Designs and directs a citywide information security program and partners with city leadership on risk management to provide the protection and confidentiality of data and other information assets of the city.
This job reports to: Chief Information Officer
Skill in superior interpersonal and communication skills (oral and written), investigation, critical and coordination of security anomalies and events, road mapping, strategic planning, program management, strong customer service skills, negotiation and mediation, presentation, and public speaking, performing security incident investigations or forensic analysis of a security incident or event.
Knowledge of standard security practices, network architecture, routing and Transmission Control Protocol/Internet Protocol (TCP/IP), general business processes and standards associated with areas of assignment, Risk and Threat assessment processes and practices; project planning and management; business continuity planning, documentation and evaluation; managing the evidentiary process; the use of Third Party Applications and native scripts and languages; maintaining the chain-of-custody process and procedures; strong working knowledge of pertinent laws and the law enforcement community, and knowledge of the principles and methods used in the analysis and development of information security systems and procedures; currently accepted information security standards, guidelines, and theories; advanced computer technology equipment operational capacity & capability.
Ability to analyze and interpret complex data, effectively supervise personnel, and motivate and direct the work of others, prepare and present effective, clear, and concise reports and correspondence, identify and recommend information security needs for the city, analyze problems and identify alternative solutions, deal effectively and harmoniously with city executives, department and assigned staff, customers, and the public.
Bachelor's
degree in related field and ten (10) years of directly related
experience.
*Any combination of relevant education and experience may be substituted on a year-for-year basis.
Must possess and maintain certification as a Certified Information Systems Security Professional (CISSP), issued by the International Information Systems Security Certification Consortium, Inc. (ISC)2, or achieve certification within the first 6 months of employment.
FLSA Status: Exempt
Occupational Group Code: 06
Occupational Group Description: Data Processing
EEO Job Category Code: A
EEO Job Category Description: Officials and Administrators
Organizational Level: Superintendent/Manager
NCCI: 8810
Bargaining Unit: No Representation
The following information pertains to driving requirements for this classification with the City of Tucson. Under "Driving Level" None, Secondary or Primary, refers to the driving responsibility as it relates to the essential functions of the classification. License Type is just that, the type of Arizona Driving License required for the classification. If the position requires a Commercial Driver’s License (CDL), the endorsements will be listed under "Endorsements." Under Safety Sensitive a "Yes" means employees with this classification are subject to pre-employment and random drug testing. License Type A, B, C, D, or M may require the use of personal or City vehicles on City business. Individuals must be physically capable of operating the vehicles safely, possess a valid license and have an acceptable driving record. Use of a personal vehicle for City business will be prohibited if the employee is not authorized to drive a city vehicle or if the employee does not have personal insurance coverage. Exceptions to classification driving requirements may exist based on position.
Driving Level: Incidental
License Type: Valid and Unrestricted Class D - Driver
CDL Endorsements: None
Safety Sensitive: No