City of San Jose, CA
Cybersecurity Analyst (Enterprise Supervising Technology Analyst)
City of San Jose, CA, San Jose, California, United States, 95199
Salary :
$141,697.92 - $172,645.20 Annually
Location :
San Jose
Job Type:
Full-Time
Remote Employment:
Flexible/Hybrid
Job Number:
202300509
Department:
Information Technology
Opening Date:
07/06/2024
Our diverse and inclusive workforce of more than 7,000 employees play a key role in the success of San José, the heart of the Silicon Valley. All City of San José employees work together as one team to make San José a vibrant, innovative, and desirable place to live and work. Visit to learn more about our One Team Leadership Values and Expectations, including quality and excellent customer service and
here
to learn more about San José.About the Department
The City of San José is a place where we use civic technology to help our community thrive.
As the 10th largest city in the nation, the City manages a large set of services and assets. The City operates on a budget of $5 billion, with 7,000 employees serving 1+ million residents and 80,000 businesses in the heart of Silicon Valley.
Information Technology's (IT) mission: Put powerful tools and information in the hands of people to unleash their brilliance in service to our community. IT enables that mission through business and infrastructure systems, cybersecurity, data management and analysis, productivity and collaboration tools, the San Jose 311 resident experience platform, data equity and privacy programs, and strategic planning. San Jose is powered by truly great people, a robust technology environment, and a strong sense of purpose.
We promote work-life integration and a focus on growth to bring out the best in our people. Come join us in making San Jose the most vibrant, equitable, sustainable, and innovative city in America!
You can visit the website to learn more about us.Position Duties
NOTE - The first review of applications will be on Monday, August 5, 2024. Please submit your application by 11:59 p.m. (PST) on Friday, August 2, 2024, if you would like your application to be included in the first review. Candidates who pass the first application review round will be invited to interviews on the week of August 12, 2024.
The City of San José Information Technology Department (ITD) seeks a Cybersecurity Analyst (Enterprise Supervising Technology Analyst) to support new and existing initiatives in the Cybersecurity Office. The position will focus on Risk Mitigation as well as Identity & Access Management with exposure and support on all aspects of the Cybersecurity practice, including cross-support.
The ideal candidate will be part of one of the largest, most innovative communities in the nation. Led by the City Information Security Officer (CISO), the Cybersecurity Analyst will implement and manage information and system security programs across the City that keep municipal services secure and resilient. The Cybersecurity Analysts will support the CISO and the City by administering risk identification, protection and compliance, threat detection, incident response, and recovery services for all City departments to achieve business resilience.
The City of San José requires Cybersecurity Analysts to be highly skilled and adapt quickly to deal with emerging challenges. The candidate must be able to apply expertise in all aspects of security, interface with vendors, keep their skills current, manage security projects, and provide security services to City departments with strong outcomes.
Key responsibilities include but are not limited to the following:
Building and maintaining a robust Identity and Access Management program with the following characteristics:
Auditing and ReportingRole-based Access ControlSingle Sign-OnFederationIdentity Lifecycle (Workflow management)Privileged Identity ManagementProvisioningCompliancePolicy Management
Defining, planning, and executing security-related projects from beginning to end.Managing vendors to execute tasks on demand or as part of a project.Building and managing a strong vulnerability management program. The ideal candidate will have hands-on experience with vulnerability management tools and a strong technical understanding and experience assessing vulnerabilities and identifying weaknesses in multiple operating system platforms, databases, and application servers.Building and managing a strong IT asset management program. The ideal candidate will have a strong background in maintaining IT asset inventories, software, hardware, and logical inventory of systems.Identifying and mitigating threats utilizing existing technologies. Working with other teams to mitigate identified vulnerabilities from identification to closure. Tracking and reporting mitigation efforts. Be familiar with the Plan of Action and Milestones in tracking, remediating, socializing, and getting them to completion.Working with other teams preparing, detecting, eradicating, and restoring operations in the event of incidents.Managing Plan of Action and Milestones for existing vulnerabilitiesWorking with relevant teams to ensure the restoration of systems and technologies in accordance with policy and based on business group needs.Interfacing with the Virtual Security Operations Center (V-SOC) and using deployed tools and services to ensure system and network monitoring is taking place in accordance with defined service levels, contracts, and established standards.This role requires flexibility and adaptability to meet the Security needs of the ITD. The individual must be able to support other areas of expertise within the security domain, such as but not limited to NIST Cybersecurity Framework implementation, Identity Access Management, Risk Management & Compliance, Risk Assessments, Training, Audit Support, and others.Please note that the Cybersecurity Analyst (Enterprise Supervising Technology Analyst) position is currently eligible for a hybrid telework schedule. The schedule for working remotely and onsite is subject to change.
