Under general direction of the Chief Information Security Officer and the Supervisory Controls and Data Acquisition Manager, the Principal Information Security Analyst (PISA) will be the hands-on analyst conducting day to day monitoring of complex information security systems on IT networks at the San Francisco Public Utilities Commission (SFPUC) as described below.
DUTIES & RESPONSIBILITIES:
Utilizes a wide range of tools to assess Information Security (IS) vulnerabilities on the SFPUC networks including, but not limited to:
a. Rapid 7 Nexpose to scan for IS vulnerability.
b. Splunk or similar tool to perform log management.
c. Websense to perform internet filtering.
d. McAfee’s e-Policy Orchestrator to perform enterprise end-point protection, security policy enforcement, and anti-malware solution implementation.
Reviews configurations and monitors logs from 20 Palo Alto Networks Next Generation Firewalls (NGFW).
Acts as SFPUC point person for external audits designed to comprehensively audit/assess/pen-test external and internal IS vulnerabilities of SFPUC networks.
Reviews audit reports and creates Track-IT work tickets to address vulnerabilities.
Creates confidential bi-monthly summary reports of SFPUC-wide Information Security vulnerabilities.
Evaluates and serves as the primary owner of Security Information & Event Management (SIEM) tools.
On a yearly basis, reviews the privileges of the SFPUC IT System Administrators and recommends changes as appropriate.
Remains current and fluent with industry best practices (e.g., NIST, etc.) and emerging threats.
Actively monitors alerts from trusted sources such as McAfee.
Periodically reviews access to the major SFPUC systems.
Recommends improvements to the SFPUC IS tools and controls.
Attends City and County of San Francisco IS round tables.
Performs IT forensics.
Participates in or runs Information Security Incident drills.
1) An associate degree in computer science or a closely related field from an accredited college or university in Computer Science, Information Technology, or a closely related field
2) Five (5) years of experience analyzing, installing, configuring, enhancing, and/or maintaining the components of an enterprise network.
3) Two (2) years of verifiable and recent experience designing, implementing, and managing/troubleshooting LAN/WAN networks.
4) Two (2) years of verifiable and recent Windows server administration experience.
-Possession of a bachelor’s degree from an accredited college or university in Computer Science, Information Technology, or a closely related field.
-Ability to perform information technology security risk assessments, including written, detailed, comprehensive and complex analyses across all network, system and application security levels on an enterprise-wide level
-Solid verbal and written communications skills.
-Hands-on experience in the tools mentioned above.
Note: All experience should been hands-on and gained within the past ten (10) years.
HOW TO APPLY:
Applications for City and County of San Francisco jobs are being accepted through an online process.
Visit https://www.jobaps.com/SF/newregpages/termsofuse.asp?RecruitNum1=CCT&RecruitNum2=1044&RecruitNum3=SECENG to begin the application process.
Interested applicants who have not previously participated in the City and County of San Francisco’s hiring process are encouraged to contact Ken Salmon at KSalmon@sfwater.org about the application process for this job.