1042 IS Engineer-Journey
(Cybersecurity Vulnerability Management Engineer)
|Department||Department of Technology|
|Date Opened||1/24/2019 3:00:00 PM|
|Filing Deadline||2/21/2019 10:00:00 AM|
|Salary||$53.14 - $66.85/hour; $9,211.00 - $11,587.00/month; $110,526.00 - $139,048.00/year|
|Job Type||Permanent Exempt|
Applicants are encouraged to apply immediately as this recruitment may close at any time but not earlier than January 31, 2019. The position is open until filled.
The Department of Technology is the centralized technology services provider within San Francisco City & County government, delivering technology infrastructure and services to approximately 33,000 employees and 800,000 residents. The department has an annual operating budget of over $130M and contains over 220 employees. Core service areas include: Infrastructure and Operations, Technology Security, Service Delivery & Management, Enterprise Applications, Project Management Office, Public Safety Systems & Wiring, Technology Administration, Policy & Governance and IT Public Communications.
The Cybersecurity Vulnerability Management Engineer will join the Cybersecurity Architecture & Assurance (CAA) Team to help to define, drive, and deliver on major initiatives in City's Vulnerability Management and Risk Reduction Program. The CAA Team is part of the Citywide Cybersecurity Team which also includes our Cyber Defense Team, IAM Team, GRC, DR/BCP Team, and the City CISO.
Essential Job Duties and Functions:
We are seeking an individual who is passionate about security and has hands-on cybersecurity operational experience, to serve as a Cybersecurity Vulnerability Management Engineer, reporting to the Chief Cybersecurity Architect. As the Cybersecurity Vulnerability Management Engineer, you will be responsible for:
Implements, maintains and operates information system security controls and countermeasures.
Provide assistance and/or guidance to departments and agencies for remediation - recommend appropriate remediation solutions for identified vulnerabilities and track remediation.
Validates and assists in the implementation of security controls and procedures in acquisition, development, and change management lifecycle of information systems.
Develop and implement patch and vulnerability remediation process including package creation, testing and deployment.
Assists in the validation of the discovery of IT assets and devices in support of the asset management program
Mange URL, Firewall filtering, and access control – Palo Alto NGFW
Administers, or provides advice and oversight, for information security training and awareness and phishing programs.
Identify new trends in systems security and data protection, and build business cases for adoption of best practices;
Create, document, maintain, and publish / advocate vision and the business case for systems security and data protection;
Participate in efforts to promote security throughout the enterprise and build good working relationships within the team and with others in the organization;
Develop reference architectures and proof of concept implementations of cloud security environments;
Perform other duties as assigned.
The Permanent Exempt- Full Time position is excluded by the Charter from the competitive civil service examination process and shall serve at the discretion of the appointing officer. The anticipated duration of this project position is thirty-six(36) months and will not result in an eligible list or permanent civil service hiring.
Nature of Work:
This position will work with cross-divisional and cross-departmental IT, Network, Application, and Security Teams. Incumbent must be willing to work a 40-hour week as determined by the department. Travel within San Francisco may be required.
Incumbent will conduct the majority of work at the Department of Technology, 1 South Van Ness. However, there may be situations where the incumbent will be required to work at other sites throughout the City of San Francisco as necessary.
These minimum qualifications establish the education, training, experience, special skills and/or license(s) which are required for employment in the classification. Please note, additional qualifications (i.e., special conditions) may apply to a particular position and will be stated on the exam/job announcement.
An associate degree in computer science or a closely related field from an accredited college or university OR its equivalent in terms of total course credits/units [i.e., at least sixty (60) semester or ninety (90) quarter credits/units with a minimum of twenty (20) semester or thirty (30) quarter credits/units in computer science or a closely-related field].
One (1) year of experience analyzing, installing, configuring, enhancing, and/or maintaining the components of an enterprise network.
Additional experience as described above may be substituted for the required degree on a year-for-year basis (up to a maximum of two (2) years). One (1) year is equivalent to thirty (30) semester units/r forty-five (45) quarter units with a minimum of 10 semester / 15 quarter units in computer science or a closely related field.
- 3 yrs. experience with Vulnerability Management and Scanning Tools such as Tenable Nessus Security Center, Rapid7 Nexpose, Qualys, etc.
- 3 yrs. experience with Patch Management and remediation tools such as SCCM, Tanium, Ansible, JAMF, etc.
- 3 yrs. Experience with OS (Linux, Unix, Windows, Mac OSX) and Windows Services (Active Directory, LDAP, etc.)
- Experience performing assurance of deployment architectures
- Knowledge of security compliance policy, programs, processes, and metrics pertaining to National Institute of Standards and Technology (NIST), HIPAA, PCI-DSS, etc...
- 3 yrs. experience with management of common enterprise grade IT and Security technologies from major vendors (IBM, Cisco, Juniper, Symantec, Palo Alto, FireEye, HP, Microsoft, etc.)
