Cybersecurity Analyst – City of Seattle

Title of the Job: Cybersecurity Analyst

Location: Seattle, WA

Job Description: Position DescriptionInvitation to Compete #32-24: Cybersecurity AnalystInformation Technology – Central LibraryRegular; 80 hours per pay periodSalary Range: $127,326 – $154,741 annuallyThis is a full-time, FLSA exempt and benefited position. A pay period is two weeks in length.This position is open to the public and to The Seattle Public Library’s employees. Please read the How to Apply section of this bulletin for more information. This recruitment will be open until the position is filled. Online applications that have been submitted with a cover letter and resume in NEOGOV by November 15, 2024 will receive first consideration.OverviewThe Seattle Public Library is Seattle’s center of information and knowledge and one of the most popular and valued services in the city. Library staff members are highly regarded by the public for their knowledge, quality of service and care. Staff members are committed to the Library’s organizational values of respect, partnership, engagement, diversity, transparency and recognition. In particular, they demonstrate respect, engage in partnerships, and are transparent in their communications and intentions. A strategic priority of the Library is to foster an internal culture of innovation which focuses on creativity, engagement, learning and staff development.The Cybersecurity Analyst oversees the Seattle Public Library’s (SPL) cybersecurity program, ensuring systems are secure and align with industry best practices. This role encompasses the management and development of a comprehensive cybersecurity program that spans all SPL departments. The individual collaborates with stakeholders at all levels to develop innovative and operationally beneficial solutions. Reporting to and following the strategic direction from the Library Technology Office (LTO), the Cybersecurity Analyst works collaboratively to determine priorities and develop timeframes. This position requires strong analytical skills, extensive knowledge of cybersecurity standards and principles, and the ability to interface effectively with all levels of the organization. The incumbent must also possess a thorough understanding of project management and at times will independently manage the implementation of security solutions in collaboration with team members.Job ResponsibilitiesExercise sound judgement and independent decision making with limited supervision.Maintain a high degree of discretion with broad systems permissions and access to confidential information, including records for the Chief Librarian’s Office and HR.Perform analysis of log files and incident data to identify threats.Continuously monitor security systems for potential threats and vulnerabilities.Troubleshoot complex security issues related to implemented platforms.Provide guidance for corrective actions and countermeasure deployments.Develop and implement secure network, application, server, endpoint, and wireless solutions.Ensure systems meet security standards and best practices.Research and recommend new security technologies.Assess security requirements during change management processes to ensure cybersecurity measures are integrated into new and upgraded systems.Perform security audits to ensure adherence to best practices and standards.Track and ensure mitigation of audit findings and recommendations.Develop and deliver security awareness training programs.Communicate cybersecurity value to all organizational stakeholders.Collect and maintain data for cybersecurity reporting and monitoring.Develop and report metrics to assess security posture.Ensure limited access to assets is authorized and managed according to risk assessments.Secondary DutiesMaintain documentation to establish repeatable security processes.Continuously evaluate and adjust the cybersecurity risk management strategy.Identify and implement improvement opportunities in cybersecurity practices.Provide strategic guidance to enhance cybersecurity.Oversee the organization’s cybersecurity strategy and policy development.Develop and manage incident response plans and recovery programs.Conduct security risk assessments and vulnerability assessments.Participate in SPL staff meetings and planning sessions constructively.Perform other related duties as assigned, including occasional off-hour work.Ensure data management aligns with the organization’s risk strategy to protect information.Takes on additional duties as assignedQualificationsEducation and ExperienceThe items listed below are the minimum requirements for the job and are relevant to this position. The organization values both work experience and education and realizes that individuals take different paths to acquire knowledge.Bachelor’s degree from an accredited school with major in cybersecurity, computer science, information technology, systems engineering, or related field; andTwo years of increasingly responsible experience in cybersecurity application and infrastructure, technology managementExperience in assessing and managing operational network and systems risks from a cyber security perspective.Demonstrates the following Core Competencies – action oriented, decision quality, managing conflict, comfort with ambiguity, customer focus, valuing differences, and time management.Any equivalent combination of education and experience that provides the necessary qualifications to successfully perform the duties of the position will be considered.Technical