Under general supervision, is responsible for performing work associated with developing, communicating, implementing, enforcing, and providing monitoring guidelines for security controls to protect ITSD 's technology assets from intentional or inadvertent modification, disclosure, or destruction. May exercise technical supervision over assigned staff.
Work Location:
100 W Houston St San Antonio, TX 78205; Remote work is at supervisor's discretion
Work Schedule
7:45 AM - 4:30 PM M-F; On call 24 hours
- Designs, tests, implements, and supports complex systems, networks, databases, applications, and solutions that may have technology or platform impact.
- Supports process development for password assessment, network based and Web application-based vulnerability scanning, virus management and intrusion detection.
- Conducts risk assessments that involve system connectivity designs. Participates in the analysis of system architecture for Technical Architecture Group for presented system designs.
- Provides analysis and recommendations for application design.
- Monitors and analyzes system relevant access logs.
- Analyzes and advises storage team of the security backup and system disaster recovery.
- Ensures stakeholder security requirements are adequately addressed.
- Performs assessments of systems, networks, and applications to identify deviations from acceptable configurations, regulatory compliance, or local policy, while measuring effectiveness of security architecture against known vulnerabilities.
- Performs related duties and fulfills responsibilities as required.
- Bachelor's Degree from an accredited college or university
- Three (3) years of combined IT and security work experience with a broad range of exposure to systems analysis, application development, and/or systems administration that includes one of the following: a) network technologies and network monitoring tools, b) web-related technologies (web applications, web Services, Service Oriented Architectures) and of network/web-related protocols, or c) cloud solution
- Microsoft Azure
- Office 365
- Cloud security knowledge
- AWS security experience
- If selected for this position, official transcripts, diplomas, certifications and licenses must be submitted at the time of processing. Unofficial transcripts and copies of other relevant documents may be attached to the application for consideration in advance.
- Please be advised that if selected for this position, information regarding employment history as it relates to the qualifications of the position will be needed for employment verification. Applicants claiming military service to meet the experience requirement for this position may attach a DD214 to the application.
- Unless otherwise stated, applicants are permitted to substitute two years of related full-time experience for one year of higher education or one year of related higher education for two years of experience in order to meet the minimum requirements of the job. One year of full-time experience is defined as 30 or more hours worked per week for 12 months. One year of higher education is defined as 30 credit hours completed at an accredited college or university.
- Applicants selected for employment with the City of San Antonio in this position must receive satisfactory results from pre-employment drug testing and background checks. If required for the position, a physical, motor vehicle record evaluation, and additional background checks may be conducted.
- Knowledge of computer networking concepts and protocols, and network security methodologies
- Knowledge of cyber threats and vulnerabilities
- Knowledge of risk management processes, including assessing and mitigating risk
- Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity
- Knowledge of cybersecurity principles including one or more of the 7 NICE Framework workforce categories (Securely Provision, Operate and Maintain, Oversee and Govern, Protect and Defend, Analyze, Collect and Operate, Investigate)
- Knowledge of test harnessing, test simulation, testing platforms, and testing techniques
- Skill in working in an agile environment
- Skill in database and security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc.
- Skill in creating and executing test plans
- Ability to leverage modern architectural components to design modular, flexible solutions
- Ability to create both technical and non-technical end-user documentation
- Ability to perform all the essential functions of the position, with or without accommodations
- Ability to work primarily in an office environment