- Experience virtualization platforms and cloud architectures
- Security +
How To Apply
Applications for City and County of San Francisco jobs are only accepted through an online process. Visit www.jobaps.com/sf to register an account (if you have not already done so) and begin the application process.
§ Select the desired job announcement
§ Select “Apply” and read and acknowledge the information
§ Select either “I am a New User” if you have not previously registered, or “I have Registered Previously”
§ Follow instructions on the screen
Computers are available for the public (from 8:00 a.m. to 5:00 p.m. Monday through Friday) to file online applications in the lobby of the Dept. of Human Resources at 1 South Van Ness Avenue, 4th Floor, San Francisco.
Applicants may be contacted by email about this announcement and, therefore, it is their responsibility to ensure that their registered email address is accurate and kept up-to-date. Also, applicants must ensure that email from CCSF is not blocked on their computer by a spam filter. To prevent blocking, applicants should set up their email to accept CCSF mail from the following addresses (@sfgov.org, @sfdpw.org, @sfport.com, @flysfo.com, @sfwater.org, @sfdph.org, @asianart.org, @sfmta.com, @sfpl.org, @dcyf.org, @first5sf.org).
Applicants will receive a confirmation email that their online application has been received in response to every announcement for which they file. Applicants should retain this confirmation email for their records. Failure to receive this email means that the online application was not submitted or received.
All work experience, education, training and other information substantiating how you meet the minimum qualifications must be included on your application by the filing deadline. Information submitted after the filing deadline will not be considered in determining whether you meet the minimum qualifications. Resumes may be attached to the application; however, resumes will not be accepted in lieu of a completed City and County of San Francisco application.
Applications completed improperly may be cause for ineligibility, disqualification or may lead to lower scores.
Note: Falsifying one’s education, training, or work experience or attempted deception on the application may result in disqualification for this and future job opportunities with the City and County of San Francisco.
If you have any questions regarding this recruitment or application process, please contact the exam analyst, Carol Wong, by telephone at 652-628-5045, or by email at firstname.lastname@example.org.
Supplemental Questionnaire (Qualifying and Informational):
Applicants will be prompted to complete a supplemental questionnaire as part of the online employment application. It is essential that applicants provide complete information in identifying their education, experience, training and licensure, consistent with the information provided on their application. The supplemental questionnaire will be used to evaluate whether applicants meet the minimum qualifications. The Questionnaire will also be used to assess the applicant's knowledge, skills, and abilities as they relate to the this position. Applicants must also complete the official application. The information in the supplemental questionnaire will not be scored and is collected for informational purposes.
The Department may establish and implement additional screening mechanisms to comparatively evaluate qualifications of candidates. If this becomes necessary, only those applicants whose qualifications most closely meet the needs of the Department will be invited for an interview.
Applicants may be required to submit verification of qualifying education and experience at any point during the recruitment and selection process. If education verification is required, information on how to verify education requirements, including verifying foreign education credits or degree equivalency, can be found at http://sfdhr.org/index.aspx?page=456
THE CITY AND COUNTY OF SAN FRANCISCO IS AN EQUAL OPPORTUNITY EMPLOYER. MINORITIES, WOMEN AND PERSONS WITH DISABILITIES ARE ENCOURAGED TO APPLY.
As a selected candidate for a job, you will be fingerprinted, and your fingerprints will be sent to the California Department of Justice (DOJ) and the Federal Bureau of Investigation (FBI). The resulting report of your conviction history (if any) will be used to determine whether the nature of your conviction (or arrest, in limited circumstances) conflicts with the specific duties and responsibilities of the job for which you are a selected candidate. If a conflict exists, you will be asked to present any evidence of rehabilitation that may mitigate the conflict, except when federal or state regulations bar employment in specific circumstances, such as:
- Candidates for positions with the Unified School District and the Community College District may be disqualified from consideration should their conviction history not meet the standards established under the California Education Code.
- Candidates for positions with the Recreation and Park Department may be disqualified from consideration should their conviction history not meet the standards established under California Public Resources Code 5164.
Having a conviction history does not automatically preclude you from a job with the City.
If you are a selected candidate, the hiring department will contact you to schedule a fingerprinting appointment.
Disaster Service Workers
All City and County of San Francisco employees are designated Disaster Service Workers through state and local law (California Government Code Section 3100-3109). Employment with the City requires the affirmation of a loyalty oath to this effect. Employees are required to complete all Disaster Service Worker-related training as assigned, and to return to work as ordered in the event of an emergency.
All employees hired on or after January 10, 2009 will be required (pursuant to San Francisco Charter Section A8.432) to contribute 2% of pre-tax compensation to fund retiree healthcare. In addition, most employees are required to make a member contribution towards retirement, ranging from 7.5%-13.25% of compensation. For more information on these provisions, please contact the personnel office of the hiring agency.