AMVETS Jobs

Security Specialist

Print (https://www.governmentjobs.com/careers/ramsey/jobs/newprint/4558882)

Apply



Security Specialist

Salary

$75,861.68 - $112,601.16 Annually

Location

(Metro Square) Saint Paul, MN

Job Type

Full Time

Remote Employment

Flexible/Hybrid

Job Number

2024-00652

Department

45H01-Info Svcs/SecurityAdmin

Opening Date

07/03/2024

Closing Date

7/17/2024 11:59 PM Central

• Description

• Benefits

• Questions

Basic Function

The current vacancy is in the Information Security Department. The eligibility list created by this vacancy may be used to hire other vacancies in the department or County.

Join Our Team as an Information Security Specialist!

Are you passionate about safeguarding critical systems and data? Do you thrive in a dynamic environment where you can make a significant impact? Look no further! At Ramsey County, we’re seeking an experienced Information Security Specialist to join our team.

Position Overview: As an Information Security Specialist, you’ll play a pivotal role in maintaining the confidentiality, integrity, and availability of our systems. Here’s what you’ll be responsible for:

• Security Reviews and Controls:

• Collaborate with project teams to assess and enhance information security controls during system design and implementation.

• Document security processes and ensure compliance with County standards.

• Incident Response and Threat Mitigation:

• Analyze and respond to security violations promptly.

• Identify trends and exposures, making recommendations to eliminate threats.

• Evaluate and report on information security risks, ensuring compliance with regulatory requirements.

• Technical Expertise and Leadership:

• Serve as a subject matter expert in the security domain.

• Lead security-related projects, providing technical direction to the team.

• Continuous Learning and Proactive Mitigation:

• Stay informed about emerging threats, industry trends, and technologies.

• Collaborate with colleagues to proactively mitigate risks.

• Metrics and Access Control:

• Generate security reports to support decision-making.

• Define appropriate access privileges based on job roles and control structures.

• Risk Assessment and Collaboration:

• Participate in assessing potential threats and risks to County systems.

• Collaborate on critical IT projects to address security issues throughout their lifecycle.

Flexible Workplace

This position is identified under the designation of ‘flex work eligible’, meaning that the employee can formally opt to be in-office full-time or work a flex schedule in which at least two-days per week are performed in office and other days can be performed in a remote-first environment. Regardless of selection, the position carries expectations regarding on-site responsibilities and will require schedule flexibility beyond the minimum expectations set forth in the county’s flexible workplace policy. To view Ramsey County’s Flexible Workplace policy, go to: Flexible Workplace policy.

If an internal candidate is selected, salary will be set in accordance with the personnel rules (i.e., promotion, transfer, or voluntary reduction).

To view or print a copy of the complete Ramsey County job (class) description for this position, go to: Job Descriptions (http://www.governmentjobs.com/careers/ramsey/classspecs) . Once at this page, you can browse the alphabetical list or search for a job description.

Examples of Work Performed

• Perform information security reviews with project teams to design, implement and document systems and processes to ensure they provide the County with appropriate information security controls, and mitigation of risk.

• Analyze, document, and respond to security violations, identify trends or exposures and make recommendations to eliminate security threats.

• Identify, evaluate, and report on information security risks in a manner that meets compliance and regulatory requirements.

• Utilize and perform monitoring of security and risk management tools.

• Serve as a technical subject matter resource providing expertise in the security domain and provide technical direction and lead work on security related projects.

• Research and stay abreast of potential information security threats, industry trends, emerging technologies, and response alternatives; participate as a team member in proactively mitigating their impact.

• Run security reports to provide metrics to support decisions.

• Protect systems by defining access privileges are appropriate based on job role, control structures, and resources.

• Participate in the assessment of potential threats and risks to County systems and the management of those risks.

• Collaborate on critical IT projects to ensure that security issues are addressed throughout the project life cycle.

• Assist in the review, implementation, and enforcement of county-wide information security policy, procedures and standards consistent with state statute and federal law.

• Provide input into the evaluation of County security needs to determine appropriateness, compatibility, and potential issues.

• Work in an advisory role in application development or acquisition projects to assess security requirements and controls to ensure that security controls are implemented as planned.

