×

Please log in to continue...

Login

Information Systems Security Manager

Salary: $78,956.80 – $85,000.00 Annually

Location : 1769 East Moody Blvd. Bunnell, FL

Job Type: Full Time

Job Number: 00618

Department: Innovation Technology

Division: IT / GIS

Opening Date: 08/14/2023

Closing Date: 8/28/2023 11:59 PM Eastern

Description
This position is subject to budget approval. Start date 10/01/2023.

The Information Systems Security Manager (ISSM) is a highly motivated leader responsible for leading and managing the County Cyber Security program. The ISSM provides leadership and oversight in cyber security governance, strategic planning, execution, and assessment of all cyber security strategies, polices, procedures and guiding practices to be implemented by all departments in adherence to the organizations Vision, Mission, and Values. Is the focal point for internal and external technology audit processes, responses, and reporting. The ISSM will partner with and provide subject matter expertise to the CIO and consult with groups, including internal IT partners and division leaders to ensure the Cyber Security and regulatory compliance posture. This position is also responsible for security program management reporting and providing advisory services in matters of cyber security.
Examples of Duties

  • Advise the CIO on all cybersecurity matters for the County.
  • Implement the cybersecurity program for Flagler County and all its subordinate locations, and contracted constitutionals.
  • Establish and administer a forward-looking cybersecurity program to ensure Flagler County possesses and utilizes exemplary cybersecurity practices to responsibly carry out its mission.
  • Provide expert cybersecurity guidance for the County’s various departments, and information system vulnerability management for all County information systems and networks.
  • Execute all four project areas of the cybersecurity program (compliance, assessment and authorization, network security, and cybersecurity workforce).
  • You will be responsible for all cybersecurity inspections performed.
  • Ensure the confidentiality, integrity, and availability of systems, networks, and information through the planning, analysis, development, implementation, maintenance, and enhancement of security programs, policies, procedures, and tools.
  • Analyze, assess, and document information assurance capabilities and services of County information systems to establish compliance with information assurance requirements, identify vulnerabilities, and quantify risk.
  • Draft, review, or validate information security documentation such as systems security plans, risk assessments, disaster recovery plans, business continuity plans, and user security guides.
  • Provide higher-level authorities such as Authorizing Officials and Certifying Authorities with the information needed to make or recommend a continued accreditation decision during annual review.
  • Conduct system security audits that include evaluation of general computer controls and computing environments as they relate to Federal, State, and County information assurance requirements and processes.
  • Act on behalf of the Certifying Authority for the assessment and authorization auditing of information technology systems and networks.
  • Evaluate and document information systems internal and external controls, identify weaknesses, and develop cost effective recommendations for compliance.
  • Validate and verify secure systems and test security products and systems to detect security weaknesses.
  • Prepare reports of audit findings and communicate results of audits or special projects to management and higher-level authorities.
  • Promote awareness of security issues amongst management and ensure sound security principles are implemented to ensure protection of information.
  • Work closely with data owners, information system owners, and users to ensure secure use and operation of information systems and networks.
  • Ensure rigorous application of information assurance policies, principles, and practices in the delivery of all IT services.
  • Perform routine Cyber Awareness briefings to new County employees via the onboarding process.
  • Develops roadmaps and conduct yearly budget forecasting for maintenance, upgrades, and projects.
  • Manages special projects and performs other related duties, as assigned by the Chief Information Officer.
  • During emergencies, all employees are considered essential personnel and may be required to perform alternate duties.

Additional Job Duties

  • Supports the Emergency Operations Center (EOC) when activated as required. Perform related duties as required.

Minimum Qualifications

  • Bachelor’s degree in a relevant Information Technology field such as Computer Science, Cyber Security, or Information Management.
  • Five years of experience, preferred, managing a cyber security program in a government environment.
  • Current information security-related certification such as CompTIA Security+, CySA+, CASP, CISSP, etc.
  • Experience implementing NIST 800-53
  • A comparable amount of training or experience may be substituted for the minimum education qualifications.
  • Spreadsheet, database, and word processing operations using current Windows Office and Operating System Products.
  • Criminal Justice Information Systems Level 4 Certification or ability to obtain.
  • Must possess a valid State of Florida Driver’s License.

Flagler County is a drug free workplace, some positions may require a pre-employment drug screen.

Flagler County, Florida is an Equal Opportunity Employer. In compliance with the Americans with Disabilities Act, Flagler County, Florida will provide reasonable accommodations to qualified individuals with disabilities and encourages both prospective and current employees to discuss potential accommodations with the employer.
Supplemental Information
Knowledge,Skills, and Abilities

  • Advanced knowledge of applications, operating systems, network hardening, vulnerability assessments, security audits, and firewalls.
  • Knowledge of the Risk Management Framework (RMF) and ability to execute it in a local government environment.
  • Skill deploying and managing a cyber security authorization program.
  • Ability to communicate cyber security concepts, frameworks, and design principles to audiences outside the field and with all levels of the County structure.
  • Ability to write clear and concise reports.
  • Ability to understand and carry out written and oral instructions.
  • Ability to identify and correct problems as they arise.
  • Ability to be a team player and share knowledge freely with colleagues.
  • Ability to adapt to dynamic and unpredictable situations and provide critical thinking and troubleshooting.
  • Ability to establish and maintain effective working relationships with County officials, department personnel, customers, and consultants.

These essential functions are not to be construed as a complete statement of all duties performed. All employees will be required to perform other job-related duties as required.

Physical Requirements
Physical demand: Sedentary

  • 25 lbs. maximum lifting.
  • Occasional lifting, carrying, pushing and pulling.
  • Occasional walking or standing may be required.
  • Expressing or exchanging ideas by spoken word or perceiving sound by ear.
  • Good eyesight for production or safety of self and others.

Flagler County offers the following benefits to its employees:

Generous medical plan
Dependent benefits available at reasonable rates
$15,000 life insurance policy available at no cost to the employee
Additional life insurance benefits for the employee and/or dependents are available at the employee’s cost
Dental and vision plans are offered on a voluntary basis at the employee’s cost at group rates
Full-time regular employees accrue 20 personal leave days per year up to the maximum allowable accruals
Eligible part-time regular employee accruals are prorated accordingly
Onsite Employee Health & Wellness Center
Flexible Spending Account

01

Do you possess a Bachelor’s degree in a relevant Information Technology field such as Computer Science, Cyber Security, or Information Management?

  • Yes
  • No

02

If you answered yes to previous question, in what discipline is your degree?

03

Do you possess five years of experience managing a cyber security program in a government environment? If yes, please list in the work history section of your application.

  • Yes
  • No

04

Do you possess current information security-related certification such as CompTIA Security+, CySA+, CASP, CISSP, etc? If yes, please upload a copy of certification with your application.

  • Yes
  • No

05

Do you possess experience implementing NIST 800-53?

  • Yes
  • No

06

Do you possess Criminal Justice Information Systems Level 4 Certification or have the ability to obtain?

  • Yes
  • No
  • Ability to obtain

07

Do you possess a valid State of Florida Driver’s License? If yes, please upload a copy of license with application.

  • Yes
  • No

08

All required licenses and certifications must be uploaded with application in order to move forward in hiring process. Have you completed this step?

  • Yes
  • No

Required Question

Job Category
Computer and IT
Job Type
Full Time/Permanent
Salary
USD 78,956.80 - 85,000.00 per year
Country
United States
City
Bunnell
Career Level
unspecified
Company
Flagler County
JOB SOURCE
https://www.governmentjobs.com/careers/flaglercounty/jobs/4163019