Information Security Officer
Job description
This Position is perfect for you if:
- You are a great mentor that enjoys teaching and coaching others for success.
- You enjoy interacting with various stakeholders and teammates to complete projects.
- You have strong analytical skills for conducting audits and assessing risks.
- You are a lifelong learner that stays up to date with new developments in IT and cybersecurity.
- You have experience in designing and securing system architectures to ensure that data and technology infrastructures are protected.
- You are an adaptable and creative thinker.
- You want to contribute to the community's well-being and growth!
Here are a few ways the Inland Empire Utilities Agency is committed to helping you feel your best, work your best, and live your best while working with us:
- A 4-day work week with remote hybrid work schedules for some positions
- A pension through California Public Employees’ Retirement System (CalPERS)
- Generous employer monthly health benefit allowances to go towards the cost of medical, dental, and vision insurance
- Competitive vacation, floating holiday, sick time in addition to 9 agency paid holidays
- Education Reimbursement up to $5,250 per fiscal year
- Professional Development Stipend of $1,000 per fiscal year
- Basic life insurance coverage provided
- Wellness Stipend of $500 per fiscal year
- 457b Deferred Compensation Contribution
- Interest free loan for a computer purchase up to $3,000
This position is open until filled. The deadline for the first review of applications is 11:59 PM on Thursday, December 1, 2022. Applicants that submit applications after the first review deadline are not guaranteed to be considered for this recruitment. This recruitment may close at any time without notice after the first review deadline.
There is one (1) vacancy in the Information Technology Department.
This recruitment is being conducted to fill one (1) vacancy and will establish an eligibility list which may be used to fill future vacancies as they occur during the active status of the eligibility list.
Salary Range: UN 186
Under direction, plans, organizes, manages, and participates in the development, implementation, and monitoring of the Agency’s information security programs, information technology risk management programs, and information security policies; supervises and reviews the work of professionals and serves as a subject matter expert in information security and technology programs. Monitors agency infrastructure, devices, and information systems for security integrity; provides planning and guidance to information technology staff on vulnerability management and security incident response procedures. Provides technical and awareness training for in areas of assignment to Agency staff; and performs related duties as assigned.
Employees in this class typically report to the Director of Information technology and manage the work of professional and support staff in the Information Technology Department.
The Information Security Officer is distinguished from the Manager of Information Technology in that an incumbent in the latter class has management responsibilities for the full Information Services Unit or Operational Technology Unit within the Information Technology Department.
The duties listed below are intended only as illustrations of the various types of work that may be performed. The omission of specific statements of duties does not exclude them from the position if the work is similar, related or a logical assignment to this class.
Plans, organizes, controls, integrates, and evaluates the work of the assigned programs and staff; with staff, develops, implements, and monitors work plans to achieve goals and objectives; contributes to the development of and monitors performance against the annual department budget; supervises and participates in developing, implementing, and evaluating plans, work processes, systems, and procedures to achieve annual goals, objectives, and work standards; ensures the preparation and maintenance of a variety of records and reports.
Manages the performance of assigned staff; interviews and selects new staff; establishes performance requirements and personal development targets; regularly monitors performance and provides coaching for performance improvement and development; recommends compensation and provides other rewards to recognize performance; hears and makes recommendations on grievances; subject to management concurrence, approves or takes disciplinary action, up to and including termination, to address performance deficiencies, in accordance with Agency policies and labor agreements.
Participates in the formulation and implementation of departmental policy, planning, and strategy development; leads and directs staff and outside consulting resources in the development and application of new methods and processes to achieve higher efficiency, quality, and innovation in departmental work processes.
Provides day-to-day leadership and works with staff to ensure a high-performance, customer service-oriented work environment that supports achieving the Department’s and Agency’s mission, objectives, and values regarding teamwork, mutual trust, and respect; applies best practices and quality assurance processes to assigned areas of responsibility; enforces the maintenance of safe working conditions and ensures safe work practices are followed by assigned staff.
