Information Technology Security Administrator - Senior Cybersecurity Engineer

ABOUT THE POSITION

The Clark County Department of Aviation (DOA) is seeking qualified candidates for the Information Technology Security Administrator position. This role is crucial for providing information technology security administration and enhancing DOA’s network security, cybersecurity operations, and risk and compliance programs. Responsibilities include maintaining and advancing the DOA’s cybersecurity programs such as Security Information Event Management, Network Security, Endpoint Detection and Response, Email Security, Incident Response, Vulnerability Management, Application Security, Cloud Security, Threat Hunting and Intelligence, OSINT, Infrastructure Protection, and Cybersecurity Awareness Training. Additionally, the successful candidate will engage in various cybersecurity initiatives, projects, and other duties as assigned, contributing significantly to the DOA’s cybersecurity posture.

THIS IS AN OPEN AND CONTINUOUS RECRUITMENT; SCHEDULING DATES WILL VARY DEPENDING ON WHEN THE APPLICATION WAS RECEIVED AND REVIEWED BY EMPLOYEE SERVICES.

Note: This position is confidential and excluded from membership in the union. Further, this classification is designated exempt under the Fair Labor Standards Act (FLSA), and is therefore, not eligible for overtime.

This examination will establish an Open Competitive Eligibility list to fill the current vacancy located in the Information Systems (IS) division, and/or future vacancies that may occur within the next six (6) months or may be extended as needed by Employee Services.

Employee Services reserves the right to call only the most qualified applicants to the selection process.

MINIMUM REQUIREMENTS

Education and Experience:

Bachelor's Degree in Computer Science or Management Information Systems, or related field AND three (3) years full-time professional level experience in computer security administration, including contingency planning, preferably in a large mainframe multiprocessing environment. Possession at time of application and maintenance of a Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) is preferred and may be substituted for education or experience up to five (5) years. Possession at time of application and maintenance of a CompTIA Security+ certification may be substituted for education or experience up to two (2) years. Additionally, professional level experience and/or education that has provided the skills and knowledge necessary to perform all job functions at this level may be substituted on a year-for-year basis up to two (2) years.

All qualifying education and each experience must be clearly documented in the “Education” and “Work Experience” sections of the application. Do not substitute a resume for your application or write "see attached resume" on your application. All details must be written in your own words and cannot be copied from job descriptions or other external sources.


Licensing/Certification: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), CompTIA Security+ or similar are preferred.

Working Conditions: Work extended shifts or be called back in emergency situations.

Pre-Employment Drug Testing: Employment is contingent upon the results of a pre-employment drug examination.

Residency Requirement: Permanent employees must maintain a principal place of residency within the boundaries of Clark County and provide proof of compliance with Nevada motor vehicle registration and drivers' license laws within 90 days of employment.

Citizenship: Candidates must be legally authorized to work in the United States. Please note, Clark County does not provide H1B visa sponsorships or transfers for any employment positions.

Background Check: Employment with the Department of Aviation is contingent upon completion of an education/experience background investigation, a fingerprint-based criminal history record check processed by the FBI, and upon the ability to be granted and maintain a security badge as mandated by the Transportation Security Administration. Note: all prospective hires must present two original government issued ID's upon acceptance of job offer. Examples of acceptable ID's include a Passport, Driver's License or DMV issued ID, birth certificate, Social Security card, Voter Registration card, school issued ID with picture, etc.

Customs and Border Protection Security Seal Program: Employment with the Department of Aviation in this job title is contingent upon a ten year employment and five year residency history record check and the ability to present original identity based documentation in order to meet the requirements for a Security Seal.

PHYSICAL DEMANDS

Mobility to work in a typical office setting, use standard office equipment, and to drive a motor vehicle; vision to read printed materials and a computer screen; and hearing and speech to communicate in person or over the telephone. Must be capable of traveling to and from various County locations to visit work sites and attend meetings. Accommodation may be made for some of these physical demands for otherwise qualified individuals who require and request such accommodation.

EXAMPLES OF DUTIES

Department of Aviation:

