Information Systems Security Engineer PS101077
ESSENTIAL RESPONSIBILITIES:
Assumes responsibility for developing, directing, establishing and maintaining the District’s
information security program and ensuring the security of the District’s most complex and
strategic operations related to mainframe/server, networked and database systems.
Develops, coordinates, establishes and maintains policies to provide guidance to District
departments and staff regarding Local Area Network (LAN), Wide Area Network (WAN),
mainframe, server and desktop security issues; researches and recommends centralized
written manuals and procedures regarding security controls.
Plans, organizes and coordinates committees, task forces and meetings to identify, resolve
and administer security-related issues and activities; assists District departments with disaster
recovery planning and testing.
Researches, identifies and analyzes existing and potential security threats that could harm or
destroy District information assets; interacts and communicates with other government
agencies and external organizations to stay aware of security issues; as appropriate, issues
District wide virus and threat warnings as well as information regarding the identification,
avoidance and mitigation of such threats.
Leads and directs complex projects designed to provide for the protection of District
information assets; recommends solutions and appropriate technology to meet District needs;
designs project and resource plans and schedules; develops proposals using cost/benefit
analyses; evaluates proposed system hardware and software to ensure compatibility with
existing systems; coordinates with vendors and contractors; writes and evaluates proposals;
negotiates contracts for security-related equipment and services; oversees the installation and
evaluation of software and hardware; controls and reports budget expenditures; directs
members of the project team; provides written reports and presentations on project status.
Performs District wide information security audits to identify weaknesses that could be used
to gain access to confidential District information.
Serves as the central point of contact for the District regarding information technology-related
incidents or violations; assists department information technology staff and others (e.g., law
enforcement, auditors) in investigating security violations; performs formal investigations of
District employees for misuse of District assets; collects evidence using forensics techniques
and specialized software; communicates with department heads, District Counsel, Labor
Relations, Human Resources and others regarding sensitive and confidential situations;
reports violations to law enforcement agents as required.
Serves as technical resource to District staff regarding information security matters; provides
training to new employees through the District’s new employee orientation program, as well
as special departmental training sessions.
Creates, implements, maintains and tests emergency and disaster recovery measures that
ensure continual operational readiness of high-profile District systems.
Attends and participates in professional group meetings; stays abreast of new trends and
innovations in the field of information technology in general and information security in
particular.
Other duties as assigned
REQUIRED KNOWLEDGE, ABILITIES, and SKILLS:
Ongoing identification of needs, design upgrades and implementation of new technology
Hardware, software and networking protocols utilized in LAN, WAN and related data
communication systems, including fiber optics and peripheral equipment.
Thorough knowledge of Microsoft Operating Systems up to and including Windows Server
2012R2 and Windows 7 Enterprise