NEOGOV · 12 hours ago
DEPARTMENTAL INFORMATION SECURITY OFFICER II
Los Angeles County, CA
Full-time
Onsite
Senior Level
$142K/yr - $221K/yr
5+ years expNEOGOV is part of the County of Los Angeles, which operates the nation's largest public mental health department. They are seeking a Departmental Information Security Officer II to lead the information security function, develop and deliver a comprehensive information security strategy, and ensure the department’s security posture is optimized.
GovernmentSoftwareHuman ResourcesInformation TechnologyGovTech
Responsibilities
Develops and maintains the departmental Information Security Program including policies, standards, and procedures; cybersecurity control evaluation, selection, and implementation; and architectures, products and services, pursuant to County Chief Information Office architectures, standards and guidelines, and Board polices and applicable laws
Works with departmental business units to conduct information security risk assessments, and participates in regular reviews of security standards, governance, data compliance and privacy management, audit, risk assessments, physical and logical access reviews, risk assessments and data destruction solutions
Conducts vulnerability assessments to identify existing or potential weaknesses in systems and processes that could lead to compromises; facilitates remediation of identified vulnerabilities within processes, systems and applications and coordinates investigations with the CISO, Countywide Chief Privacy Officer (CPO), CCIRC, Auditor-Controller, and law enforcement agencies as necessary
Leads and performs routine assessments and periodic inspections of departmental information technology systems to ensure security controls are functioning properly and effectively and recommends appropriate corrective measures to eliminate or mitigate system compromises. Actively participates in federal, State and local audits and reviews for the department. Coordinates the department's information technology-related aspects of annual or biennial ICCP audits
Provides guidance to department management and implements necessary policies, standards or controls to address department-specific regulatory and contractual factors
Collaborates with departmental team members to align security posture to facilitate achievement of business objectives
Collaborates with application and software developers to ensure production applications will meet established information security policies, standards and business requirements using appropriate processes and application development tools and techniques
Promotes and coordinates development and distribution of information security and privacy awareness training and education for departmental employees in cooperation with the CISO and CPO. Promotes Countywide initiatives pertaining to information security and privacy education and awareness programs
Represents the department on County cybersecurity governance bodies, committees and workgroups and participates and assists in the development, review, and recommendation of Countywide information technology security policies, technical and operational standards, procedures and guidelines. Identifies and recommends industry standard methodologies for cybersecurity, coordinating communication and collaboration among County departments on countywide and departmental cybersecurity issues
Serves as a member of the Countywide Cybersecurity Incident Response Committee (CCIRC). Establishes and leads a Departmental Cybersecurity Emergency Response Team (DCERT) and develops appropriate security incident notification procedures for departmental management, CISO, CPO and CCIRC
Participates in Countywide activities for, and directs or conducts departmental reviews, evaluations, and provides recommendations of software products and controls related to cybersecurity
Participates with the responsible County entities in the development and implementation of Countywide business continuity and disaster recovery plans to ensure that these incorporate appropriate cybersecurity measures
Collaborates with the department's CPO regarding electronic data and physical records, privacy incident and breach response, privacy audits, and other initiatives pertaining to the County’s privacy program components and related policies
In collaboration with information technology operations, ensures proper departmental inventories of information technology assets and software licenses
Reviews departmental information technology projects and, in conjunction with County Counsel, reviews information technology contract terms to ensure information security sufficiency
Participates in the review of information technology facility acquisition, construction, and remodeling projects to ensure conformity to County information security policies, standards, guidelines and industry protocols, as needed
Supervises and/or manage and coordinate subordinate security officers, supervisors and technical staff, as needed
Serve as a witness or subject-matter expert for the department in legal matters concerning cybersecurity, as needed
Qualification
Required
A Bachelor's Degree in Computer Science, Information Security, Information Assurance, Business Administration or a related field
Five (5) years of progressively responsible experience in a combination of risk management, information security, and cybersecurity roles
Two (2) years of experience in Information Technology Project Management
Three (3) years of experience administering an Information Technology security program at the level of Departmental Information Security Officer I
A valid California Class C Driver License or the ability to use an alternative method of transportation when needed to carry out job-related essential functions
Light physical effort that may include occasional light lifting to a 10-pound limit and some bending, stooping, or squatting
Preferred
Industry Certifications: e.g., Certified Information Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified in Risk & Information Systems Control (CRISC)
Experience working with HIPAA Security rule and Meaningful Use 2 security requirements
Experience composing and delivering technical presentations to leadership, which convey and explain technical issues and procedures
Experience managing multiple tasks and complex IT projects, changing priorities, meetings and constrained deadlines through subordinates, supervisors and/or staff to achieve department operational objectives
Experience developing IT policies, standards, procedures, and business planning processes
Experience writing, reviewing, and developing Requests for Proposals, Requests for Quotations and Requests for Information
Experience reviewing, monitoring, and negotiating contracts for capital equipment, software and/or IT services
Experience directing technology assessments, audits, and investigations and writing accompanying reports
Benefits
Phenomenal medical and life insurance
Fantastic retirement benefits
Many additional incentives
Company
NEOGOV
NEOGOV is the leading provider of workforce management software uniquely designed for the public sector, education, and public safety.
501-1000 employees
H1B Sponsorship
NEOGOV has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (13)
2024 (10)
2023 (10)
2022 (18)
2021 (14)
2020 (16)
Funding
Current Stage
Late StageTotal Funding
$700MKey Investors
The Carlyle Group,Warburg PincusWarburg Pincus
2025-07-28Secondary Market· $700M
2025-07-28Acquired
2021-06-02Private Equity
Leadership Team
Shane Evangelist
CEO
Brandon McDonald
Head Of Marketing
Recent News
Canada NewsWire
2025-11-14
2025-11-14
Government Technology US
2025-10-31
Company data provided by crunchbase