SUMMARY Ensure information technology security based on confidentiality, integrity and availability of enterprise data center, Local Area Network (LAN) and Wide Area Network (WAN). Assist interdepartmental groups with the implementation and management of system security requirements. Monitor the health and performance of IT security systems such as Network Intrusion Prevention Systems (IPS), Security Information and Event Management (SIEM), and Antivirus Systems. Coordinate efforts to remediate security risks and vulnerabilities with teams throughout the district.
ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties may be assigned.
Manage the secure implementation of District-wide enterprise network systems and applications such as directory services, system access, messaging, content filtering, databases, and web services.
Build and maintain a quarterly internal technical auditing process. Audit servers, workstations, wired and wireless networking infrastructure. Develop a process for tracking remediation efforts. Assist in procuring and implementing an industry standard vulnerability management suite such as NESSUS or Qualys.
Configure and maintain Splunk log management system. Define system logging requirements based off best practices and PCI, HIPAA compliances. Correlating log files to ensure connected systems are collecting the appropriate events. Monitor the events for system performance and possible security vulnerabilities.
Document, maintain and proactively monitor the network intrusion prevention system to limit the spread malicious code and network degradation including policies. Escalate known network abnormalities to the appropriate teams as necessary.
Review antivirus logs to detect, quarantine and eradicate virus and malicious code collaborating with IT and Technology team members to remediate system security anomalies.
Assist in the development of mobile device security requirements for administrators, teachers, and students.
Maintain and assist the Information Security Manager with managing the end-user security awareness-training program.
Perform PCI DSS and PA-DSS self-assessments.
Attend technical classes and seminars in support of District security implementations, consistent with industry best practices. Research network security software, hardware, and security issues to maintain awareness of latest emerging technologies. Make recommendations to support District objectives. Maintain applicable vendor certifications.
Consult with other departments in the District on hardware and software purchases, including Food Service, Human Resources, and Assessment.
Perform other duties as assigned.
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
EXPERIENCE 5 years minimum experience in network administration, including 3 years experience in IT security.
EDUCATION AND TRAINING Bachelor's degree in Computer Science, Engineering, Business equivalent life experience will be considered.
CERTIFICATES, LICENSES, REGISTRATIONS Cisco Certified Security Professional, Microsoft Certified System Administrator, Security Plus, GSEC preferred for hire. Valid Colorado driver's license.
SKILLS, KNOWLEDGE, & EQUIPMENT Must have advanced knowledge of securing computers, networks, and management information systems. Ability to secure and manage District-wide infrastructure in order to protect productivity and reduce costs. Complex system engineering knowledge of perimeter security, virtual private networks, intrusion protection as well as the combination of these technologies in a single, integrated solution. Knowledge of IBM, HP, and Dell server and PC hardware, Microsoft Enterprise Software, and Cisco hardware required for hire.
DECISION MAKING Assist Information Security manager with the proactive security oversight and management of critical network systems. Must be able to mitigate threats and vulnerability that expose the District to inconsistent confidentiality, availability and data integrity. Critical decisions are made daily that impact students and employees of the District. Errors could potentially result in substantial embarrassment and/or cost to the District.
COMMUNITY RELATIONS Daily contact with classified staff within/outside department to discuss routine internal matters, obtain/furnish information, resolve routine corrections/adjustments, and interpret policy; and with advisory committees to discuss routine internal matters, obtain/furnish information, resolve routine corrections/adjustments, interpret policy, recommend policy, and negotiate controversial matters. Weekly contact with professional staff within department to discuss routine internal matters, obtain/furnish information, and resolve routine corrections/adjustments; and school support team and vendors, contractors, engineers and developers to discuss routine internal matters, obtain/furnish information, resolve routine corrections/adjustments, interpret policy, recommend policy, and negotiate controversial matters. Monthly contact with professional staff outside department to discuss routine internal matters, obtain/furnish information, resolve routine corrections/adjustments, interpret policy, and maintain relationships.
SPAN OF CONTROL This position does not have supervisory responsibilities.
EDUCATIONAL DELIVERY Provides information security expertise for educational technology, educational resources, staff development training, Transportation, Special Education, Health Services, Human Resources; and all employees, students, teachers, administrators, parents and community. This position maintains confidentiality, integrity and availability of District-wide electronic communication resources customized to the needs of the District. Critical areas of responsibility include but are not limited to secure District-wide system infrastructure, Internet and intranet content, voice mail, e-mail, PeopleSoft, and the Student Information System. The majority of time is not spent on the school site.
COMPLEXITY OF WORK Work is assigned by the Information Security Manager - assigning high-level duties, milestones, tasks and responsibilities during weekly staff meetings or via workflow automation software. Must have skills and abilities required to problem solve necessary steps for defending systems and networks against actively exploited computer based threats. Must have thorough understanding of intrusion detection and prevention technology as well as security management practices hardening operating systems and network devices.
The physical demands, mental functions, and work environment characteristics described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
PHYSICAL DEMANDS While performing the duties of this job, the employee is frequently required to stand; walk; sit; use hands to finger, handle, or feel; reach with hands and arms; climb or balance; stoop, kneel, or crouch; and talk or hear. The employee must occasionally lift and/or move up to 100 pounds. Specific vision abilities required by this job include close vision, distance vision, color vision, and ability to adjust focus.
MENTAL FUNCTIONS While performing the duties of this job, the employee is regularly required to compare, analyze, communicate, copy, coordinate, instruct, compute, synthesize, evaluate, use interpersonal skills, compile, and negotiate.
WORK ENVIRONMENT While performing the duties of this job, the employee is occasionally exposed due to working in data centers and construction areas to wet or humid conditions; work near moving mechanical parts, work in high, precarious places; fumes or airborne particles; toxic or caustic chemicals; outdoor weather conditions; extreme cold (non-weather); extreme heat (non-weather); risk of electrical shock; work with explosives; risk of radiation, and vibration. The noise level in the work environment is usually moderate.
Must apply online at http://www.jeffcopublicschools.org/employment/index.html to Job #594155 by 07/08/2013. Attach your cover letter and resume to the online application.