Cybersecurity Analyst II
Requisition ID: 25355
The City of Vancouver is striving to become the greenest city in the world, and a city powered entirely by renewable energy before 2050. We are proud to be one of BC’s Top Employers, Canada’s Best Diversity Employers, and one of Canada’s Greenest Employers. With employees that have helped Vancouver consistently rank as one of the world’s most livable cities, the City values a diverse workforce which represents the vibrant community we so proudly serve.
Consider joining our committed team of staff and being part of an innovative, inclusive and rewarding workplace.
Main Purpose & Function
The Cybersecurity Analyst II is responsible for protecting the integrity and availability of City computing data and telecommunications facilities. The incumbent is expected to apply technical knowledge of computers, networks, and security best practices to manage changes to existing, or upgrade to new technologies enterprise wide. The incumbent will also be tasked to implement tools, establish and configure business rules, processes, and procedures pertaining to Cybersecurity, as well as the monitoring and managing of security incidents to minimize the risk to the City from data being damaged or compromised or from the inappropriate use of the City’s computing and telecommunications facilities. The incumbent will have access to critical infrastructure systems within the City as well as IT event logs. The incumbent is expected to handle sensitive business and/or personnel information.
The scope of the program is Citywide and encompasses protection of networks, systems, equipment and data from attack, damage or unauthorized access. The role also provides support to all technology services delivered directly or indirectly to or by the City.
Specific areas of responsibility include:
- Payment Card Industry compliance
- Application security
- Cloud security (Iaas, PaaS and SaaS)
- Information security
- Network security including SCADA and Internet of Things
- Operational security
- End User security and education
Key Contacts and Reporting Relationships
Reports to the Manager, Cybersecurity in the Enterprise Technology division of Technology Services. This role works with Program and Project team members, cybersecurity analysts, specialists and/or contract resources. Other key contacts are managers and staff at all levels in Technology Services. Collaborates city-wide across all city business units and external vendors, supporting the secure implementation and delivery of technology services.
Specific Duties & Responsibilities
- Monitors firewall logs, intrusion detection logs and other data collected by City systems, which entails a detailed review of all pertinent traffic and transactions on any given system or network within the City.
- Plans, leads and executes risk assessments to determine the security posture of the City’s data and infrastructure from existing City systems and those being considered for purchase or implementation. Makes recommendations based on best practices and in context of the risk to the City and its operational environment.
- Plan, implement, administer, maintain and monitor IT security controls for all digital assets and processes (network, hypervisor, endpoint, server, application, etc), including but not limited to:
- Vulnerability assessment, validation and remediation
- Firewalls, routing and switching equipment
- Intrusion Detection/Prevention Systems
- Anti-malware protection and management
- Remote Access Systems and VPN
- Identity and Access Management Systems and Directories
- Security incident management and response
- Data Loss Prevention
- Endpoint security (laptops, workstations, mobile devices)
- Network Security (Wired & Wireless)
- Application Security
- Operating system hardening
- Managed file transfer
- Logging and monitoring systems (SIEM)
- Network segmentation
- System forensics
- Multi-factor authentication
- Mobile device management
- User and system administration
- Compliance and Audit Management
- Participates in the development and maintenance of Internal Security Policy and Cyber Security Policies
- Support the Systems Team by acting as a resource checking patching for completeness and timeliness.
- Assist in trouble shooting security related network issues with the network support team
- Develop scripts and system integrations to assist in the detection of system misuse or breaches of security.
- Identifies and investigates computer security incidents and inappropriate use of City computing and telecommunications facilities.
- Reviews records of technology usage and presents findings to management
- Works in conjunction with the Internal Audit division on audits that relate to IT Security technologies within the City
- Implements Cybersecurity technologies for use across city business units to secure and protect services delivered to citizens and staff, supporting cost savings, financial responsibility and legal compliance.
- Provides tactical technical advice and consultation to business unit clients and project teams and provides assistance with the adoption of Cybersecurity technology
- Remains current with developments in Cybersecurity and recommends new approaches and application of new technology which will assist the City and clients to meet their business objectives
- Delivers educational security awareness framework for City staff; business and technical; including multi-channel approaches.
- Other duties/responsibilities as assigned
Education and Experience:
Bachelor’s degree in Business, Analytics, Computer Science, or Engineering; CISSP, CCSP, OSCP or equivalent; minimum of 5 years IT experience including 3 years proven experience in Cybersecurity, information security or related technical field; working knowledge of and experience in information security policy frameworks (PCI DSS, IS0 27001, NIST 800-53, etc.) or an equivalent combination of education, experience and training.
Knowledge, Skills and Abilities:
- Experience in supporting a Cybersecurity, or information security operational program
- Experience in system and network incident response practices and procedures
- Strong technical knowledge, understanding of a variety of technical Cybersecurity technologies, architectures, trends, solutions, practices, and familiarity with implementing these in public sector organizations
- Experience in Risk Management frameworks and their application
- Excellent research and analytical skills to track and predict trends in Cybersecurity.
- Ability to collaborate with project teams, creative teams, and solution development teams within a matrix organization.
- Demonstrated ability to work in a technical team of individuals to find ways to ensure secure delivery of technology services.
- Demonstrated operational and project management skills: planning, coordination, organization, and problem-solving skills; results-focused, team-oriented
- Excellent oral, written and presentation/facilitation skills, with the ability to communicate at technical and non-tehcnical levels while working with projects and teamswithin the organization.
- Working Knowledge of business and technical risks, current computer security issues and trends
- Ability to prepare reports on risk assessment results, product recommendations and computer forensic analysis
- Strong leadership, analytical and problem solving skills
- Strong working knowledge of Windows and Linux operating systems
- Ability to handle confidential and/or sensitive information with a high degree of discretion and impartially
- Demonstrable creativity, problem solving and negotiating skills
- Ability to deal with changing and competing deadlines
- Ability to deal effectively with staff at all levels of the organization
- Ability to exercise independent judgement and action in the technical and operational aspects of the work.
Business Unit/Department: IT, Digital Strategy & 311 (1070)
Employment Type: Regular Full Time
Position Start Date: March, 2021
Application Close: January 31, 2021
At the City of Vancouver, we are committed to recruiting a diverse workforce that represents the community we so proudly serve. We encourage applicants from diverse backgrounds, including Indigenous applicants, all genders, nationalities and persons with disabilities.
We thank all applicants for their interest. However, only those selected for an interview will be contacted. Learn more about our commitment to diversity and inclusion.
View Original Source Source