Address
Form of workSalary: $97,721.52 - $159,016.00 Annually
Location : Mesa, AZ
Job Type: Full Time
Job Number: 13771
Department: (H155)Innovation and Technology
Opening Date: 10/13/2023
Closing Date: Continuous
Description/Duties
This classification has been designated as a non-classified, non-merit system, at-will position. First review of applications will be Monday, November 6, 2023.
The Chief Information Security Officer (CISO) assists the Chief Information Officer in overseeing information risk management for the organization. The CISO is responsible for establishing and maintaining the enterprise vision, strategy, and security program to ensure information assets and technologies are adequately protected. The CISO directs staff in identifying, developing, implementing, and maintaining processes across the enterprise to reduce information and Information Technology (IT) risks. Duties include: managing the development, implementation, and maintenance of the City's Information Security and privacy policies, standards, guidelines, baselines, processes, and procedures in compliance with state and federal regulations and standards; developing and leading the City's incident response and investigation procedures and processes; assisting in the development of disaster recovery and business continuity plans and procedures; serving as a member of the leadership team and communicating security related concepts to a broad range of technical and non-technical employees; overseeing the City's Information Security Program; monitoring and reporting on Information Security activities and compliance across all City departments; performing security assessments on the acquisitions of technology products, tools, and services; providing guidance and advocacy of security issues regarding prioritization of infrastructure investments that impact Information Security; monitoring Information Security trends and keeping the City's senior management informed about security related issues and activities affecting the City of Mesa; understanding potential threats, vulnerability, and control techniques; serving as liaison to local, state, and federal law enforcement and other related government agencies on Information Security related issues; and developing and administering a Citywide Information Security training and awareness program. The CISO also responds to security incidents, establishes appropriate standards and controls, manages security technologies, directs the establishment and implementation of security policies and procedures, maintains information-related compliance, and performs related duties as required.
Excellent communication skills are essential in dealing with both internal and external parties. Incumbents must possess sufficient communication skills and business and technical knowledge in order to communicate meanings and impact using both business and technical terminology. Incumbents work independently and with initiative in performing day-to-day responsibilities to meet the continuous demands associated with the completion of simultaneous projects and requests for a variety of resources. Work is performed under the general direction of the Chief Information Officer, but considerable freedom is given to exercise independent judgment and initiative. Employees in this class are required to be available on a 24-hour basis to cover emergency situations. This class is FLSA exempt-administrative.
About the Ideal Candidate: The City of Mesa is a dynamic organization and as such, we are constantly improving existing services and offering new ones. The CISO will need to understand what these changes are and ensure that Mesa's cybersecurity program accounts for them. Additionally, the ideal candidate:
Qualifications & Requirements
Employee Values: All employees of the City of Mesa are expected to uphold and exhibit the City's shared employee values of Knowledge, Respect, and Integrity.
Minimum Qualifications Required. Any combination of training, education, and experience equivalent to graduation from an accredited college or university with a Bachelor's Degree. Extensive (5+ years) of progressively responsible professional experience in Information Security and privacy for a large enterprise. Considerable (3 - 5 years) experience in managing and/or supervising staff.
Special Requirements. Must possess a valid Class D Arizona Driver's License by hire or promotion date. For this position, an individual receiving a conditional offer of employment from the City of Mesa must pass a background investigation through the City of Mesa Police Department, the Arizona Department of Public Safety, and Federal Bureau of Investigation prior to commencing employment with the City of Mesa.
Preferred/Desirable Qualifications. Graduation from an accredited college or university with a Master's Degree in Information Security, Computer Science, Information Systems, or a related field is preferred. Experience with presentations, project management, team facilitation, budgeting, and training are highly desirable. Experience or training in customer service techniques is also desirable. Certified Information Systems Security Professional (CISSP) or other related security accreditation/certification is highly desirable.
Link to Job Description
A is linked here.
01
Did you graduate from an accredited college or university with a Bachelor's Degree (or higher)? Please detail your degree information in the Education section of your application.
02
How many years do you have of progressively responsible professional experience in Information Security and privacy for a large enterprise? Please detail your experience on your application.
03
Please describe your progressively responsible professional experience in Information Security and privacy for a large enterprise, including employer(s). Please also detail this experience on your application. If none, type N/A.
04
How many years of experience do you have in managing and/or supervising staff? Please detail your supervisory/managerial experience in the Work History section of your application, including the number of employees supervised.
05
Do you have a valid Class D Arizona Driver's License, or can you obtain one by hire or promotion date?
06
Please describe your previous experience leading cybersecurity programs at an organizational level, including a brief description of the scope and scale of those responsibilities. If none, type N/A.
07
Please describe your experience leading or managing privacy initiatives at an organizational level, including employer(s). If none, type N/A.
08
Please describe your program management experience with previous organizations, especially around cybersecurity and/or data privacy initiatives, including employer(s). If none, type N/A.
09
Please describe your experience with presentations, project management, team facilitation, budgeting, training, and customer service techniques, including employer(s). If none, type N/A.
10
Please list any security-related accreditations/certifications (example: Certified Information Systems Security Professional (CISSP)) you possess. If none, type N/A.
Required Question
Location : Mesa, AZ
Job Type: Full Time
Job Number: 13771
Department: (H155)Innovation and Technology
Opening Date: 10/13/2023
Closing Date: Continuous
Description/Duties
This classification has been designated as a non-classified, non-merit system, at-will position. First review of applications will be Monday, November 6, 2023.
