IT Security Architect

J  o  b    D  e  s  c  r  i  p  t  i  o  n

Job Information

Title:

IT Security Architect

Market Range:

IT17

Approved Date:

1/23/2025 11:33:36 AM

FLSA:

Exempt

EEO Code:

PROFESSIONALS

Career Level:

P4

Career Level Description:

Professional Level 4

Job Code:

100972

Job Family:

IT - Information Technology

Sub Family:

ITSEC - IT Security

Primary Purpose

The IT Security Architect is a senior-level position responsible for assessing the organization's information technology systems and infrastructure, identifying strengths and weaknesses in security controls, assessing risk to information security, determining efficacy and efficiency of existing controls, and planning and implementing architectural changes to improve overall security posture. This position requires an advanced understanding of security hardware and software, organizational needs, and information security risks with organizational policies and industry standards.

•

Develop a complete understanding of the organization’s technology and information systems in order to align organizational security strategy and infrastructure with overall business and technology strategy.  Utilize this knowledge to design, build, implement, and support enterprise-class security systems that enable identifying and mitigating emerging threats.

1

30%

•

Plan, research, and design robust security architectures for proposed solutions that balances business requirements with information and cybersecurity requirements.  Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.

2

20%

•

Perform information security risk assessments, including service specific risk assessments, networks and systems, data security, network infrastructure, and reporting on security status and incidents.

3

20%

•

Develops and maintains complete security documentation related to security design, implementation, processes and practices.  

4

20%

•

Updates job knowledge by tracking and understanding emerging security practices and standards, participating in educational opportunities, reading professional publications, and participating in professional organizations.  Serve as a mentor to Security Engineers and Analysts.             

5

10%

Position(s) may perform other duties in addition to the above as assigned by management.

*IMPORTANT* In the event of an emergency, as determined by the County Manager or designee, participation in preparedness and response operations should be expected. Employee may be required to fill a temporary assignment in a role different from standard duties, work hours and/or work location in preparation for, during and after the emergency. Employee may also be required to participate in relevant exercises and regular preparedness training.

Career Level Dimensions

Career Level:

P4

Career Level Description:

Professional Level 4

•

Plans and manages execution of large projects that span a Division or multiple Work Groups OR works as an independent technical expert within a Medical or Scientific Discipline.

•

Works independently with minimal direction. Viewed as subject matter expert within discipline.

•

Provides measurable input into new processes, standards and/or operational plans that impact Division results.

•

Responsible for making moderate to significant improvements of processes, systems or standards to enhance performance of the Work Group.

•

Propose new ideas and creative solutions to existing problems and/or work areas.

•

Works to influence parties within and outside of the Work Group and Division regarding projects and procedures.  May have responsibility for communicating with external parties and senior leaders.

•

Typically responsible for providing guidance, coaching and training to other employees within Division or the Work Group.

•

May manage projects at this level, requiring responsibility for the delegation of work and the review of others' work products

•

Requires deep knowledge of discipline typically obtained through advanced education combined with extensive experience. Typically viewed as having a specialty within a discipline. May have broad knowledge of project management.

•

Within Medical or Scientific Disciplines, typically requires a doctoral degree and post-doctoral training.

Qualifications

•

Bachelors degree in Computer Science, Information Systems, Computer Engineering or a related field

•

Four years experience in information security design and administration

•

Equivalent education and experience are accepted

•

Bachelor's Degree

Computer Science, Information Technology, Information Systems, Computer Engineering, or related field

•

8 Years

Information security design and administration

•

CISSP

Upon Hire

•

Strong organizational skills with ability to thrive in a sense-of-urgency environment, leveraging best practices, and approaching any problem as a team-player with a can-do attitude.

•

Detail oriented with excellent problem solving, analytical, communication, organization, task and time management skills.

•

Advanced knowledge and understanding of information security architecture, technologies, best practices, and controls.

•

Experience administering, maintaining, and troubleshooting enterprise security platforms, including firewalls, intrusion detection/prevention, web filtering, vulnerability management, endpoint protection, email protection, and encryption.

•

Experience defining security standards and incident response plans to detect, respond, and recover from security incidents, including analyzing incident related data and implementing containment and eradication strategies.

•

Experience performing vulnerability assessments and penetration testing and defining effective remediation plans.

•

Experience developing, implementing, and testing business continuity and disaster recovery plans.

