St. Lucie County Florida
Security and Network Architect
St. Lucie County Florida, Tampa, Florida, us, 33646
Salary:
$90,403.13 - $113,003.91 Annually
Location :
Administration Building, FL
Job Type:
Full-Time Exempt
Job Number:
161608
Department:
Information Technology
Opening Date:
10/22/2024
Closing Date:
11/26/2024 5:00 PM Eastern
Job Summary
HIRING RANGE FOR THIS POSITION IS MINIMUM TO MIDPOINT.
GENERAL DESCRIPTION:
The County IT Security Architect is a senior-level position responsible for the strategic planning, design, and implementation of a comprehensive security framework that safeguards the county's IT infrastructure and digital assets. This role is pivotal in ensuring that all county systems, networks, and data are protected against current and emerging cybersecurity threats. The Security and Network Architect will lead the development of robust security protocols, policies, and procedures that align with federal, state, and local regulations while also addressing the unique security challenges of a county government environment. This role is responsible for designing, implementing, and managing complex network systems to ensure robust, scalable, and secure network infrastructure. This role involves analyzing organizational needs, developing network strategies, and overseeing network architecture and design to support business operations and objectives. This position serves as a key advisor to county leadership on cybersecurity, responsible for conducting risk assessments, identifying vulnerabilities, and developing strategies to protect against unauthorized access, data breaches, and other threats. This role involves leading continuous monitoring, improving security measures, and managing the county's response to security incidents to ensure minimal disruption to operations. Collaborating with IT, legal, law enforcement, and external agencies, the IT Security and Network Architect integrates security best practices across all county operations. A forward-thinking approach is essential, staying ahead of industry trends and evolving threats to implement cutting-edge solutions. The architect also plays a critical role in educating county employees and stakeholders, fostering a strong culture of cybersecurity. This position will operate under the general direction of the IT Network Security Telecom Manager. During escalation periods or disaster recovery can operate under the direction of the Information Technology CIO, Director, or designee. Responsibilities may require working evenings and weekends, sometimes with little advanced notice.
Essential Job Functions
ESSENTIAL JOB DUTIES:
Develop, implement, and maintain the county's IT security architecture, ensuring it is robust, scalable, and adaptable to evolving threats.
Develop and design network solutions that meet the organization's requirements for performance, reliability, and scalability. Create detailed network architecture diagrams and documentation.
Identify, assess, and mitigate security risks across all IT systems and platforms. Conduct regular risk assessments and develop strategies to address identified vulnerabilities.
Create and enforce security policies, standards, and procedures that comply with federal, state, and local regulations.
Maintain comprehensive documentation of network architecture, configurations, and procedures. Prepare reports and presentations for stakeholders and management.
Lead the response to security incidents, including the investigation, containment, and remediation of breaches. Develop and maintain incident response plans.
Design and enforce network security measures to protect against unauthorized access, data breaches, and other security threats. Implement and maintain security protocols and best practices.
Evaluate, recommend, and implement security technologies such as firewalls, intrusion detection/prevention systems, encryption tools, and identity management solutions.
Ensure compliance with all applicable laws and regulations, including data protection laws, and prepare for internal and external security audits.
Work closely with other IT departments, county agencies, and external partners to integrate security best practices. Provide training and awareness programs for county staff on security protocols.
Oversee security-related projects from conception through implementation, ensuring they meet timelines, budgets, and security requirements.
Stay informed of the latest cybersecurity threats, trends, and technologies. Implement threat intelligence programs to proactively protect county systems.
Maintain detailed documentation of security architecture, policies, and incident response activities.
Knowledge, Abilities, and Skills:
In-depth knowledge of security frameworks understanding various security frameworks and standards, such as CJIS, NIST, and ISO 27001.
Proficiency in security technologies and tools.
Strong understanding of network security principles, encryption techniques, and identity management.
Excellent analytical abilities and problem-solving skills, with the capability to communicate effectively.
Ability to work effectively in a team and communicate complex security concepts to non-technical stakeholders.
Extensive knowledge of network infrastructure, including the implementation and administration of firewalls, intrusion prevention systems (IPS), routers, and switches with advanced routing protocols.
Familiarity with various security devices, including those used for remote access and endpoint protection.
Extensive knowledge of network switching technologies and their implementation.
Expertise in Windows Active Directory and Microsoft 365 administration, with a focus on security.
Proficiency in managing virtual private networks (VPNs) and ensuring secure remote access.
Experience with various endpoint security systems and threat detection systems.
Familiarity with wireless networks and access point security management.
Proficiency in network monitoring tools for real-time threat detection and analysis.
Knowledge of VoIP systems and telecommunications security practices.
Understanding of email security protocols, including archiving and compliance.
Experience with web content filtering and internet security protocols.