Plans, organizes, and participates in developing, implementing, and monitoring the Agency’s information security program and initiatives. Oversees ongoing application of information security policies and procedures
Manages the budget for assigned functional area including assisting in the development and monitoring of budget documents, performing or reviewing research, complex analyses and projections and analyzing trends and expenditures; tracks expenditures against the budget and compiles and analyzes budget variance reports; oversees the processing of purchase requisitions, check requests and the preparation of invoices and billing; manages and maintains inventory.
Provides input into department key performance indicators (KPIs); oversees or develops programs and systems to track and report KPIs; tracks and reports changes, variances and projections versus actuals; reviews and analyzes maintenance data and performance reports to ensure department goals, objectives and standards are being met.
Collaborates with Agency staff to align business goals with risk management strategy.
Designs and secures system architectures to ensure protection of Agency data and technology infrastructure. Provides specifications for secure configurations of infrastructure and information systems.
Provides technical guidance on information security related tasks for Information Technology staff and ensures that sufficient training is delivered for security tasks. Prepares and delivers ongoing security awareness training to staff Agency-wide.
Monitors the Agency networks and systems for vulnerabilities, attacks, and breaches. Assesses current vulnerability. Responds to security incidents; leads incident response and recovery activities to protect systems from additional damage or recover impacted systems.
Conducts audits and prepares reports assessing risk and regulatory requirements for critical technologies. Recommends enhancements to maintain regulatory compliance and reduce risks.
Develops procedures for response and recovery activities as part of Business Continuity and Disaster Recovery planning.
Serves as a department or Agency representative to the Agency Board, Agency departments, member agencies, business and community organizations, and federal, state and local governmental bodies; communicates policies or procedures and resolves issues involving security guidance on technology deployment and ensuring deployments remain compliant with Agency policy; stays abreast of new trends and innovations in the information security communities and in the wastewater, water and recycled water industry that impact the Agency’s human capital management.
Participates in the selection of, and coordinates the activities of, information security service providers, contractors, and consultants.
Certification from the International Information System Security Certification Consortium, Inc. ((ISC)2) in one of the following is preferred:
Certified Information Systems Security Professional (CISSP)
Systems Security Certified Practitioner (SSCP)
Certified Cloud Security Professional (CCSP)
Certification from the following institutions and organizations are desirable:
Global Information Assurance Certification (GIAC):
Defensible Security Architecture (GDSA)
Certified Detection Analyst (GCDA)
Critical Controls Certification (GCCC)
Global Industrial Cyber Security Professional (GICSP)
GIAC Response and Industrial Response (GRID)
Critical Infrastructure Protection (GCIP)
Forensic Analyst (GCFA)
Network Forensic Analyst (GNFA)
Cyber Threat Intelligence (GCTI)
Information Systems Audit and Control Association (ISACA):
Certified Information Systems Auditor (CISA)
Cisco:
Certified Network Professional (CCNP) Routing & Switching or Security
Certified Internetwork Expert (CCIE) Security
Fortinet:
Network Security Expert (NSE) 4 is desirable.
KNOWLEDGE OF:
Principals, methods, and practices of systems/network administration and maintenance.
Principles, practices and techniques for installation, configuration and operation of network systems, hardware and devices.
Methods and techniques for performing connectivity testing and troubleshooting, including uses of diagnostic tools and equipment.
Internet/intranet technologies and design concepts and techniques, including router and firewall configuration.
Systems analysis, design principles and development methodologies and tools.
Network security design principles and practices and related tools and software.
Project management principles, practices, methods and tools.
Agency policies, procedures and practices regarding data security.
Safety policies, practices, equipment, and supplies applicable to the work.
Principles and practices of sound business communications.
Principles and practices of effective management and supervision with an organization-wide perspective.
Principles and practices of organizational and culture change.
Principles and practices of public administration including planning, budgeting, purchasing, and public records.
Agency policies and labor contract provisions.
ABILITY TO:
Lead people in a manner that promotes accountability, employee engagement, staff development, respect, and collaboration.
