Information Security Specialist

Under the direction of the Information Systems Director or designee, this position is responsible for various aspects of Information Security across the enterprise, including data availability, data integrity, authentication, and confidentiality. This role involves monitoring security policies and procedures, utilizing security tools daily for both the County and contracted agencies. The position requires significant responsibility and independent judgment.

Formal application, evaluation of education and experience, interview, reference checks, successful completion of a national criminal background check, a pre-employment drug screen, and other relevant tests or checks as required.

The job description is current as of the date signed. Omissions do not exclude similar or related responsibilities. This description does not constitute an employment contract and is subject to change based on the employer's needs.

• Support security operations by monitoring technology resources for threats, vulnerabilities, and unauthorized access.
• Establish and maintain effective relationships with supervisors, employees, officials, law enforcement, vendors, and the public.
• Perform forensic examinations, ensuring proper evidence handling, chain of custody, and event tracking.
• Manage and respond to service tickets, analyzing patterns that may indicate security threats.
• Prepare and present audit findings and recommendations to mitigate risks and ensure compliance.
• Contribute to the development and enforcement of security policies, procedures, and standards.
• Administer and deliver security policy training and awareness activities.
• Utilize security tools for log analysis and review.
• Maintain current knowledge of security trends, tools, and regulatory requirements.
• Plan and coordinate Cyber Security Awareness Programs for the County and agencies.
• Report to work consistently and punctually.

• Participate in meetings and committees.
• Perform other duties as assigned, including acting as Security Manager in their absence.

Bachelor's Degree in Information Technology or a related field required; three years of relevant security experience required. Security certifications such as Security+, GSEC, CEH, CISA, SSCP are desirable but practical experience is prioritized. Equivalent knowledge, skills, and abilities may be considered.

• Advanced knowledge of securing desktops, servers, mobile OS, LANs, WANs, and networking components.
• Proficiency with security tools.
• Effective communication skills in person and electronically.
• Ability to manage multiple projects, work independently and in teams, exercise discretion, and handle sensitive information.
• Strong analytical, attention to detail, and problem-solving skills.
• Ability to work under pressure, prioritize, and follow instructions.

Frequent sitting, talking, hearing, and operating equipment. Occasional walking, standing, stooping, lifting up to 30 pounds. Visual and auditory abilities are required. Work is primarily indoors, with occasional outdoor exposure. Work hours may include evenings, weekends, and holidays, with a moderate noise level.