Knowledge of mobile device management (MDM) systems and related security practices.
Familiarity with IT best practices, compliance standards, and audit processes.
Understanding of penetration testing methodologies and tools.
Awareness of recent developments in information systems and cybersecurity technologies.
Knowledge of federal, state, and local laws related to information systems and cybersecurity.
Ability to work effectively at all organizational levels and be capable of working individually or as part of a team.
ENVIRONMENTAL CONDITIONS:
During emergency conditions, all County employees are automatically considered emergency service workers. County employees are subject to being called to work in the event of a disaster, such as a hurricane, or other emergency and are expected to perform emergency service duties, as assigned.
Use of both hands and fingers with dexterity. May be called upon to lift objects greater than 30 pounds. Occasional walking and standing. Vision must be good enough to be able to read instruction manuals. Must have good command of English language and be able to hear normal telephone conversations.
Possible safety equipment (i.e.: hard hat, etc.) when visiting County departments or work sites. Constant work inside the office in a sedentary posture. Occasional outdoor work at remote offices and outdoor work sites when visiting County departments.
Use of computer equipment monitors may influence vision.
SUPPLEMENTAL INFORMATION:
This job description is not intended to be and should not be construed as an all-inclusive list of all the responsibilities, skills or working conditions associated with the position.? While it is intended to accurately reflect the position activities and requirements, Management reserves the right to modify, add or remove duties and assign other duties as necessary that are a logical assignment to the position.
EMERGENCY RESPONSE/RECOVERY ACTIVITIES:
County employees are essential in providing services to our community and continuing services following a disaster or emergency. To maintain services during and/or following a disaster or emergency, and as a requirement of County employment, County employees may temporarily be assigned to work and perform duties outside the normal scope of their position, location, and work schedule to fit the needs of the County and its citizens.
ADA STATEMENT:
A qualified employee or applicant with a disability may be afforded a reasonable accommodation to perform the essential job functions of a position in compliance with the Americans with Disabilities Act.
Qualifications
MINIMUM QUALIFICATIONS:
Education/Experience:
Four (4) year degree required, B.S. in Information Security, Computer Science, Information Technology, or a related field. A master's degree is preferred.
Minimum of seven (7) years of experience IT security with network architecture, design, and implementation, with a strong background in managing large and complex network environments. Four (4) years in a security architecture role. Experience in government or public sector environments is highly desirable.
Licenses, Certifications, or Registrations:
A valid Florida driver's license is required with a good driving record.
A Certifications such as CISSP, CISM, CEH, or equivalent are required. Advanced certifications such as SABSA or TOGAF for Security Architecture are a plus.
One of the following advanced certifications is preferred: SABSA Certification, TOGAF (The Open Group Architecture Framework) Certification, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), Certified Information Systems Auditor (CISA), Certified Cloud Security Professional (CCSP), GIAC Security Architecture (GDSA), Certified in Risk and Information Systems Control (CRISC).
Additional Information
Pay Grade G209
Driving Position - Operating County vehicles and/or equipment is a primary function of this position.
PRE-EMPLOYMENT SCREENING: This position requires a physical, drug testing, driver's license verification and level 2 background screening which includes fingerprinting.
2024 BOARD APPROVED
HOLIDAYS (14 days per year)
New Years DayMartin Luther King Jr.'s BirthdayPresident's DayMemorial DayIndependence DayLabor DayVeterans DayThanksgiving DayDay after ThanksgivingChristmas EveChristmas Day3 Floating Holidays
If a holiday falls on a Saturday, the Friday before will be observed. If the holiday falls on a Sunday, the following Monday will be observed. The County Administrator is authorized to change the observation schedule of holidays falling on weekends.VACATION LEAVE
Years Of Eligible Service Vacation Days Per YearLess than 5 Years 105 - 10 Years1511 - 20 Years2021 Years2122 Years2223 Years2324 Years2425 Years25
SICK LEAVEPaid Sick Leave accrues at a rate of eight (8) hours per month of service. Sick leave has an unlimited accrual balance.OTHER BENEFITSHealth, Dental and Vision PlansEmployee Wellness CenterLife InsuranceShared Sick LeaveJury Duty or Witness LeaveMilitary LeaveBereavement Leave
OPTIONAL BENEFITS AVAILABLEAccident Protection PlanDeferred Compensation
01
Do you hold a four (4) year degree in Information Security, Computer Science, Information Technology, or a related field?
YesNo
02
Do you have a minimum of seven (7) years of experience in IT security with network architecture, design, and implementation?
YesNo
03
Do you have a strong background in managing large and complex network environments?
YesNo
04
Do you have a minimum of four (4) years in security architecture role?
YesNo
05
Do you have experience in government or public sector environments?