Manage the performance of staff by coaching for performance.
Effectively and professionally work with a diverse group of staff and community members.
Plan, manage, assign, delegate, control, review, and evaluate the work of staff engaged in the delivery of information security programs.
Proactively design, plan, and implement comprehensive and effective information security programs.
Perform complex network administration functions in a multi-platform, multi-segment network environment accurately and efficiently.
Consult effectively with internal and external stakeholders to develop solutions to complex issues.
Work independently and follow through on responsibilities with minimal direction.
Organize, set priorities, and exercise expert independent judgment within areas of responsibility.
Adjust priorities as circumstances dictate.
Troubleshoot and resolve complex hardware, software and connectivity problems.
Ensure systems and network security through the use of advanced security software and protocols.
Communicate clearly and effectively, both orally and in writing.
Prepare clear, concise and accurate reports, documentation and other written materials.
Develop and present presentations, proposals, and recommendations clearly, logically, and persuasively.
Exercise sound independent judgment within policy guidelines.
Keep technical skills current to meet continuing network administration responsibilities.
Establish and maintain effective working relationships with all those encountered in the course of work.
Be present onsite at Agency locations during the normal business hours.
Be physically present at non-Agency locations including, but not limited to, member agencies, conferences, and other work-related events that occur offsite.
This benefits overview is a summary and is not to be considered all-inclusive or applicable to all employees.
THE PROVISIONS OF THIS ANNOUNCEMENT DO NOT CONSTITUTE A CONTRACT, EXPRESSED OR IMPLIED, AND ANY PROVISION CONTAINED IN THIS BULLETIN MAY BE MODIFIED OR REVOKED WITHOUT NOTICE.
Retirement
California Public Employees' Retirement System (CalPERS):
An employee who becomes a "new" member of CalPERS for the first time on or after January 1, 2013 (and who was not a member of another California public retirement system prior to that date) will be enrolled in the CalPERS 2.0% @ 62 benefit formula with a three-year final compensation in accordance with Public Employees' Pension Reform Act of 2013 (PEPRA). New members (PEPRA) will be required to pay half of the normal cost [Govt. Code Section. 7522.30(c)] currently 6.25% of eligible earnings toward the employee contribution.
An employee who is a "classic" member of CalPERS, or a current member of another California public retirement system, who is hired on or after January 1, 2012, will be enrolled in the CalPERS 2.0% @ 55 benefit formula with a three-year final compensation. Classic members shall contribute 7% of eligible earnings toward the employee contribution.
Social Security/Medicare:
Along with CalPERS retirement, the Agency also participates in Social Security and Medicare. The Agency pays 7.65% on your behalf [6.2% Social Security + 1.45% Medicare], and the employee pays 7.65% via payroll taxes.
Medical
The Agency shall make a maximum monthly contribution towards the cost of his/her health insurance as follows:
January 2022
Waive Coverage $ 1,058.00
Employee Only $ 1,058.00
Employee +1 $ 1,375.00
Employee & Family $ 1,648.00
2 02 3 Age n cy C o nt r ib ut i o n
& Su p e r vis or s U n i ts U n r e p r e s e nted & E xecu t ive E mpl o y ee s
Health insurance is offered through CalPERS, and enrollment is optional with evidence of health coverage from another source. Eligible employees who waive their medical benefit receive a cash incentive payment. Coverage is effective the first day of the month following enrollment.
Dental and Vision Insurance
The Agency offers two dental plans – Delta Dental (PPO) and Western Dental (DPO). Enrollment in one of the plans is mandatory. Coverage is effective the first day of the month following enrollment.
Vision insurance is offered through EyeMed Vision Plan and enrollment is voluntary. Coverage is effective the first day of the month following enrollment.
