Cybersecurity Analyst (Enterprise Supervising Technology Analyst) (20523823)

The City of San José is a place where we use civic technology to help our community thrive.

As the 10th largest city in the nation, the City manages a large set of services and assets. The City operates on a budget of $5 billion, with 7,000 employees serving 1+ million residents and 80,000 businesses in the heart of Silicon Valley.

Information Technology's (IT) mission: Put powerful tools and information in the hands of people to unleash their brilliance in service to our community. IT enables that mission through business and infrastructure systems, cybersecurity, data management and analysis, productivity and collaboration tools, the San Jose 311 resident experience platform, data equity and privacy programs, and strategic planning. San Jose is powered by truly great people, a robust technology environment, and a strong sense of purpose.

We promote work-life integration and a focus on growth to bring out the best in our people. Come join us in making San Jose the most vibrant, equitable, sustainable, and innovative city in America!

You can visit the Information Technology Department website to learn more about us.
NOTE - The first review of applications will be on Monday, August 5, 2024. Please submit your application by 11:59 p.m. (PST) on Friday, August 2, 2024, if you would like your application to be included in the first review. Candidates who pass the first application review round will be invited to interviews on the week of August 12, 2024.

The City of San José Information Technology Department (ITD) seeks a Cybersecurity Analyst (Enterprise Supervising Technology Analyst) to support new and existing initiatives in the Cybersecurity Office. The position will focus on Risk Mitigation as well as Identity & Access Management with exposure and support on all aspects of the Cybersecurity practice, including cross-support.

The ideal candidate will be part of one of the largest, most innovative communities in the nation. Led by the City Information Security Officer (CISO), the Cybersecurity Analyst will implement and manage information and system security programs across the City that keep municipal services secure and resilient. The Cybersecurity Analysts will support the CISO and the City by administering risk identification, protection and compliance, threat detection, incident response, and recovery services for all City departments to achieve business resilience.

The City of San José requires Cybersecurity Analysts to be highly skilled and adapt quickly to deal with emerging challenges. The candidate must be able to apply expertise in all aspects of security, interface with vendors, keep their skills current, manage security projects, and provide security services to City departments with strong outcomes.

Key responsibilities include but are not limited to the following:

• Building and maintaining a robust Identity and Access Management program with the following characteristics:
  • Auditing and Reporting
  • Role-based Access Control
  • Single Sign-On
  • Federation
  • Identity Lifecycle (Workflow management)
  • Privileged Identity Management
  • Provisioning
  • Compliance
  • Policy Management
• Defining, planning, and executing security-related projects from beginning to end.
• Managing vendors to execute tasks on demand or as part of a project.
• Building and managing a strong vulnerability management program. The ideal candidate will have hands-on experience with vulnerability management tools and a strong technical understanding and experience assessing vulnerabilities and identifying weaknesses in multiple operating system platforms, databases, and application servers.
• Building and managing a strong IT asset management program. The ideal candidate will have a strong background in maintaining IT asset inventories, software, hardware, and logical inventory of systems.
• Identifying and mitigating threats utilizing existing technologies. Working with other teams to mitigate identified vulnerabilities from identification to closure. Tracking and reporting mitigation efforts. Be familiar with the Plan of Action and Milestones in tracking, remediating, socializing, and getting them to completion.
• Working with other teams preparing, detecting, eradicating, and restoring operations in the event of incidents.
• Managing Plan of Action and Milestones for existing vulnerabilities
• Working with relevant teams to ensure the restoration of systems and technologies in accordance with policy and based on business group needs.
• Interfacing with the Virtual Security Operations Center (V-SOC) and using deployed tools and services to ensure system and network monitoring is taking place in accordance with defined service levels, contracts, and established standards.
• This role requires flexibility and adaptability to meet the Security needs of the ITD. The individual must be able to support other areas of expertise within the security domain, such as but not limited to NIST Cybersecurity Framework implementation, Identity Access Management, Risk Management & Compliance, Risk Assessments, Training, Audit Support, and others.

Please note that the Cybersecurity Analyst (Enterprise Supervising Technology Analyst) position is currently eligible for a hybrid telework schedule. The schedule for working remotely and onsite is subject to change.

Salary Information: The final candidate's qualifications and experience shall determine the actual salary. In addition to the starting salary, employees in the Enterprise Supervising Technology Analyst (ESTA) classification shall also receive an approximate five percent (5%) ongoing non-pensionable compensation pay.

• Salary Range (including the 5% NPWI): $141,697.92 - $172,645.20

The ESTA classification is represented by the City Association of Management Personnel (CAMP) bargaining unit.