YesNo
06
Do you have a valid FL driver's license and good driving record?
YesNo
Required Question
$90,403.13 - $113,003.91 Annually
Location :
Administration Building, FL
Job Type:
Full-Time Exempt
Job Number:
161608
Department:
Information Technology
Opening Date:
10/22/2024
Closing Date:
11/26/2024 5:00 PM Eastern
Job Summary
HIRING RANGE FOR THIS POSITION IS MINIMUM TO MIDPOINT.
GENERAL DESCRIPTION:
The County IT Security Architect is a senior-level position responsible for the strategic planning, design, and implementation of a comprehensive security framework that safeguards the county's IT infrastructure and digital assets. This role is pivotal in ensuring that all county systems, networks, and data are protected against current and emerging cybersecurity threats. The Security and Network Architect will lead the development of robust security protocols, policies, and procedures that align with federal, state, and local regulations while also addressing the unique security challenges of a county government environment. This role is responsible for designing, implementing, and managing complex network systems to ensure robust, scalable, and secure network infrastructure. This role involves analyzing organizational needs, developing network strategies, and overseeing network architecture and design to support business operations and objectives. This position serves as a key advisor to county leadership on cybersecurity, responsible for conducting risk assessments, identifying vulnerabilities, and developing strategies to protect against unauthorized access, data breaches, and other threats. This role involves leading continuous monitoring, improving security measures, and managing the county's response to security incidents to ensure minimal disruption to operations. Collaborating with IT, legal, law enforcement, and external agencies, the IT Security and Network Architect integrates security best practices across all county operations. A forward-thinking approach is essential, staying ahead of industry trends and evolving threats to implement cutting-edge solutions. The architect also plays a critical role in educating county employees and stakeholders, fostering a strong culture of cybersecurity. This position will operate under the general direction of the IT Network Security Telecom Manager. During escalation periods or disaster recovery can operate under the direction of the Information Technology CIO, Director, or designee. Responsibilities may require working evenings and weekends, sometimes with little advanced notice.
Essential Job Functions
ESSENTIAL JOB DUTIES:
Develop, implement, and maintain the county's IT security architecture, ensuring it is robust, scalable, and adaptable to evolving threats.
Develop and design network solutions that meet the organization's requirements for performance, reliability, and scalability. Create detailed network architecture diagrams and documentation.
Identify, assess, and mitigate security risks across all IT systems and platforms. Conduct regular risk assessments and develop strategies to address identified vulnerabilities.
Create and enforce security policies, standards, and procedures that comply with federal, state, and local regulations.
Maintain comprehensive documentation of network architecture, configurations, and procedures. Prepare reports and presentations for stakeholders and management.
Lead the response to security incidents, including the investigation, containment, and remediation of breaches. Develop and maintain incident response plans.
Design and enforce network security measures to protect against unauthorized access, data breaches, and other security threats. Implement and maintain security protocols and best practices.
Evaluate, recommend, and implement security technologies such as firewalls, intrusion detection/prevention systems, encryption tools, and identity management solutions.
Ensure compliance with all applicable laws and regulations, including data protection laws, and prepare for internal and external security audits.
Work closely with other IT departments, county agencies, and external partners to integrate security best practices. Provide training and awareness programs for county staff on security protocols.
Oversee security-related projects from conception through implementation, ensuring they meet timelines, budgets, and security requirements.
Stay informed of the latest cybersecurity threats, trends, and technologies. Implement threat intelligence programs to proactively protect county systems.
Maintain detailed documentation of security architecture, policies, and incident response activities.
Knowledge, Abilities, and Skills:
In-depth knowledge of security frameworks understanding various security frameworks and standards, such as CJIS, NIST, and ISO 27001.
Proficiency in security technologies and tools.
Strong understanding of network security principles, encryption techniques, and identity management.
Excellent analytical abilities and problem-solving skills, with the capability to communicate effectively.
Ability to work effectively in a team and communicate complex security concepts to non-technical stakeholders.
Extensive knowledge of network infrastructure, including the implementation and administration of firewalls, intrusion prevention systems (IPS), routers, and switches with advanced routing protocols.
Familiarity with various security devices, including those used for remote access and endpoint protection.
Extensive knowledge of network switching technologies and their implementation.
Expertise in Windows Active Directory and Microsoft 365 administration, with a focus on security.
Proficiency in managing virtual private networks (VPNs) and ensuring secure remote access.
Experience with various endpoint security systems and threat detection systems.
Familiarity with wireless networks and access point security management.
Proficiency in network monitoring tools for real-time threat detection and analysis.
Knowledge of VoIP systems and telecommunications security practices.
Understanding of email security protocols, including archiving and compliance.
Experience with web content filtering and internet security protocols.
Knowledge of mobile device management (MDM) systems and related security practices.