Flexible Spending Account (FSA) Plan
Upon completion of six months of employment, employees may participate in the Agency's Section 125 Cafeteria Program. Participants in this program may take advantage of tax savings offered through a medical care flexible spending account, a dependent care flexible spending account, or purchase supplemental benefits including critical illness and accident insurance with pre-tax dollars. In addition, employees can purchase supplemental life insurance with post-tax dollars.
Term Life and Accidental Death & Dismemberment (AD&D) Insurance
Life and AD&D insurance is offered through Cigna Life Insurance. Executive Management employees are provided with 1 time their annual earnings up to $300,000. Unrepresented Management employees are provided with an Agency paid $90,000 Life and AD&D policy. Unrepresented non-management, and members of the Supervisors', Laboratory, Professional, General, or Operators' Unit are provided an Agency paid $50,000 Life and AD&D policy. Enrollment into a basic $10,000 Life and AD&D policy is required and paid by the employee. Employees may purchase dependent life, for their spouse and/or eligible child(ren), or additional Life and AD&D coverage for themselves up to $500,000. Coverage is effective the first day of the month following date of hire.
Disability Insurance
Employees are insured by an Agency-paid long-term disability insurance, which will provide income for an employee who is totally disabled from illness, injury, or accident. The basic benefit provides for 60% of the first $10,000 of monthly salary, reduced by deductible income, after a 365-day waiting period. Coverage is effective the first day of the month following the date of hire.
Short-term disability insurance is available through State Disability Insurance (SDI). Employees covered by SDI are covered by two programs: Disability Insurance and Paid Family Leave. Per applicable MOU and/or Personnel Manual, cash-out option available.
Employee Assistance Program
Agency employees are provided access to an Employee Assistance Program (EAP) which provides 24/7 assistance needed to help resolve life's challenges.
401(a) & 457(b) Deferred Compensation
Participation in a 457 deferred compensation plan is available through Empower Retirement. The Agency will contribute $25.00 per pay period to a single 457(b) account for each employee who has made an elective deferral of twenty-five ($25) or more to the plan. Also, participation in a 401(a) Defined Contribution Plan is available within 60 days of hire.
Flexible Work Arrangements
Whenever possible, the Agency strives to be flexible to help employees achieve a balance between work and home responsibilities. Most employees participate in a 4/10 work week.
PAID TIME OFF
Holidays
The Agency offers nine (9) paid holidays. Additional paid floating holidays are available every fiscal year as follows:
Vacation Leave
Employees accrue 80 hours of vacation leave per year depending on length of employment, progressing to 200 hours per year. Executive Management employees accrue 120 hours of vacation leave per year depending on length of service, progressing to 240 hours per year. Per applicable MOU and/or Personnel Manual, cash-out option available.
Sick Leave
Employees accrue 96 hours of sick leave annually.
Vehicle Allowance
Executive Management and Unrepresented Management employees may receive a monthly vehicle allowance .
Safety Equipment Stipend
Members of the Laboratory Unit shall be provided with safety glasses. Payment shall be on a reimbursement basis, not to exceed $250 per fiscal year. Additionally, Laboratory members will receive $300 safety equipment stipend.
Professional Development Stipend
Employees not on original probation shall be entitled to a professional development stipend of one thousand dollars ($1000) per calendar year. The professional development stipend shall be paid every twenty-fifth (25th) pay period. Refer to specific MOU or Personnel Manual for details and payment information.
Educational Reimbursement Program
The Agency may reimburse eligible employees for the cost of educational courses up to $5,250 per fiscal year for the cost of educational expenses that are related to the employee's work. Limited Term employees are not eligible for this benefit.
Wellness Stipend
Employees not on original probation shall be entitled to a wellness stipend of five hundred dollars ($500) per calendar year. The wellness stipend shall be paid every twenty-fifth (25th) pay period.
Computer Loan Program
Eligible employees may receive an interest-free loan up to $3,000 to purchase a personal computer . Limited Term employees are not eligible for this benefit.
This benefits overview is a summary and is not to be considered all-inclusive or applicable to all employees.
jackharris.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, jackharris.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, jackharris.com is the ideal place to find your next job.