• Serves as an expert advisor to senior management in the development, implementation and maintenance of an information security infrastructure ensuring best practice control objectives for system integrity, availability, confidentiality, accountability and assurance within the context of the airports risk tolerance.
• Identifies and proposes key information security program priorities, initiatives, plans, practices and tools.
• Oversees execution of approved information security project plans and provides regular status reporting on progress of such projects.
• Implement and manage cybersecurity tools such as firewalls, endpoint detection and response, email security, configuration management, continuous monitoring, cloud security, application security, and related items.
• Provides guidance (e.g., information security risk severity assessments / relative cost benefit analysis etc.) and provides recommendations regarding prioritization of system security infrastructure investments that mitigate risks, strengthen defenses and reduce vulnerabilities.
• Drafts and proposes organizational information security strategy and action plans based on relevant risk assessment and gap analysis.
• Develops, publishes, and maintains comprehensive information security standards, policies, procedures and guidelines.
• Acts as the primary control point during follow-up on significant information security incidents, oversees development of response plans and provides timely update reporting.
• Advises the management team on risk issues that are related to information security and recommends actions in support of the wider risk management programs.
• Collaborates with stakeholders and industry partners (e.g., ACI, IATA, A4A, etc.) to ensure information security risks in both ongoing and planned operations are properly considered and that all compliance matters are being adhered to as required.
• Monitors information security trends and evolving technologies as well as keep senior management informed about related information security issues.
• Understands potential and emerging information security threats, vulnerabilities, and control techniques and communicates this information to appropriate team members on a timely basis.
• Provides guidance in the event of a security breach, dealing with all relevant requirements (Federal, State and local) as appropriate.
• Maintains relationships with local, state, and federal law enforcement and other related government agencies as needed.
• Engages and directs outside consultants as appropriate on information security audits.
• Conducts regular and ongoing monitoring of and reporting on compliance with information security standards and policies.
• Collaborates with internal security and/or auditing personnel as relevant to information security matters.
• Directs the development and enforcement of information security and privacy policies in compliance with federal, state and local regulations and standards.

Clark County:

• Establishes and maintains security and business recovery policies and procedures.
• Provides security and control measures across multiple computer platforms (e.g. enterprise server, client server, network, Internet/Intranet, and desktop).
• Monitors access and use of County information. Implements logging/tracking mechanisms for intrusion detection.
• Maintains Clark County's Business Recovery Plan.
• Provides on-going testing of the Business Recovery Plan at the enterprise level (infrastructure organization and teams, hot-site recovery operations) and department level (checklist tests, simulations/structured walk-throughs).
• Monitors backup and recovery procedures (enterprise server, mid-range computers, PCs, and networks).
• Conducts periodic security assessments and disaster recovery preparedness reviews to evaluate effectiveness and compliance with security and business recovery measures. Incorporates security requirements from governmental and external agencies.
• Maintains security and business recovery related files, reports, policy manuals, and documentation.
• Provides liaison with Internal Audit, Office of Emergency Management and Risk Management on security/ business recovery issues and breaches of security.
• Monitors security and disaster recovery developments in the industry.
• Provides lead direction and coordination to other information technology staff throughout the County.
• Provides management with a clear view of security threats/solutions.
• Promotes the concept of information as an asset or resource.
• Provides awareness of County's exposure should there be an extended disruption of the County's business functions or information technology capabilities.
• Assists in planning goals, objectives, procedures and work standards for the unit; provides input into the unit's budget.
• Contributes to the overall quality of the section's service provision by developing and coordinating work teams and by reviewing, recommending and implementing improved policies and procedures.

May drive a County or personal motor vehicle in order to visit various work sites and attend meetings.

Join the Clark County Department of Aviation Family where we offer a comprehensive benefits package that includes:

• Alternative Work Schedules
• More Money in Your Pocket
  • 100% Employer Paid Defined Benefit Retirement
  • No Social Security Deduction
  • No State Income Taxes
• Two Employer Sponsored Health Plans Offered - Choice of PPO or EPO (hybrid of HMO) - eligible first of the month following 15 days of employment
  • Medical - Employer pays 90% of premium
    • Pharmacy Benefits (30, 90-day retail or mail order fills)
    • 24/7 Telephone Advice Nurse - no employee cost
    • Teledoc, Doctoroo, and Dispatch Health
• Retiree insurance - eligible after 5 years of service
• Dental
• Vision
• Life Insurance - Employer Paid
• AD&D - Employer Paid
• Long Term Disability - Employer Paid
• Generous Leave Accruals that include:
  • 13 Paid Holidays plus a Floating Birthday Holiday
  • Paid Vacation Leave
  • Paid Sick Leave
  • Holiday Leave
• Other leave options
  • Catastrophic Leave
  • Parental Leave - Up to 90 days
• Tool Allowance for certain eligible positions.
• Wide Variety of Voluntary Benefits that include
  • Guardian - Accident, Cancer, Critical Illness, Hospital Indemnity, and Short-Term Disability Insurance.
  • Trustmark - Permanent Life Insurance benefits and long-term care.
  • Sunlife Financial - Basic and Voluntary Life Insurance, AD&D, and long-term disability insurance
  • TASC - Flexible Spending Account - FSA & Dependent Day Care Debit Card Available
  • Morgan Stanley - Deferred Compensation Plan
• Employee Assistance Program
• The Department of Aviation, a department of Clark County, is an affirmative action/equal opportunity employer
• Community Volunteer Opportunities
• Comprehensive training program
• Wellness program

Closing Date/Time: Continuous

• 

• Harry Reid International Airport

Show more