Familiarity with IT best practices, compliance standards, and audit processes.
Understanding of penetration testing methodologies and tools.
Awareness of recent developments in information systems and cybersecurity technologies.
Knowledge of federal, state, and local laws related to information systems and cybersecurity.
Ability to work effectively at all organizational levels and be capable of working individually or as part of a team.
ENVIRONMENTAL CONDITIONS:
During emergency conditions, all County employees are automatically considered emergency service workers. County employees are subject to being called to work in the event of a disaster, such as a hurricane, or other emergency and are expected to perform emergency service duties, as assigned.
Use of both hands and fingers with dexterity. May be called upon to lift objects greater than 30 pounds. Occasional walking and standing. Vision must be good enough to be able to read instruction manuals. Must have good command of English language and be able to hear normal telephone conversations.
Possible safety equipment (i.e.: hard hat, etc.) when visiting County departments or work sites. Constant work inside the office in a sedentary posture. Occasional outdoor work at remote offices and outdoor work sites when visiting County departments.
Use of computer equipment monitors may influence vision.
SUPPLEMENTAL INFORMATION:
This job description is not intended to be and should not be construed as an all-inclusive list of all the responsibilities, skills or working conditions associated with the position.? While it is intended to accurately reflect the position activities and requirements, Management reserves the right to modify, add or remove duties and assign other duties as necessary that are a logical assignment to the position.
EMERGENCY RESPONSE/RECOVERY ACTIVITIES:
County employees are essential in providing services to our community and continuing services following a disaster or emergency. To maintain services during and/or following a disaster or emergency, and as a requirement of County employment, County employees may temporarily be assigned to work and perform duties outside the normal scope of their position, location, and work schedule to fit the needs of the County and its citizens.
ADA STATEMENT:
A qualified employee or applicant with a disability may be afforded a reasonable accommodation to perform the essential job functions of a position in compliance with the Americans with Disabilities Act.
Qualifications
MINIMUM QUALIFICATIONS:
Education/Experience:
Four (4) year degree required, B.S. in Information Security, Computer Science, Information Technology, or a related field. A master's degree is preferred.
Minimum of seven (7) years of experience IT security with network architecture, design, and implementation, with a strong background in managing large and complex network environments. Four (4) years in a security architecture role. Experience in government or public sector environments is highly desirable.
Licenses, Certifications, or Registrations:
A valid Florida driver's license is required with a good driving record.
A Certifications such as CISSP, CISM, CEH, or equivalent are required. Advanced certifications such as SABSA or TOGAF for Security Architecture are a plus.
One of the following advanced certifications is preferred: SABSA Certification, TOGAF (The Open Group Architecture Framework) Certification, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), Certified Information Systems Auditor (CISA), Certified Cloud Security Professional (CCSP), GIAC Security Architecture (GDSA), Certified in Risk and Information Systems Control (CRISC).
Additional Information
Pay Grade G209
Driving Position - Operating County vehicles and/or equipment is a primary function of this position.
PRE-EMPLOYMENT SCREENING: This position requires a physical, drug testing, driver's license verification and level 2 background screening which includes fingerprinting.
2024 BOARD APPROVED
HOLIDAYS (14 days per year)
New Years DayMartin Luther King Jr.'s BirthdayPresident's DayMemorial DayIndependence DayLabor DayVeterans DayThanksgiving DayDay after ThanksgivingChristmas EveChristmas Day3 Floating Holidays
If a holiday falls on a Saturday, the Friday before will be observed. If the holiday falls on a Sunday, the following Monday will be observed. The County Administrator is authorized to change the observation schedule of holidays falling on weekends.VACATION LEAVE
Years Of Eligible Service Vacation Days Per YearLess than 5 Years 105 - 10 Years1511 - 20 Years2021 Years2122 Years2223 Years2324 Years2425 Years25
SICK LEAVEPaid Sick Leave accrues at a rate of eight (8) hours per month of service. Sick leave has an unlimited accrual balance.OTHER BENEFITSHealth, Dental and Vision PlansEmployee Wellness CenterLife InsuranceShared Sick LeaveJury Duty or Witness LeaveMilitary LeaveBereavement Leave
OPTIONAL BENEFITS AVAILABLEAccident Protection PlanDeferred Compensation
01
Do you hold a four (4) year degree in Information Security, Computer Science, Information Technology, or a related field?
YesNo
02
Do you have a minimum of seven (7) years of experience in IT security with network architecture, design, and implementation?
YesNo
03
Do you have a strong background in managing large and complex network environments?
YesNo
04
Do you have a minimum of four (4) years in security architecture role?
YesNo
05
Do you have experience in government or public sector environments?
YesNo
06
Do you have a valid FL driver's license and good driving record?
YesNo
Required Question