Skills and KnowledgeUp-to-date experience in general management, cybersecurity frameworks, technology management, systems administration, and project management.Experience with security technologies (firewalls, IDS/IPS, SIEM, DLP, endpoint protection).Knowledge of network security architecture (topology, protocols, components).Hands-on experience in security incident response, threat intelligence, detection, and vulnerability management.Familiarity with data backup, recovery, business continuity, and disaster recovery.Understanding of penetration testing principles, tools, and techniques.Knowledge of cybersecurity concepts (risk management, access control, encryption, network security, incident response).Understanding of intrusion detection methodologies and techniques for host and network-based intrusions.Continuous Learning and InnovationWillingness to continually learn, update technical skills, and seek growth opportunities.Proven ability to work independently and collaboratively.Cultivate innovation by improving services and driving process improvements within the workgroup.Strong communication skills with diverse populations and staff.Recognize and set priorities, manage interruptions effectively.Compliance and Regulatory KnowledgeIn-depth knowledge of security and privacy provisions of regulations and standards (PCI, HIPAA, ISO 27000, NIST sp800).Knowledge of controls related to data use, processing, storage, and transmission.Awareness of vulnerability information dissemination sources (alerts, advisories, bulletins).Professional Licenses and CertificationsA valid Washington driver’s license and insurability as a driver for SPL is required.One or more security focused certifications: Certified Information Systems Security Professionals® (CISSP®); Certified Information Systems Auditor® (CISA®); Certified Information Security Manager® (CISM®), etc.Work EnvironmentWork is performed in a normal office environment and requires a strong team orientation. Some pressure from deadlines or changing priorities exists and interruptions to workflow can occur.The primary workplace is in an office environment, working with standard office equipmentPeripheral office equipment generates a quiet to moderate noise levelOut-of-area travel may be required to attend professional conferences and meetingsAdditional InformationHow to ApplyCandidates who meet the qualifications are asked to submit the following items in NEOGOV by 5:00 p.m. on November 15, 2024 will have first considered for this position. Your application will not be considered if these items are missing or incomplete:Online applicationA cover letter that describes how your experience and skills align with the stated job responsibilities and qualifications. Please let us know why you are interested in this position.Current resume that summarizes relevant education, professional experience, training and skills.Applications that do not include a cover letter, resume, and?complete?online application will not be considered.Applicants will be screened for competitiveness, completeness, and written communication skills. Initial screening will be based on a review of application materials. The employment history detailed in your application materials MUST validate/support your responses to the supplemental questions. If your responses cannot be validated, you will not proceed to the next steps of the review/selection process. The most competitive candidates will be invited to participate in a series of one or more interviews.Benefits and Salary Information
The full salary range for this position is $127,326 – $154,741 annually.The City of Seattle offers a comprehensive benefits package including vacation, holiday, and sick leave as well as medical, dental, vision, life, and long-term disability insurance for employees and their dependents. More information about employee benefits is available on the City’s website at:Retirement information can be found here:? .Additional Information
If you have questions regarding this bulletin or employment at The Seattle Public Library, please send an email to . The Library promotes diversity and inclusion in employment. If accommodations are needed during the selection process, please contact us.Please keep in mind that job offers are contingent on a review of criminal history as well as verification of information provided by the applicant as part of the application process.The City of Seattle offers a comprehensive benefits package including vacation, holiday and sick leave as well as medical, dental, vision, life and long-term disability insurance for employees and their dependents.More information about employee benefits is available on the City’s website at:01Do you have at least two years of experience in cybersecurity application and infrastructure, technology management?

• Yes
• No

02Do you have experience with security technologies (firewalls, IDS/IPS, SIEM, DLP, endpoint protection)?

• Yes
• No

03Do you have a valid Washington driver’s license?

• Yes
• No

04Do you have one or more security focused certifications: Certified Information Systems Security Professionals® (CISSP®); Certified Information Systems Auditor® (CISA®); Certified Information Security Manager® (CISM®), etc. ?

• Yes
• No

05Please briefly describe your experience in general management, cybersecurity frameworks, technology management, systems administration, and project management. Type ‘N/A’ for no experience.

Company Name: City of Seattle

Salary: $127326 – 154741 per year

Apply for the job!