•

In depth knowledge of common Information Security frameworks and standards and compliance and regulations such as ISO 27001/27002, NIST, PCI DSS, HITRUST, HIPAA, HITECH.

•

In depth knowledge of common Information Security frameworks and standards and compliance and regulations such as ISO 27001/27002, NIST, PCI DSS, HITRUST, HIPAA, HITECH.

An individual must be able to perform each essential duty satisfactorily to perform this job successfully. The requirements listed above are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Competencies

Adaptability & Flexibility

Changes behavioral style or method of approach when necessary to achieve a goal; adjusts style as appropriate to the needs of the situation. Responds to change with a positive attitude and a willingness to learn new ways to accomplish work activities and objectives.

Attention to Detail

Thoroughness in accomplishing a task through concern for all the areas involved, no matter how small. Monitors and checks work or information and plans and organizes time and resources efficiently.

Initiative

Does more than is required or expected in the job; does things that no one has requested that will improve or enhance products and services, avoid problems, or develop entrepreneurial opportunities. Plans ahead for upcoming problems or opportunities and takes appropriate action.

Problem Solving

Builds a logical approach to address problems or opportunities or manage the situation at hand by drawing on one's knowledge and experience base, and calling on other references and resources as necessary.

Reliability

Demonstrates a high level of dependability in all aspects of the job.

Technical Expertise

Applies and improves extensive or in-depth specialized knowledge, skills, and judgment to accomplish a result or to accomplish one's job effectively.

Integrity

Act with honesty, transparency and respect in our interactions with co-workers and those we serve. Adhere, without exception, to laws, policies, procedures and professional standards.

Accountability

Establish high-quality standards for work. Add value. Measure results and hold self and others accountable for making progress toward desired outcomes. Take a logical and data-driven approach to decision-making.

Diversity

Believe that different backgrounds and experiences strengthen the organization and produce better results. Value inclusion across race, gender, age, religion, identity and experience, and strive to reflect in our workforce the diversity of our community.

Collaboration

Foster a work culture in which different ideas and opinions are encouraged and expected. Listen carefully and speak thoughtfully. Work together toward shared goals with mutual respect and cooperation.

Continuous Improvement

Continuously improve work processes and products. Provide a safe environment to be innovative and creative and try new things. When things don't go as planned, use it as an opportunity to learn, regroup and begin again. Provide time and resources for individuals to grow and develop both personally and professionally.

Wellness

Take proactive steps to be physically fit and healthy, emotionally strong, financially secure and socially fulfilled, while inspiring and empowering others to do the same.

Service Orientation

Commit to making a difference within the community. Actively engage in and enjoy our work. Deliver services that exceed expectations, with courtesy, politeness and sensitivity to the experiences, concerns and feelings of all co-workers and customers.

ADA Checklist

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions

Standard ADA Selection:

Office Environment

Standing

X

Walking

X

Sitting

X

Lifting/Carrying 0-10 pounds

X

Lifting/Carrying 10-20 pounds

X

Lifting/Carrying 20-50 pounds

X

Lifting/Carrying 50-100 pounds

X

Pushing

X

Pulling

X

Climbing

X

Balancing

X

Stooping

X

Kneeling

X

Crouching

X

Crawling

X

Reaching

X

Handling

X

Grasping

X

Fingering

X

Feeling

X

Talking

X

Hearing

X

Visual Perception

X

Repetitive Motions

X

Eye/Hand/Foot Coordination

X

Memorization/Concentration

X

Learning/Knowledge Retention

X

Preparing/Analyzing Numerical Figures

X

Use of Interfaced Commmunication Devices (Phone, Computer, Radio etc.)

X

Analyzing/Examining/Testing Data

X

Emotional/Behavioral Self-Regulation

X

Interacting with Others

X

Comprehension

X

Organization

X

Decision Making

X

Comprehension

Understand complex problems and collaborate to explore alternative solutions

Organization

Organize and prioritize individual work schedule to manage multiple tasks and/or projects

Decision Making

Make decisions that have significant impact on a department's credibility, operations and/or services

Communication

Communicate and explain a variety of information

Extreme cold

X

Extreme heat

X

Humid

X

Wet

X

Noise

X

Hazards

X

Temperature Change

X

Atmospheric Conditions

X

Vibration

X

Computers/Monitors

X