|
Marion County Class Specification BulletinPage of
<br />>>>
<br />PREFERENCES
<br />Certified Information Systems Security Professional (CISSP), or formal security certifications from
<br />>
<br />(ISC)², GIAC, CompTIA, ISACA.
<br />Information security principles and practices, including any of the following: security risk
<br />>
<br />assessment standards, risk assessment methodologies, and vulnerability assessments.
<br />Senior level knowledge of mainstream operating systems and a wide range of security
<br />>
<br />technologies, such as network security appliances, identity and access management (IAM)
<br />systems, anti-malware solutions, automated policy compliance tools, and desktop security
<br />software.
<br />KNOWLEDGE, SKILLS AND ABILITIES
<br />Knowledge of technology hardware and software which includes, but is not limited to systems, application
<br />languages, server based systems, cloud computing, personal computers, local and wide area network
<br />configurations and management, information/data management software and state-of-the-art system
<br />development and maintenance technologies; local, state, and federal laws, rules, policies, and
<br />regulations affecting information security and related technology and systems; strategic planning,
<br />preparation, and projection; and effective leadership and organizational communication principles and
<br />practices. Working knowledge of prevailing industry security standards and common body of knowledge
<br />gained by way of CISSP, SANS, and/or CISA Certifications.
<br />Skills and abilities to manage and oversee comprehensive information security programs; lead diverse
<br />technologies, employees, and customer groups; communicate effectively in writing and orally, including
<br />the ability to make public or staff presentations; establish and maintain effective working relationships
<br />with a variety of individuals and groups, including customers in high-stress situations; and assist in
<br />confidential investigations. Skill in identifying information security problem areas, formulating diagnoses,
<br />and proposing practical solutions. Deep understanding of network infrastructure, including routers,
<br />switches, firewalls, and the associated network protocols and concepts. Ability to establish and maintain
<br />effective working relationships with employees, systems users, outside consultants and vendors.
<br />The IT Security Analyst classification may require specific knowledge, experience, or skill sets based
<br />upon the technology, regulations, and business needs of the assigned county department. This may
<br />include experience with specific types of information system technology, complex database management
<br />systems or various business application areas relevant to the departmental business function \[e.g.,
<br />various engineering application systems; health care related services and insurance/client billing
<br />systems; and protective services confidential database systems\].
<br />ADOPTED:
<br />07/18
<br />https://agency.governmentjobs.com/marion/default.cfm?action=specbulletin&ClassSpecID=...8/3/2020
<br />
|