Apply on Employer Site

Clark County · 3 days ago

INFORMATION TECHNOLOGY SECURITY ADMINISTRATOR

Las Vegas, NV

Full-time

Onsite

Mid Level

$39/hr - $57/hr

3+ years exp

Clark County is seeking qualified candidates for the Information Technology Security Administrator position, which focuses on providing cybersecurity administration for the enterprise. The role involves maintaining incident response programs, implementing security measures, and coordinating cybersecurity initiatives across the County.

Business DevelopmentCommunitiesGovernmentLegalSocial Assistance

No H1B

U.S. Citizen Only

Responsibilities

Establishes and maintains security and business recovery policies and procedures

Provides security and control measures across multiple computer platforms (e.g. enterprise server, client server, network, Internet/Intranet, and desktop)

Monitors access and use of County information. Implements logging/tracking mechanisms for intrusion detection

Maintains Clark County's Business Recovery Plan

Provides on-going testing of the Business Recovery Plan at the enterprise level (infrastructure organization and teams, hot-site recovery operations) and department level (checklist tests, simulations/structured walk-throughs)

Monitors backup and recovery procedures (enterprise server, mid-range computers, PCs, and networks)

Conducts periodic security assessments and disaster recovery preparedness reviews to evaluate effectiveness and compliance with security and business recovery measures. Incorporates security requirements from governmental and external agencies

Maintains security and business recovery related files, reports, policy manuals, and documentation

Provides liaison with Internal Audit, Office of Emergency Management and Risk Management on security/ business recovery issues and breaches of security

Monitors security and disaster recovery developments in the industry

Provides lead direction and coordination to other information technology staff throughout the County

Provides management with a clear view of security threats/solutions

Promotes the concept of information as an asset or resource

Provides awareness of County's exposure should there be an extended disruption of the County's business functions or information technology capabilities

Assists in planning goals, objectives, procedures and work standards for the unit; provides input into the unit's budget

Contributes to the overall quality of the section's service provision by developing and coordinating work teams and by reviewing, recommending and implementing improved policies and procedures

May drive a County or personal motor vehicle in order to visit various work sites and attend meetings

Serves as an expert advisor to senior management in the development, implementation and maintenance of an information security infrastructure ensuring best practice control objectives for system integrity, availability, confidentiality, accountability and assurance within the context of the airports risk tolerance

Identifies and proposes key information security program priorities, initiatives, plans, practices and tools. Oversees execution of approved information security project plans and provides regular status reporting on progress of such projects

Implement and manage cybersecurity tools such as firewalls, endpoint detection and response, email security, configuration management, continuous monitoring, cloud security, application security, and related items

Provides guidance (e.g., information security risk severity assessments / relative cost benefit analysis etc.) and provides recommendations regarding prioritization of system security infrastructure investments that mitigate risks, strengthen defenses and reduce vulnerabilities

Drafts and proposes organizational information security strategy and action plans based on relevant risk assessment and gap analysis

Develops, publishes, and maintains comprehensive information security standards, policies, procedures and guidelines

Acts as the primary control point during follow-up on significant information security incidents, oversees development of response plans and provides timely update reporting

Advises the management team on risk issues that are related to information security and recommends actions in support of the wider risk management programs

Qualification

CybersecurityIncident responseRisk managementCISSPCISMCompTIA Security+Business recovery planningTeam coordinationPolicy developmentCommunication

Required

Bachelor's Degree in Computer Science or Management Information Systems, or related field

Three (3) years full-time professional level experience in computer security administration, including contingency planning, preferably in a large mainframe multiprocessing environment

Possession at time of application and maintenance of a Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM)

Possession at time of application and maintenance of a CompTIA Security+ certification may be substituted for education or experience up to two (2) years

All qualifying education and each experience must be clearly documented in the 'Education' and 'Work Experience' sections of the application

Candidates must be legally authorized to work in the United States

Employment is contingent upon successful completion of a background investigation

Employment is contingent upon the results of a pre-employment drug examination

Preferred

Possession at time of application and maintenance of a Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) is preferred and may be substituted for education or experience up to five (5) years

Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), CompTIA Security+ or similar are preferred