This posting will remain open continuously until filled.
Anticipated Hiring Range: $51.72/HR - $55.02/HR, DOQ/E The Town of Castle Rock's future and the quality of that depend on the choices we make today. Do you want to be part of a team that make decisions that work now while preserving and protecting Castle Rock's identity and quality of life for the future? We value
teamwork,
cooperation, and
quality communication. We strive to provide exceptional public service to our customers and encourage creativity and innovation. We welcome all that share those values to apply.
Working for the
Town of Castle Rock includes:
- The opportunity to make a difference in our community
- Career Advancement Programs
- Employee well-being program
- Competitive total compensation with an excellent benefits package
- Free membership to the MAC or Recreation Center
- Public Service Student Loan Forgiveness eligible employer
Department:The Town of Castle Rock's Division of Innovation and Technology (DoIT) plans and maintains the Town's information systems. Employees in this division are dedicated to improving business processes and prioritizing technical projects according to the Town's strategy and goals.
Essential Duties & Responsibilities:- Performs a variety of security validations such as; vulnerability audits, system security assessments, user and group access, firewall rule audits, internal and external access controls, and website vulnerability scanning. Performs independent analysis and on-demand system, application, and network security audits.
- Communicates security concerns and provides input on network architecture, design, implementation and ongoing support for network security.
- Serves as lead in the selection and identification of appropriate security solutions; Researches potential for maintaining compliance through utilizing and/or augmenting existing technologies.
- Provides system security planning, advisement, and security best practices research to ensure ongoing system security and data integrity
- Provides technical expertise for the administration of security management tools.
- Recommends and assists in the implementation of appropriate management, operational, and technical security controls in order to meet regulatory security requirements such as PCI, HIPAA and CJIS.
- Performs information security audits of technology vendors for software, services, and hosting sites for security compliance and IT security risk management. Makes information security-based recommendations for technologies, applications, and system architecture.
- Assists in the development of Town-wide information security standards, policies, procedures and guidelines.
- Builds effective relationships with both IT and Town department staff and management to identify information security risks and design and implement appropriate security controls for applicable environments.
- Assists in development of the Town's security awareness training program and maintains appropriately updated documentation and training materials. Facilitates applicable information security training sessions and manages online information security training as applicable to staff positions and roles.
- Performs other duties as assigned or as necessary.
Minimum Qualifications: An equivalent combination of education, training, and experience that demonstrates required knowledge, skills, and abilities may be considered.
Education: Bachelor's degree in Computer Science or a closely related field
Experience: At least five (5) years of progressive experience that includes Information Security, IT Controls, or network Management; an equivalent combination of education, training, and experience.
Licenses and/or Certifications: a valid Driver's License is required
Preferred Qualifications:- GIAC Certification
- Certified Ethical Hacker Certifications
Knowledge, Skills, and Abilities:- Strong current knowledge of IT security concepts (such as attack surface management, zero trust, identity access management, behavioral indicators of compromise, zero-day vulnerabilities, etc.), IT security best practices, new and revised security solutions, security process improvements and the development of emerging attack types and threat vectors.
- Strong current and comprehensive knowledge of modern firewall configurations, endpoint protection, EDR/XDR, SIEM, network protocols, routers, switches, and wireless access points.
- Appropriate knowledge of updated security requirements for compliance, including, but not limited to PCI, HIPAA, CJIS, and the NIST Cybersecurity Framework and CIS Critical Security Controls.
- Ability to write concise security-focused reports and develop and update standard operating procedure (SOP) manuals.
- Ability to perform network vulnerability audits, risk assessments, and firewall rule audit. Knowledge of data encryption and other security measures.
- Knowledge of cyber-security trends and risk management techniques.
- Strong knowledge of server infrastructure, web servers and database servers.
- Ability to establish and maintain effective work relationships with coworkers, supervisors and the public.
- Ability to understand and convey technical information effectively, both orally and in writing.
- Excellent time management skills including ability to effectively advance multiple projects at one time.
Physical Demands:- Sedentary work for long periods of time at a keyboard or workstation
- Occasional physical work including ability to move and lift equipment weighing up to 50 lbs.
- Occasional lifting, carrying, walking and standing
- Occasionally required to use hands to finger, handle or feel objects, tools or controls; reach with hands and arms; and stop, kneel, crouch or crawl
- Frequent hand/eye coordination to operate personal computer and office equipment such as hand tools and diagnostic instruments
- Vision for reading, recording and interpreting information
- Speech communication and hearing to maintain communication with employees and citizens
Work Environment: - Works primarily in a clean, comfortable environment
Equipment Used:- Uses general modern office equipment, to include, keyboard, 10-key adding machines, diagnostic instruments, and telephones
- This position may require the incumbent to occasionally use personal equipment (e.g. vehicle, cell phone, tools, etc.) in the course of their employment
This posting is subject to close at any point in time once a qualified pool of applicants has been obtained. Must satisfactorily complete a criminal background check and fingerprint analysis prior to commencing employment.
The Town of Castle Rock is an Equal Opportunity Employer.
Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws.
For further information, please review the Know Your Rights notice from the Department of Labor.