulse of the division, provide leadership, and act as a role model. 3) Has frequent contact with senior staff and other professionals in the division, elsewhere at the Board, and the Reserve Banks regarding matters pertaining to area of responsibility. 4) Has frequent contact with individuals from other federal agencies, international organizations, and in the private sector regarding the subject matters in area of responsibilities VII. INTERNAL MANAGEMENT RESPONSIBILITIES: 1) Participates in the development of the division's strategic plan, goals, and budget. Recommends program objectives and their priorities for area of responsibility. 2) Provides guidance, coaching, and feedback to, and conducts performance reviews for managers, supervisors, and other direct rep01is, and ensures same is provided to all function staff. 3) Responsible for accomplishing approved program objectives for area of responsibility within the financial and personnel resources allocated by the Board and the division's senior management. 4) Recommends personnel actions involving promotions, reclassifications, merit increases, and reassignments or separations in area of responsibility. VIII. POSITION DEMANDS: 1) Ability to communicate effectively, both orally and in writing, to the Board and individual members thereof, senior Board staff, other Board and Reserve Bank staff: and staff at other government agencies and in the private sector on complex and technical matters. 2) Ability to be an effective spokesperson and advocate for the Board and the division in outside contacts, which may involve significant business dealings. 3) Ability to operate under pressure to meet deadlines accurately and in a timely manner. 4) Ability to translate customer service and organizational development theories and best practices into effective strategies for adoption in area of responsibility to achieve and maintain high levels of customer service. 5) Ability to exercise independent and sound judgment in establishing objectives for assigned areas of responsibility that provide support and services for the divisions and Board's missions.
DESCRIPTION/RESPONSIBILITIES: I. JOB SPECIFIC DUTIES AND RESPONSIBILITIES: 1) Reporting to the director of IT, the deputy director, information security, privacy, and risk management oversees the Board's information security program responsible for the development of information security strategies, programs, and policies that protect the Board's information assets from cyber and other information security threats and inadvertent data disclosure. 2) Oversees a diverse team of technology and management professionals of moderate size consisting of officers, managers, and analysts. Provides developmental opportunities for management and staff and works to increase organizational productivity. 3) Ensures information security strategies enable business outcomes and are implemented in a manner informed by and integrated with enterprise architecture. 4) Ensures that the Board is compliant with all regulatory requirements related to information security and maintains processes to identify agency risks and risk mitigation activities. 5) Oversees the Board’s privacy program, ensures compliance with applicable privacy requirements, develops privacy policies, and manages privacy risks. 6) Serves as the Board's Senior Agency Official for Privacy, as required in the Office of Management and Budget (0MB) Circular No. A-130, responsible for ensuring the Board implements all privacy requirements and considers the privacy impact of all Board actions and policies that involve PII. 7) Provides direction for driving and supporting the establishment of an innovation culture and enabling technology and data environments. 8) Ensures close collaboration and alignment with the Federal Reserve System (FRS) and FRS National IT information security and cybersecurity strategies, risk mitigations, and incident response execution. 9) Ensures appropriate training and outreach are provided to all Board staff regarding information security and privacy matters. II. DIVISION SPECIFIC REQUIREMENTS: To meet evolving business capability needs and execute the Board’s technology and data strategies, the IT Division is organized to support an integrated service delivery model. The overriding objective is to provide highly integrated technology and information services that produce business value at the speed in which businesses require and are orchestrated at the enterprise level. Providing measurable levels of business value while maintaining operational excellence is foundational to all functions of the organization. The IT Division meets its mission by managing its services and operations according to five primary functions; managing a service delivery function which operates and integrates technology infrastructure and software development, managing the Board's information security and privacy programs, providing enterprise architecture and digital transformation services, directing the Board's and System's Statistics functions, and maintaining a program management function that supports administration, financial management, communications, and workforce development activities. The deputy director is responsible for providing leadership required to integrate the delivery of services across these functions and for providing executive support to the director as the division integrates its suite of technology and information service offerings to support the lifecycle of data at the Board. The deputy director supports and leads digital innovation and transformation, and partners with the division leadership to strategically focus on the development of outreach, education, and recruitment and retention programs that foster inclusivity and STEM opportunities. The deputy director is expected to routinely assess the type and quantity of demand for division services, understand the computing and data needs of business partners, review the effectiveness of programs, and ensure alignment with the Board's strategic plan, technology, and data strategies. The deputy director reports to the director of IT, also serves in the director's absence, and performs special duties and assignments as delegated by the director or assigned by the Board. Position offers a hybrid work environment with opportunities to work both remotely and in person in Washington, DC. Full vaccination is required as a condition of employment, unless a legally required exception applies. REQUIRED SKILLS: III. KNOWLEDGE/SKILL/EDUCATION REQUIREMENTS: 1) Bachelor’s degree in Computer Science, Information Systems, or related field. Advanced degree preferred. 