IT Security Manager

IT Security Manager Milwaukee, WI, USA Req 2106 Monday, November 25, 2024 Interested in joining Milwaukee County? Milwaukee County is searching for authentic people who are out to change the game and bring their whole selves to work every day. Milwaukee County oversees operations from our Airport, Behavioral Health, Child Support Enforcement, Combined Court Operations, Sheriffs Department, Community Reintegration Center, Human Services, Parks, Public Safety, Public Works, Fleet Operations, Transportation, and at the Zoo. Our departments are also dedicated to our Seniors in the Department on Aging, those with Disabilities, and Veterans Affairs. Our employees also remain committed to serve the cultural, human, recreational and social needs of the entire community. Milwaukee County offers a wide variety of interesting jobs for people who want to make a difference in our community. Milwaukee County provides a competitive benefit package and is an Equal Opportunity Employer. If disability related accommodations are needed, please contact 414-278-3936. We are searching for Changemakers to come and join our team and discover our diverse and versatile community of independent spirits and unique talents, we are redefining the way you think about Milwaukee County Closing Date : 12/9/2024 or upon receipt of the first 50 applications submissions. IT Security Manager ISMD Full-Time, Salary Salary Range: $109,137.60 - $163,176.80 JOB SUMMARY: The IT Security Manager performs four core functions for the County. The first is accountability for DAS-IMSD's security operations through management of security analysts and engineers. The second is establishment of a Countywide security strategy and execution of the strategy through policy, architecture, training, and continuous improvement processes. Third and fourth, the IT Security Manager acts as the security architect to select security solutions and technologies and oversees DAS-IMSD's risk and controls efforts. The IT Security Manager's staff oversight includes direct reports within DAS-IMSD's IT Security function and cross-functional oversight of other DAS-IMSD personnel with security responsibilities outside of the core IT Security function (e.g., Sr. Network Engineer within the Connectivity function, System Security Engineer within the Server / Data Center function, etc.). The IT Security Manager also interfaces with manager peers within DAS-IMSD as well as with the County department and division leaders to both share the County's security vision with those individuals and to ask for their involvement in achieving higher levels of Countywide security through information sharing and cooperation. JOB DUTIES: Establishes and executes the Countywide security strategy and measures maturation improvements. Accountable for the County's security awareness training program for employees and contractors and management of security documents (e.g., procedures, standards, baselines, guidelines, directives, etc.). Accountable for the IT Security team's continuous improvement program. Collaborate with Manager peers within DAS-IMSD as well as with the County department and division leaders to both share the County's security vision with those individuals and to ask for their involvement in achieving higher levels of Countywide security through information sharing and cooperation. Collaborates with DAS-IMSD Infrastructure and Operations personnel in creation and maintenance of the County's Business Continuity Plan and Disaster Recovery Plan to include security specific requirements. Create and maintain an inventory of IT risks and associated controls. Improve existing IT governance, risk, and compliance programs and processes. Monitor the status of risks and develop plans to mitigate residual risk. Coordinate with DAS-IMSD Governance personnel on management of third-party and fourth-party risks. Oversee the design and execution of self-assessment and audit procedures to assess and measure compliance with security policies and procedures. Manage compliance testing and monitoring of current and future regulatory and other obligations, as required. Conduct internal security risk assessments, vulnerability assessments, and security compliance audits. Establishes IT security audit procedures relevant to ISO, NIST, PCI-DSS, HIPAA, and other applicable frameworks and compliance requirements. Act as the coordinator among internal audit, external audit, and DAS-IMSD personnel during audits. Define, establish, and govern the County's security architecture landscape. Create and maintain the County's security architecture design. Maintain up-to-date knowledge of the IT security and privacy industry, including awareness of new or revised solutions, improved processes, and the development of new attacks and threat vectors. Monitor risks, laws, regulations, etc. Select and acquire additional solutions or enhancements to existing solutions to improve overall security and privacy as per the County's existing procurement processes. Oversee the deployment, integration, and initial configuration of new solutions and of enhancements to existing solutions following standard best operating procedures. Oversee daily activities within the County's security operations center (SOC), including HR responsibilities for SOC personnel. Provide cross-functional oversight of personnel in other areas of DAS-IMSD performing security operational activities. Ensure the confidentiality, integrity, and availability of data residing on or transmitted to / from / through County workstations, servers, databases, applications, third-party data repositories, cloud / Software as a Service (Saas) etc. Ensure the enforcement of County security documents (e.g., procedures, standards, baselines, guidelines, directives, etc.). Act as the lead security incident manager and supervise investigations into problematic activity and provide on-going communication with DAS-IMSD leadership. MINIMUM QUALIFICATIONS : Current Resident of Wisconsin Possession of a Bachelor's degree in Information Technology, Business, Computer Science or Engineering At least five (5) years of experience in IT Security, IT Audit, IT Risk and Controls, or related fields At least One (1) year of experience supervising or managing a team of employees/contractors in an IT Security, IT Audit, IT Risk and Controls, or related setting. Intermediate knowledge of all computer and software applications, such as word processing and spreadsheets. Intermediate use and understanding of security operations monitoring tools and IT Service Management (ITSM) software / systems. Intermediate knowledge and experience with project management software tools (e.g., Jira, Smartsheet, Microsoft Project, etc.). PREFERRED QUALIFICATIONS: One or more of the following IT security related certifications - PREFERRED ISACA Certified Information Systems Auditor (CISA) ISACA Certified Information Security Manager (CISM) ISACA Certified in Risk and Information Systems Control (CRISC) ISC2 Certified Information Systems Security Professional (CISSP) ISC2 Governance, Risk, and Compliance Certification (CGRC) ISC2 Information Systems Security Architecture Professional (ISSAP) ISC2 Information Systems Security Management Professional (ISSMP) Additionally, the following IT certification is PREFERRED ITIL Foundations KNOWLEDGE, SKILLS, AND ABILITIES : Read, write, and comprehend simple instructions, reports, short correspondence, and memos; Speak effectively before both internal and/or external groups; read, analyze, and interpret safety rules, operating/maintenance instructions and procedure manuals, scientific/technical journals, and procedures, government regulations, financial and legal documents. Prepare and/or present written communications that pertain to controversial and complex topics; ability to work collaboratively in a team environment and ability to work effectively and harmoniously with staff and others. NOTE: This ORIGINAL APPLICATION is open to qualified residents of the State of Wisconsin at the time of application. Candidates need to submit a full account of their training and experience (i.e., by submitting an up-to-date resume or by fully completing the application) during the application process and may also be asked to take additional written or performance tests as part of the selection process. APPLICANTS MUST POSSESS MINIMUM QUALIFICATIONS AT TIME OF FILING APPLICATION PG: NR34E P.Bates Milwaukee County is committed to fostering an equitable working environment , free from discrimination and harassment , on the basis of any characteristic protected by law. We prohibit any form of discrimination , harassment based on race, color, religion, sex, gender, gender identity or expression, sexual orientation, pregnancy, pregnancy related condition, national origin, age, disability, FMLA status, sexual orientation, military status, marital status, or any other category or status that is now or in the future protected by federal, state, and local law. We maintain a drug-free workplace and perform pre-employment substance abuse testing, background checks and pre-employment physicals subject to job requirements. If special accommodations are needed, please contact 414-278-3936. Other details Job Family Information Technology Job Function 2 Professionals Pay Type Salary Apply Now Milwaukee, WI, USA Share this job: