IT Security Engineer

J  o  b    D  e  s  c  r  i  p  t  i  o  n

Job Information

Title:

IT Security Engineer

Market Range:

IT16

Approved Date:

2/12/2021 1:45:51 PM

FLSA:

Exempt

EEO Code:

PROFESSIONALS

Career Level:

P3

Career Level Description:

Professional Level 3

Job Code:

100477

Job Family:

Information Technology

Sub Family:

IT Security

Primary Purpose

Manage security architecture, endpoint security, network security, the secure configuration of systems, and access control. Maintain an advanced understanding of current and emerging threats and technologies. Design and deploy information security technologies to directly support the organization's efforts in securing information and enforcing directives as mandated by regulations and Wake County policy.

•

Perform security incident and threat management, including monitoring security events, identifying abnormal/malicious behavior, investigating, triaging and responding to security incidents.                                          

1

30%

•

Plan, coordinate, implement, and support information security measures and platforms to protect data, software, and hardware.                            

2

20%

•

Perform information security risk assessments, including service specific risk assessments, networks and systems, data security, network infrastructure, and reporting on security status and incidents.                                          

3

20%

•

Develops and maintains complete security documentation related to security design, implementation, processes and practices.                             

4

20%

•

Provide consultation to business units and technology teams on security best practices and ongoing requirements.               

5

10%

Position(s) may perform other duties in addition to the above as assigned by management.

*IMPORTANT* In the event of an emergency, as determined by the County Manager or designee, participation in preparedness and response operations should be expected. Employee may be required to fill a temporary assignment in a role different from standard duties, work hours and/or work location in preparation for, during and after the emergency. Employee may also be required to participate in relevant exercises and regular preparedness training.

Career Level Dimensions

Career Level:

P3

Career Level Description:

Professional Level 3

•

Plans and manages projects that have significant impact on Work Group and Division results OR works as a technical expert within a Medical or Scientific Discipline.

•

Shares insights and analyses that inform new processes, and/or operational plans.

•

Responsible for making improvements in processes, systems, or standards to enhance performance of the Work Group.

•

Works to influence parties within and outside of the Work Group and Division regarding projects and procedures.

•

May be responsible for providing guidance, coaching and training to other employees within the Work Group.

•

Requires advanced knowledge of the Work Group and Division typically obtained through advanced education combined with experience. May have practical knowledge of project management.

•

Within Medical or Scientific Disciplines, typically requires a doctoral degree.

Qualifications

•

Bachelor's degree in Computer Science, Information Systems, Computer Engineering or related field

•

Four years of experience in security design and administration

•

Equivalent education and experience are accepted

•

CISSP

Upon Hire

or

•

Security+

Upon Hire

or

•

Strong organizational skills with ability to thrive in a sense-of-urgency environment, leveraging best practices, and approaching any problem as as team-player with a can-do attitude.

•

Detail oriented with excellent problem solving, analytical, communication, organization, task and time management skills.

•

Advanced knowledge and understanding of information security architecture, technologies, best practices, and controls.

•

Experience administering, maintaining, and troubleshooting enterprise security platforms, including firewalls, intrusion detection/prevention, web filtering, vulnerability management, endpoint protection, email protection, and encryption.

•

Experience defining security standards and incident response plans to detect, respond, and recover from security incidents, including analyzing incident related data and implementing containment and eradication strategies.

•

Experience performing vulnerability assessments and penetration testing and defining effective remediation plans.

•

Experience developing, implementing, and testing business continuity and disaster recovery plans.

•

In depth knowledge of common Information Security frameworks and standards and compliance and regulations such as ISO 27001/27002, NIST, PCI DSS, HITRUST, HIPAA, HITECH.

•

Desire to maintain up-to-date knowledge of developments in security technology, trends, and issues. Researches and recommends security enhancements to network and server systems, and assists in evaluation/selection of network and/or server equipment and/or software.

An individual must be able to perform each essential duty satisfactorily to perform this job successfully. The requirements listed above are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Competencies

Attention to Detail

Thoroughness in accomplishing a task through concern for all the areas involved, no matter how small. Monitors and checks work or information and plans and organizes time and resources efficiently.

Adaptability & Flexibility

Changes behavioral style or method of approach when necessary to achieve a goal; adjusts style as appropriate to the needs of the situation. Responds to change with a positive attitude and a willingness to learn new ways to accomplish work activities and objectives.

Initiative

Does more than is required or expected in the job; does things that no one has requested that will improve or enhance products and services, avoid problems, or develop entrepreneurial opportunities. Plans ahead for upcoming problems or opportunities and takes appropriate action.

Problem Solving

Builds a logical approach to address problems or opportunities or manage the situation at hand by drawing on one's knowledge and experience base, and calling on other references and resources as necessary.

Reliability

Demonstrates a high level of dependability in all aspects of the job.

Technical Expertise

Applies and improves extensive or in-depth specialized knowledge, skills, and judgment to accomplish a result or to accomplish one's job effectively.

Integrity

Act with honesty, transparency and respect in our interactions with co-workers and those we serve. Adhere, without exception, to laws, policies, procedures and professional standards.

Accountability

Establish high-quality standards for work. Add value. Measure results and hold self and others accountable for making progress toward desired outcomes. Take a logical and data-driven approach to decision-making.

Diversity

Believe that different backgrounds and experiences strengthen the organization and produce better results. Value inclusion across race, gender, age, religion, identity and experience, and strive to reflect in our workforce the diversity of our community.

Collaboration

Foster a work culture in which different ideas and opinions are encouraged and expected. Listen carefully and speak thoughtfully. Work together toward shared goals with mutual respect and cooperation.

Continuous Improvement

Continuously improve work processes and products. Provide a safe environment to be innovative and creative and try new things. When things don't go as planned, use it as an opportunity to learn, regroup and begin again. Provide time and resources for individuals to grow and develop both personally and professionally.

Wellness

Take proactive steps to be physically fit and healthy, emotionally strong, financially secure and socially fulfilled, while inspiring and empowering others to do the same.

Service Orientation

Commit to making a difference within the community. Actively engage in and enjoy our work. Deliver services that exceed expectations, with courtesy, politeness and sensitivity to the experiences, concerns and feelings of all co-workers and customers.

ADA Checklist

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions

Standard ADA Selection:

Office Environment

Standing

X

Walking

X

Sitting

X

Lifting/Carrying 0-10 pounds

X

Lifting/Carrying 10-20 pounds

X

Lifting/Carrying 20-50 pounds

X

Lifting/Carrying 50-100 pounds

X

Pushing

X

Pulling

X

Climbing

X

Balancing

X

Stooping

X

Kneeling

X

Crouching

X

Crawling

X

Reaching

X

Handling

X

Grasping

X

Fingering

X

Feeling

X

Talking

X

Hearing

X

Visual Perception

X

Repetitive Motions

X

Eye/Hand/Foot Coordination

X

Memorization/Concentration

X

Learning/Knowledge Retention

X

Preparing/Analyzing Numerical Figures

X

Use of Interfaced Commmunication Devices (Phone, Computer, Radio etc.)

X

Analyzing/Examining/Testing Data

X

Emotional/Behavioral Self-Regulation

X

Interacting with Others

X

Comprehension

X

Organization

X

Decision Making

X

Comprehension

Understand complex problems and collaborate to explore alternative solutions

Organization

Organize and prioritize individual work schedule to manage multiple tasks and/or projects

Decision Making

Make decisions that have significant impact on a department's credibility, operations and/or services

Communication

Communicate and explain a variety of information

Extreme cold

X

Extreme heat

X

Humid

X

Wet

X

Noise

X

Hazards

X

Temperature Change

X

Atmospheric Conditions

X

Vibration

X

Computers/Monitors

X