It Security Architect

Career Opportunity:

The City of Las Vegas invites applicants forIT Security Architect. This position is responsible for developing and implementing enterprise Security Architectures and solutions including security frameworks and roadmaps. This position serves as the engineering security expert in application development; database design; network and operating system security design; and access and audit control development and implementations. This position works closely with the IT Business Relationship Managers and has a business-driven mindset which seeks to develop structured inter-relationships between technology and processes to support the long-term needs of the business.

Supervision Received

Receives direction from the Section Manager, Information Technologies.

Essential Functions:

1. Lead role in defining the appropriate architecture, technical requirements and standards necessary to address information security needs for the organization.
2. Responsible for the development and evolution of an in-depth defense strategy for the City of Las Vegas (city).
3. Conduct design and engineering processes to ensure that Security Architecture solutions maintain the confidentiality, integrity and availability of information assets.
4. Define security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems.
5. Develop a consistent set of security principles, technology standards and architectural constructs which guide the solution design, engineering and deployment of the city IT solutions.
6. Develop and maintain a portfolio of enterprise security standards for applications, systems, and data.
7. Determine security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; and preparing cost estimates.
8. Develop, implement and maintain Information Technologies disaster recovery and contingency policies, procedures and guidelines; establish the infrastructure required to integrate the IT disaster recovery processes into the city's business recovery plan.
9. Work with internal and external technical teams to define and document controls necessary to ensure the confidentiality, integrity, and availability of computer systems, data, and network resources.
10. Evaluate security controls employed by cloud service providers and other third party providers to ensure information assets are adequately protected, and couple them with additional security controls including firewalls, intrusion prevention systems, and monitoring/event correlation solutions.
11. Address security requirements within cloud architectures, creating new and evolving security services and standards pertaining to cloud services; consulting with internal and external customers; and developing and documenting strategies, standards, and roadmaps for cloud security components and architectures.
12. Collaborate with technology and business teams to ensure that the implementation of new technologies and security solutions can be supported and that they are in alignment with Security Architecture, industry best practice, principles of secure design, and business strategies.
13. Serve as the engineering security expert in application development; database design; network and operating system security design; access and audit control development; and identity management solutions.
14. Lead the development and implementation of security technology solutions for complex environments and architecture including cross-platform interoperability.
15. Lead the development of baseline infrastructure and application hardening guides based on industry best practices.
16. Participate in the risk assessments of new and existing technology solutions to identify opportunities for improvement, and engineering solutions to adequately mitigate associated risks.
17. Ensure Security Architecture reviews are conducted for new technology to ensure best practices, document security solutions, and enable common solutions across the enterprise.
18. Oversee and review the ongoing documentation, development, implementation, and maintenance of processes, procedures, and services associated with architecture functions including ensuring that requirements and deliverables are clearly defined.
19. Conduct research, monitor new product developments, and make recommendations regarding technologies which have the potential to benefit the security of information assets.
20. Provide assistance to audits, HR, and legal compliance areas as related to risk assessment and computer/network forensics investigation.
21. Develop and implement an Information Security Incident Response Plan and serve as the team leader of an incident response team.
22. Assist with maintaining city-wide information security awareness training and education program that includes processes, tools, and technologies that help reduce risk to the city's information assets.

Marginal Functions:

1. Perform related duties and responsibilities as required.

Experience:

Six years of technical IT work experience, to include three years experience with
IT security.

Experience working with PCI-DSS, HIPAA, CJIS, PII, project management experience in a technical leadership position, and experience in municipal government IT departments is desirable.

Training:

Bachelor's degree from an accredited college or university with major in computer science, telecommunications, management information systems or related fields. May substitute a combination of equivalent education and related experience. The city assesses 1.5 years of full-time experience as equivalent to one year of education.
License or Certificate:

One of the following certifications is required at the date of application:

- Certified Information Systems Security Professional (CISSP)
- GIAC Security Essentials Certification (GSEC)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)

Knowledge of:

Concepts, principals and design of data security and disaster recovery processes including threat and vulnerability management; access control; network design and management; identity and access management; and data protection and management.
Legal and regulatory compliance requirements as they relate to data and information privacy and security.
Operations, programming and interrelationships of computer and information systems.
Security controls for cloud providers.
Systems management and security specific administrative applications.
Security technologies including identity and access management solutions; intrusion detection and intrusion prevention systems; digital certificates; encryption; authentication techniques; firewalls; data loss prevention systems; security incident and event management solutions; internet protocol security; virtual private networks; routers; switches; and web application firewall solutions.

Ability to:

Develop and implement enterprise data Security Architecture.
Design secure solutions and accompanying controls.
Train users in the application of security processes.
Prepare and present technical and management reports.
Work under pressure, and meet deadlines individually and collaboratively.
Think logically, assess problems, and be results-oriented.
Quickly learn and understand new technologies.
Identify complex business and technology risks and associated vulnerabilities.
Prioritize multiple tasks and switch between tasks quickly
Communicate effectively, both orally and in writing, to interact with team members, customers, management and support personnel (technical and non-technical).
Establish and maintain effective working relationships with employees at all levels within the organization, and with both internal and external customers.
Work independently.
Competencies:

Core Workforce Competencies

Professionalism - Demonstrates core values by being honest, respectful and positive.

Effective Communication - Expresses verbal and written thought in a clear and understandable manner.

Customer Focus - Demonstrates genuine concern and satisfies external and/or internal customers based on the CLV core purpose and values.

Adaptability - Able to effectively modify behavior to suit changing workforce demands.

Problem Solving - Solves problems by considering all causes, solutions and outcomes.

Productive Partnerships - Develops, maintains and strengthens partnerships with others.

Technical and Safety Expertise - Possesses a depth of knowledge, skill and ability in a technical (job) area.