• Evaluate alternative solutions to achieve client objectives and provide recommendations for appropriate security controls.

• Provide individual or group instruction to both technical and departmental customers as needed on security threats and vulnerabilities; draft guidance documents to mitigate threats and vulnerabilities.

• Perform other duties as assigned.

(The work assigned to a position in this classification may not include all possible tasks in this description and does not limit the assignment of any additional tasks in this classification. Regular attendance according to the position's management approved work schedule is required.)

ESSENTIAL FUNCTIONS: 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 12, 13, 15.

Minimum Qualifications

Education: Bachelor's degree in Management Information Systems, Computer Science, or a related field.

Experience: Five years of progressive experience in an information security role.

Substitution: Two years of post-secondary education in Management Information Systems, Computer Science or related field and two additional years of experience in an information security role would substitute for the bachelor's degree requirement.

Certifications/Licensure: None.

Preferred Experience: Prior experience with security event monitoring, web filtering, vulnerability management, and antivirus software. Completion of a professional certification such as Certified Information Systems Security Professional (CISSP), Certified Information System Auditor (CISA), or other information security credentials.

Exam/Screening Process Information

The examination process will consist of the following section with each section weighted as indicated:

• Training and Experience Rating = 100%

The examination for Security Specialist will consist of a training and experience rating, comprised of the questions in the attached supplemental questionnaire. Not all applicants who meet the minimum qualifications will pass the training and experience rating. The rating on this supplemental questionnaire will depend on your answers to the questions – do not mark “see resume” or “see work history” as a response. Please answer all your questions clearly and completely. Failure to respond could affect your score and final rank on this examination.

Eligible List: The names of all applicants who filed a properly completed application and passed the examination/screening process shall be placed on the eligible list for an employment opportunity as a Security Specialist This list will be certified to the appointing authority which may use this list to conduct interviews to fill a vacancy. Candidates will remain on the list for 30 days or until hired, whichever occurs first. A notice will be sent to applicants at the time the eligible list is posted, informing them that the list has been posted and their rank on the list.

Veteran's Preference: This is a classified position requiring an open, competitive selection process. Veteran's Preference points will be applied after a candidate passes the examination process. Applicants who are eligible for veteran's preference should update their veteran's DD214, and other supporting documents, and submit them as an attachment at the time of application.

Criminal Background Checks: All employment offers are conditioned upon the applicant passing a criminal background check. Convictions are not an automatic bar to employment. Each case is considered on its individual merits and the type of work sought. However, making false statements or withholding information will cause you to be barred from employment, or removed from employment.

E-Verify Participation: Ramsey County participates in the federal E-Verify program. This means that Ramsey County will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee's Form I-9 to confirm work authorization. If the Government cannot confirm that you are authorized to work, Ramsey County is required to give you written instructions and an opportunity to contact DHS and/or the SSA before taking adverse action against you, including terminating your employment. Employers may not use E-Verify to pre-screen job applicants and may not limit or influence the choice of documents you present for use on the Form I-9.

Equal Opportunity Employer: Ramsey County provides equal access to employment, programs, and services without regard to race, color, creed, religion, age, sex (except when sex is a Bona Fide Occupational Qualification), disability, familial or marital status, sexual orientation or gender identity, public assistance status, place of residence, political affiliation, or national origin.

Ramsey County is deeply committed to advancing racial equity and promoting diversity and inclusion within all areas of its workforce. The county strives being equitable, inclusive, transparent, respectful, and impactful in how we serve and engage with residents, as well as Ramsey County employees. Advancing racial equity ensures all people who need access to opportunities and services we provide, will receive them. Racial equity is achieved when race can no longer be used to predict life outcomes, and outcomes for all are improved.

To print a paper application for this posting click Paper Application (https://www.ramseycounty.us/sites/default/files/Departments/Human%20Resources%20Dept/RAMSEY%20COUNTY%20EMPLOYMENT%20APPLICATION.pdf) . You will need to print this posting AND answer the supplemental questions associated with this exam and submit them with your completed paper application.

For further information regarding this posting, please contact Megan.Simmons@co.ramsey.mn.us