The Chief Information Security Officer (CISO) assists the Chief Information Officer in overseeing information risk management for the organization. The CISO is responsible for establishing and maintaining the enterprise vision, strategy, and security program to ensure information assets and technologies are adequately protected. The CISO directs staff in identifying, developing, implementing, and maintaining processes across the enterprise to reduce information and Information Technology (IT) risks. Duties include: managing the development, implementation, and maintenance of the City's Information Security and privacy policies, standards, guidelines, baselines, processes, and procedures in compliance with state and federal regulations and standards; developing and leading the City's incident response and investigation procedures and processes; assisting in the development of disaster recovery and business continuity plans and procedures; serving as a member of the leadership team and communicating security related concepts to a broad range of technical and non-technical employees; overseeing the City's Information Security Program; monitoring and reporting on Information Security activities and compliance across all City departments; performing security assessments on the acquisitions of technology products, tools, and services; providing guidance and advocacy of security issues regarding prioritization of infrastructure investments that impact Information Security; monitoring Information Security trends and keeping the City's senior management informed about security related issues and activities affecting the City of Mesa; understanding potential threats, vulnerability, and control techniques; serving as liaison to local, state, and federal law enforcement and other related government agencies on Information Security related issues; and developing and administering a Citywide Information Security training and awareness program. The CISO also responds to security incidents, establishes appropriate standards and controls, manages security technologies, directs the establishment and implementation of security policies and procedures, maintains information-related compliance, and performs related duties as required.
Excellent communication skills are essential in dealing with both internal and external parties. Incumbents must possess sufficient communication skills and business and technical knowledge in order to communicate meanings and impact using both business and technical terminology. Incumbents work independently and with initiative in performing day-to-day responsibilities to meet the continuous demands associated with the completion of simultaneous projects and requests for a variety of resources. Work is performed under the general direction of the Chief Information Officer, but considerable freedom is given to exercise independent judgment and initiative. Employees in this class are required to be available on a 24-hour basis to cover emergency situations. This class is FLSA exempt-administrative.
About the Ideal Candidate: The City of Mesa is a dynamic organization and as such, we are constantly improving existing services and offering new ones. The CISO will need to understand what these changes are and ensure that Mesa's cybersecurity program accounts for them. Additionally, the ideal candidate:
- Focuses on ensuring the goals and objectives of the City of Mesa are accomplished in the most secure fashion possible.
- Functions as a trusted partner to both internal departments and external entities (example: 3rd party vendors, other local, state and federal agencies).
- Leads the organization towards understanding the cybersecurity risks that exist to the enterprise, prioritizes initiatives, and determines cybersecurity risk thresholds and tolerances of management.
- Excels in program management, including cybersecurity and data privacy programs, and other strategic programs that require strong leadership and direction.
- Builds strong relationships within the IT Department and collaboratively works with other teams to ensure that technology services and initiatives have cybersecurity controls and processes in place.
Qualifications & Requirements
Employee Values: All employees of the City of Mesa are expected to uphold and exhibit the City's shared employee values of Knowledge, Respect, and Integrity.
Minimum Qualifications Required. Any combination of training, education, and experience equivalent to graduation from an accredited college or university with a Bachelor's Degree. Extensive (5+ years) of progressively responsible professional experience in Information Security and privacy for a large enterprise. Considerable (3 - 5 years) experience in managing and/or supervising staff.
Special Requirements. Must possess a valid Class D Arizona Driver's License by hire or promotion date. For this position, an individual receiving a conditional offer of employment from the City of Mesa must pass a background investigation through the City of Mesa Police Department, the Arizona Department of Public Safety, and Federal Bureau of Investigation prior to commencing employment with the City of Mesa.
Preferred/Desirable Qualifications. Graduation from an accredited college or university with a Master's Degree in Information Security, Computer Science, Information Systems, or a related field is preferred. Experience with presentations, project management, team facilitation, budgeting, and training are highly desirable. Experience or training in customer service techniques is also desirable. Certified Information Systems Security Professional (CISSP) or other related security accreditation/certification is highly desirable.
Link to Job Description
A is linked here.
01
Did you graduate from an accredited college or university with a Bachelor's Degree (or higher)? Please detail your degree information in the Education section of your application.
- Yes
- No
02
How many years do you have of progressively responsible professional experience in Information Security and privacy for a large enterprise? Please detail your experience on your application.
- None
- Some but less than 5 years
- 5 years or more but less than 7 years
- 7 years or more but less than 9 years
- 9 years or more
03
Please describe your progressively responsible professional experience in Information Security and privacy for a large enterprise, including employer(s). Please also detail this experience on your application. If none, type N/A.
04
How many years of experience do you have in managing and/or supervising staff? Please detail your supervisory/managerial experience in the Work History section of your application, including the number of employees supervised.
- None
- Some but less than 3 years
- 3 years or more but less than 5 years
- 5 years or more
05
Do you have a valid Class D Arizona Driver's License, or can you obtain one by hire or promotion date?
- Yes
- No
06
Please describe your previous experience leading cybersecurity programs at an organizational level, including a brief description of the scope and scale of those responsibilities. If none, type N/A.
07
Please describe your experience leading or managing privacy initiatives at an organizational level, including employer(s). If none, type N/A.
08
Please describe your program management experience with previous organizations, especially around cybersecurity and/or data privacy initiatives, including employer(s). If none, type N/A.
09
Please describe your experience with presentations, project management, team facilitation, budgeting, training, and customer service techniques, including employer(s). If none, type N/A.
10
Please list any security-related accreditations/certifications (example: Certified Information Systems Security Professional (CISSP)) you possess. If none, type N/A.
Required Question