2) At least 15 years of professional experience, 10 of which must be in technology or digital services leadership in an applied technology environment, which may encompass core infrastructure, information security, cybersecurity, data privacy, enterprise business systems, software development, and enterprise architecture, with recent leadership experience in information, cybersecurity, or the data privacy fields. 3) A minimum of 10 years of experience managing people including 5 years in senior management or leadership role managing cross-functional teams or projects and influencing senior-level management and key stakeholders. Ability to lead and manage staff and projects effectively, set priorities, assess performance, guide staff development, and make budgetary recommendations. 4) Demonstrated experience overseeing large-scale technology service delivery of high complexity at the enterprise level. 5) Demonstrated experience and commitment to fostering collaboration and employee engagement at the division level 6) Ability to lead and motivate the division to develop a culture and dynamic to embrace change as it embarks on its digital transformation journey 7) Ability to balance competing interests among a variety of clients and readily readjust priorities to respond to pressing and changing client demands. Must be able to anticipate and meet the clients' needs while maintaining high-quality end products. 8) Exceptional organization savvy and agility as demonstrated by ability to manage across organizational boundaries, building high performing teams, diminishing organizational silos, strengthening teams, and facilitating effective group and team dynamics. 9) Requires the ability to communicate effectively, both orally and in writing, with all levels of staff and management. IV. BOARD COMPETENCIES: 1) Decision Quality: Makes timely, thoughtful, strategic decisions 2) Learning Agility: Takes responsibility for building organizational agility 3) Drive for Excellence: Delivers results by developing shared vision and direction for the organization 4) Perspective and Strategic Agility: Leads and acts with the future in mind 5) Collaborative Relationships: Sets the tone for collaborative organization 6) Effective Communication: Effectively speaks and acts on behalf of the Board V. OFFICER SPECIFIC POSITION RESPONSIBILITIES: 1) Acts as responsible steward to the function, Division, and Board by demonstrating proficiency in the Board's espoused competencies. 2) Balances and mitigates key organizational and functional risks where appropriate and develops and executes sustainable risk mitigation strategies. 3) Fosters a continuous learning culture. 4) Exercises appropriate judgement and decision-making in complex situations. 5) Demonstrates innovation and thought leadership relevant to future state organizational and functional people strategies. 6) Demonstrates strong leadership and management skills aligned to The Board's espoused values. 7) Keeps skills and knowledge current and aligned to best practices relative to key rules, regulations, and policies, as well as economic, political, and social trends that affect the organization. Understands near term and long-term needs for the organization and determines how operations should be positioned to meet such needs. 8) Demonstrates proficiency in political savvy, organizational savvy, and interpersonal communication skills. VI. PERSONAL RELATIONSHIPS: 1) Has frequent contact with members of the Board, both in discussions and through memoranda, regarding matters pertaining to area of responsibility. 2) Has regular contact with a11 staff in the function to stay connected to the pulse of the division, provide leadership, and act as a role model. 3) Has frequent contact with senior staff and other professionals in the division, elsewhere at the Board, and the Reserve Banks regarding matters pertaining to area of responsibility. 4) Has frequent contact with individuals from other federal agencies, international organizations, and in the private sector regarding the subject matters in area of responsibilities VII. INTERNAL MANAGEMENT RESPONSIBILITIES: 1) Participates in the development of the division's strategic plan, goals, and budget. Recommends program objectives and their priorities for area of responsibility. 2) Provides guidance, coaching, and feedback to, and conducts performance reviews for managers, supervisors, and other direct rep01is, and ensures same is provided to all function staff. 3) Responsible for accomplishing approved program objectives for area of responsibility within the financial and personnel resources allocated by the Board and the division's senior management. 4) Recommends personnel actions involving promotions, reclassifications, merit increases, and reassignments or separations in area of responsibility. VIII. POSITION DEMANDS: 1) Ability to communicate effectively, both orally and in writing, to the Board and individual members thereof, senior Board staff, other Board and Reserve Bank staff: and staff at other government agencies and in the private sector on complex and technical matters. 2) Ability to be an effective spokesperson and advocate for the Board and the division in outside contacts, which may involve significant business dealings. 3) Ability to operate under pressure to meet deadlines accurately and in a timely manner. 4) Ability to translate customer service and organizational development theories and best practices into effective strategies for adoption in area of responsibility to achieve and maintain high levels of customer service. 5) Ability to exercise independent and sound judgment in establishing objectives for assigned areas of responsibility that provide support and services for the divisions and Board's missions.
