Cyber Security Engineer
Apply NowCompany: Carroll County, MD Public Schools
Location: Westminster, MD 21157
Description:
Position Type:
Technology Services/Engineer
Date Posted:
5/21/2024
Location:
CCPS Central Office
Closing Date:
06/18/2024Job Title: Cyber Security Engineer
Pay Schedule: Administrative & Technical Services (ATSP), Lane 3
FLSA Status: Exempt
Reports to: Supervisor of Information Technology
JOB SUMMARY
Develop and oversee the implementation of information security procedures and guidelines. Build, maintain and upgrade security technology, such as firewalls, for the safe use of computer networks and the transmission and retrieval of information. Design and implement appropriate security controls to identify vulnerabilities and protect digital files and electronic infrastructures. Monitor and respond to computer security breaches, viruses, and intrusions, and perform forensic investigation. Will oversee the assessment of information security systems.
ESSENTIAL JOB FUNCTIONS
MINIMUM REQUIREMENTS
KNOWLEDGE, SKILLS AND ABILITIES
PHYSICAL DEMANDS
Sedentary Work: Exerting minimal but not constant physical effort to perform sedentary work, typically involving some combination of balancing, climbing, crawling, crouching, feeling, grasping, handling, hearing, kneeling, lifting, mental acuity, pulling, pushing, reaching, repetitive motion, speaking, standing, stooping, talking, visual acuity, walking and may involve some lifting, carrying, pushing and/or pulling of objects and materials of moderate weight (5 to 10 pounds), visual perception and discrimination, the ability to perceive and discriminate sounds, perceive and discriminate color, perceive odors, and require oral communications.
WORKING CONDITIONS
Employees in this position work in an environment that requires them to regularly make decisions that could lead to major community or organizational consequences if they fail to make the appropriate decision at the time.
Carroll County Public Schools has the right to revise this position description at any time and ensuing acknowledgement of understanding does not represent in any way a contract of employment.
Attachment(s):
Technology Services/Engineer
Date Posted:
5/21/2024
Location:
CCPS Central Office
Closing Date:
06/18/2024Job Title: Cyber Security Engineer
Pay Schedule: Administrative & Technical Services (ATSP), Lane 3
FLSA Status: Exempt
Reports to: Supervisor of Information Technology
JOB SUMMARY
Develop and oversee the implementation of information security procedures and guidelines. Build, maintain and upgrade security technology, such as firewalls, for the safe use of computer networks and the transmission and retrieval of information. Design and implement appropriate security controls to identify vulnerabilities and protect digital files and electronic infrastructures. Monitor and respond to computer security breaches, viruses, and intrusions, and perform forensic investigation. Will oversee the assessment of information security systems.
ESSENTIAL JOB FUNCTIONS
- Serves as the security subject matter expert with a keen focus on implementing, monitoring, and assessing strategic initiatives for information security. This includes establishing, documenting, and implementing best practices, governance, and standards for security.
- Researches, evaluates, and drives next-generation security technologies and concepts to keep security ahead of the curve.
- Creates, refines, delivers, and maintain information security standards to be used throughout the enterprise.
- Manage service, delivery, incident, and ticket management related to cyber security issues.
- Develops cybersecurity awareness training program and writes informational guides (knowledge articles) to educate staff, students, and parents on responsibilities for safety and security.
- Creates, updates, and implements CIS critical security controls.
- Oversees and continuously improves an effective vulnerability management program.
- Serves as the subject matter expert in data protection and loss prevention and regularly monitors and improves best practices.
- Continuously monitors for possible threats and mitigates as appropriate including the implementation of an effective incident response plan.
- Develops and maintains strong and collaborative relationships with security partners and agencies.
- Conducts and attends project meetings to provide security and governance input throughout project lifecycles.
- Works with Engineering and Development teams to create end-to-end security solutions.
- Monitors changes in the legislative, regulatory, and contractual landscape to ensure that the CCPS information security program is current and adheres to current industry standards.
- Performs other duties as assigned by Supervisor.
MINIMUM REQUIREMENTS
- Possess one or more of the following:
- Bachelor's degree with a focus in Information Technology, Computer Science, or related technology field required.
- Industry certifications such as CISSP, CISA, GSEC or Azure Solutions Architect preferred.
- Five (5) years of experience in security engineering or an architect role within a complex technology and business environment.
- Subject matter expertise of industry security frameworks including CIS and NIST.
- Strong background in vulnerability management best practices and solutions.
- Proven experience developing a risk assessment for an organization.
- Hands-on experience conducting penetration tests and remediation.
- Subject matter expert in data protection and data loss prevention.
- Experience in the development and oversight of user security awareness training programs.
- Experience with hosted and cloud services, and the related security implications and control approaches.
- Experience in policy/standard creation and acceptance.
- Strong understanding of security tenets, such as encryption/key management, network design, access control and incident containment.
- Experience in other parts of IT as an administrator or engineer in a non-security role.
- Evidence of strong, effective verbal and written communication skills with the ability to convey technical information to a non-technical audience as well as developing complex strategic communications for senior leadership.
- Must be a self-motivated and independent worker with the ability to effectively prioritize and multi-task.
- Salaried position requires on-call support 24 hours a day, 7 days a week.
KNOWLEDGE, SKILLS AND ABILITIES
- Ability to establish and maintain cooperative and effective working relationships with school system staff.
- Ability to work with persons from diverse backgrounds.
- Ability to communicate effectively orally and in writing.
- Ability to provide technical assistance to staff.
- Ability to monitor, analyze and evaluate program systems and procedures, recommending, making, and coordinating appropriate changes.
PHYSICAL DEMANDS
Sedentary Work: Exerting minimal but not constant physical effort to perform sedentary work, typically involving some combination of balancing, climbing, crawling, crouching, feeling, grasping, handling, hearing, kneeling, lifting, mental acuity, pulling, pushing, reaching, repetitive motion, speaking, standing, stooping, talking, visual acuity, walking and may involve some lifting, carrying, pushing and/or pulling of objects and materials of moderate weight (5 to 10 pounds), visual perception and discrimination, the ability to perceive and discriminate sounds, perceive and discriminate color, perceive odors, and require oral communications.
WORKING CONDITIONS
Employees in this position work in an environment that requires them to regularly make decisions that could lead to major community or organizational consequences if they fail to make the appropriate decision at the time.
Carroll County Public Schools has the right to revise this position description at any time and ensuing acknowledgement of understanding does not represent in any way a contract of employment.
Attachment(s):
- Cyber Security Engineer