Cybersecurity Analyst

The Digital Solutions department is seeking a Cybersecurity Analyst. The Cybersecurity Analyst’s primary role is to understand and continuously monitor Clean Water Services (CWS) digital footprint in detail, along with evaluating threats that could potentially breach the network, disrupt operations, or put sensitive data at risk. This position helps plan, organize, and coordinate the emergency response plan for technology, along with acting as a control point for CWS’ total technology and electronic data security, emergency management, and software compliance.

(The essential functions listed below are not intended to reflect all duties that may be assigned to this classification. CWS may augment duties and/or essential functions at its discretion. Additionally, some incumbents may not perform all Essential Functions.)

1. Evaluates CWS’ cybersecurity conditions and assesses risk of the environment; recommends improvements to the technological environment to reduce the potential for cybersecurity incidents.
2. Monitors network traffic for security incidents and events; investigates incidents and responds to events in real time; writes detailed incident response reports with preventative recommendations.
3. Monitors firewalls, encryption programs, and other security hardware/software. Continually evaluates and develops improvements in endpoint management & antivirus solutions (workstations, mobile devices, IoT devices, etc.).
4. Develops and promotes best practices for information technology security. Identifies and fixes intrusions and vulnerabilities; recommends changes to technologies that are no longer secure.
5. Supports development, coordination, evaluation, and maintenance of the emergency response plan. Conducts threat research and performs periodic risk assessments and penetration tests or security audits.
6. Assists in developing guidelines for incident management of information technology infrastructure environments in case of natural disasters or other critical incidents that may cause unforeseen downtime in providing information technology services.
7. Assists in developing compliance programs (including policies, user training, and best practices) for departments and implements data security requirements as required by local, state, or federal regulations.
8. Researches and stays current with developments in cybersecurity, new methodologies, and their possible application to CWS. Works with departments and Digital Solutions (DS) staff on complex IT projects and observes industry best practices when implementing software or significant updates to ensure new additions to the portfolio.
9. Acts as a technical and functional resource for cybersecurity questions and a lead in building cross-department best practices for security; assists in developing or recommending training. 
10. Maintains the integrity and confidentiality of sensitive information, files, and records.
11. Maintains a positive, equitable, and inclusive workplace culture to improve the understanding and recognition of diversity and foster multidisciplinary and integrated team approaches.
12. Drives a CWS or personal vehicle for work-related purposes. 

KNOWLEDGE OF: 

• Principles, practices, and techniques for managing information technology security systems
• Network security design, configuration, and administration
• Current technologies utilized within information technology services 
• Principles, practices, and applications of enterprise security practices
• Advanced server platforms, virtualization technologies, systems, and application software
• Compliance requirements for security and licensing within the services provided by CWS departments
• Principles and practices of strategy formulation, program planning, and project management
• Principles and practices for meeting quality standards for customer service 
• Contracting for information services, including contract negotiations and performance monitoring

• Active listening and providing focused customer service 
• Identifying and evaluating alternative solutions and approaches to problems
• Evaluating the costs and benefits of potential solutions and choosing the most appropriate one
• Identifying complex problems and reviewing related information to develop and evaluate approaches and implement solutions
• Resolving complex issues while communicating with other teams or departments
• Principles and practices of effective business communication
• Techniques and methods of effective project management
• Effectively relaying technical information to non-technical audiences 

• Leverage and apply existing IT architectural solutions to business requirements found within water/wastewater environments 
• Apply knowledge and skills across a broad range of information technology disciplines, including network and systems infrastructure, and security domains
• Analyze and summarize complex technical and organizational issues with the ability to reduce information technology threats and security risks
• Assist leadership in responding to operational issues in emergencies
• Analyze situations accurately and adopt an effective course of action
• Evaluate the effectiveness and efficiency of various security applications and systems
• Maintain confidential and sensitive information 
• Establish and maintain effective working relationships with those contacted in the course of work including a variety of CWS staff and other government officials, community groups, and the public
• Operate effectively in a team environment
• Communicate effectively, both orally and in writing
  
  
  

2 years of experience in cybersecurity systems administration, administering security tools such as MDR/EDR, SIEM, Vulnerability Management, or other related work;  

Bachelor's degree in computer science, management information systems, business information systems, or related field; 

Experience in cybersecurity framework implementations (e.g., NIST-SP-800-53, CIS Security Controls, NIST CSF, ISA/IEC 62443, etc.) preferred.

OR

5 years of experience in network hardware and operations, servers and software administration, operating and system software maintenance and administration, or related work; 

3 years of experience in cybersecurity systems administration, administering security tools such as MDR/EDR, SIEM, Vulnerability Management, or other related work;  

Cybersecurity certification such as SSCP, CySA+, CEH, GIAC Certified Incident Handler (GCIH), ISACA CISA or CRISC, Security +, or equivalent;  

Experience in cybersecurity framework implementations (e.g., NIST-SP-800-53, CIS Security Controls, NIST CSF, ISA/IEC 62443, etc.) preferred.

Reasonable Accommodation