Clark County
Vancouver, WA
Job Summary
Clark County’s Information Technology Department is seeking a 2-year project term Cybersecurity Analyst. In this position, be responsible for monitoring multiple cyber security tools that watch for potential security risks, recommending mitigation and/or countermeasures, and resolving security integration issues related to the implementation of new systems within the County's infrastructure. You will help develop guidelines and identify standards that will be used by members of IT and other departments across the County to help meet our cybersecurity goals.
As the Cybersecurity Administrator, your authority and scope of responsibility will often cross all organizational lines. As such this position will report directly to the County CISO (currently the Director of Information Technology).
Qualifications
This position will be responsible for the following areas:
Takes a proactive approach to problem resolution, identifies potential problems before they occur, provides recommendations for resolution, and drives implementation.
When required, escalates problems in a timely manner in order to ensure the adequate handling of incidents/problems to mitigate the impact on County operations.
Help identify and implement required security changes within the infrastructure of County network, systems and applications.
Writes new security specific policies and procedures for the County, as well as reviewing and updating existing policies with the help of IT functional managers and CIO.
Evolve and maintain a log management system as part of the SIEM solution to meet both regulatory security compliance and County cybersecurity requirements.
Provide enterprise-wide cyber monitoring, analytics, and coordination capability.
Provide security incident response monitoring to examine designated dashboards, events, and logs to identify and escalate potential indicators of security compromise.
Conduct investigations into potential cyber incidents including building documentation of findings and required remediation efforts.
Participate in incident response during cyber incidents.
Support forensic analysis and evaluate/deconstruct malware through open-source and vendor-provided tools.
Review intrusion detection signatures to identify those specific indicators that are unique to a particular exposure or zero-delay vulnerability, delivering threat and awareness/education briefings, coordination of process development, and technical writing.
Perform cybersecurity evaluations on all new software applications at the County prior to purchase.
Provides responsive, transparent support to ensure excellent customer service.
Conduct vulnerability scans and recognize vulnerabilities in security systems.
Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)..
For complete job announcement, application requirements, and to apply on-line, please visit our website at:
https://www.clark.wa.gov/human-resources/explore-careers-clark-county
Salary Grade: IT Guild.T4 ($7,217.00 - $9,470.00) per month
Job Summary
Clark County’s Information Technology Department is seeking a 2-year project term Cybersecurity Analyst. In this position, be responsible for monitoring multiple cyber security tools that watch for potential security risks, recommending mitigation and/or countermeasures, and resolving security integration issues related to the implementation of new systems within the County's infrastructure. You will help develop guidelines and identify standards that will be used by members of IT and other departments across the County to help meet our cybersecurity goals.
As the Cybersecurity Administrator, your authority and scope of responsibility will often cross all organizational lines. As such this position will report directly to the County CISO (currently the Director of Information Technology).
Qualifications
This position will be responsible for the following areas:
Takes a proactive approach to problem resolution, identifies potential problems before they occur, provides recommendations for resolution, and drives implementation.
When required, escalates problems in a timely manner in order to ensure the adequate handling of incidents/problems to mitigate the impact on County operations.
Help identify and implement required security changes within the infrastructure of County network, systems and applications.
Writes new security specific policies and procedures for the County, as well as reviewing and updating existing policies with the help of IT functional managers and CIO.
Evolve and maintain a log management system as part of the SIEM solution to meet both regulatory security compliance and County cybersecurity requirements.
Provide enterprise-wide cyber monitoring, analytics, and coordination capability.
Provide security incident response monitoring to examine designated dashboards, events, and logs to identify and escalate potential indicators of security compromise.
Conduct investigations into potential cyber incidents including building documentation of findings and required remediation efforts.
Participate in incident response during cyber incidents.
Support forensic analysis and evaluate/deconstruct malware through open-source and vendor-provided tools.
Review intrusion detection signatures to identify those specific indicators that are unique to a particular exposure or zero-delay vulnerability, delivering threat and awareness/education briefings, coordination of process development, and technical writing.
Perform cybersecurity evaluations on all new software applications at the County prior to purchase.
Provides responsive, transparent support to ensure excellent customer service.
Conduct vulnerability scans and recognize vulnerabilities in security systems.
Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)..
For complete job announcement, application requirements, and to apply on-line, please visit our website at:
https://www.clark.wa.gov/human-resources/explore-careers-clark-county
Salary Grade: IT Guild.T4 ($7,217.00 - $9,470.00) per month