Salary Information:
The final candidate's qualifications and experience shall determine the actual salary. In addition to the starting salary, employees in the Enterprise Supervising Technology Analyst (ESTA) classification shall also receive an approximate five percent (5%) ongoing non-pensionable compensation pay.
Salary Range (including the 5% NPWI): $141,697.92 - $172,645.20The ESTA classification is represented by the bargaining unit.Minimum Qualifications
Education and ExperienceA Bachelor's Degree from an accredited college or university in a relevant field, AND four (4) years of progressively responsible professional/journey level experience, of which at least two (2) years of experience include lead technical work in development, implementation and maintenance of electronic business systems/solutions, or application development and/or support.
Acceptable SubstitutionAdditional years of increasingly responsible directly related work experience may be substituted for education on a year-for-year basis up to two (2) years.Completion of a Master's Degree in a relevant field from an accredited college or university may be substituted for one (1) year of the required two (2) years of experience which include lead technical work in development, implementation and maintenance of electronic business systems/solutions or application development and/or support.Required Licensing (such as driver's license, certifications, etc.):Possession of a valid State of California driver's license may be required.Certification as a Microsoft Certified Systems Engineer (MCSE) or equivalent certification from a professional organization acceptable to the City of San Jose may be required.Passing a San Jose Police Department (SJPD) background check is a condition of employment.Other Qualifications
Competencies
The ideal candidate will possess the following competencies, as demonstrated in past and current employment history. Desirable competencies for this position include:
Job Expertise
- Demonstrates knowledge of and experience with applicable professional/technical principles and practices and federal and state rules and regulations.
Breadth of expertise to enable managing major technology services, programs, and products across multiple departmental technology environments and ensuring cross-coordination between departments, including adherence to Citywide and departmental procedures/policies and federal and state rules and regulations.Expertise in updating and/or optimizing the Incident Response (IR) plan on a yearly basis to ensure maximum effectiveness.Expertise in Identity and Access Management using AD and Azure EntraExpertise in handling incidents from identification to closure.Highly skilled in updating and testing the Disaster Recovery Plan (DRP) on a yearly basis.Ability to update and optimize the Threat & Vulnerability Management Plan on a yearly basis.Strong experience in managing vulnerabilities from identification to closure.Capability in overseeing aspects of a Virtual Security Operations Center and ensuring processes and procedures are followed.Experience in working with patch assessment and vulnerability scanning technologies at scale/Knowledge of application, network, and operating system security.Hands-on experience with Linux patching.Knowledge of vulnerability scoring systems (e.g. CVSSv3).Experience with vulnerability scanning tools, dynamic scans, static scans, and penetration testing.Experience in using monitoring tools.5+ years in a Vulnerability Management Plan is a plus. Knowing not only how to assess vulnerabilities but also prioritize and drive remediation activities.Possession of a current (non-expired) Certified Information Systems Security Professional (CISSP) or equivalent certification is highly desirable.Security architecture experience is a plus.Teamwork & Interpersonal Skills
- Develops effective relationships with co-workers and supervisors by helping others accomplish tasks and using collaboration and conflict resolution skills.
Project Management
- Ensures support for projects and implements agency goals and strategic objectives.Analytical Thinking
- Approaches a problem or situation by using a logical, systematic, sequential approach.
Communication Skills
- Effectively conveys information and expresses thoughts and facts clearly, orally and in writing; demonstrates effective use of listening skills; displays openness to other people's ideas and thoughts.
Selection Process
The selection process will consist of an evaluation of the applicant's training and experience based on the application and responses to all the job-specific questions. You must answer all questions to be considered, or your application may be deemed incomplete and withheld from further consideration. Only those candidates whose backgrounds best match the position will be invited to proceed in the selection process. Additional phases of the selection process will consist of one or more interviews, one of which may include a practical and/or writing exercise.
If you have questions about the duties of these positions, the selection process, or the hiring process, please contact Tram Nguyen at
Additional Information:
Employment Eligibility:
Federal law requires all employees to provide verification of their eligibility to work in this country. Please be informed that the City of San Jose will NOT sponsor, represent or sign any documents related to visa applications/transfers for H1-B or any other type of visa which requires an employer application.
Please note that applications are currently
not
accepted through CalOpps or any other third party job board application system.
This recruitment may be used to fill multiple positions in this, or other divisions or departments. If you are interested in employment in this classification, you should apply to ensure you are considered for additional opportunities that may utilize the applicants from this recruitment.
Please allow adequate time to complete the application and submit before the deadline or the system may not save your application. If your online application was successfully submitted, you will receive an automatic confirmation email to the email address you provided. IF YOU DO NOT RECEIVE THE CONFIRMATION, please email and we will research the status of your application.
The City of San Jose offers a wide range of core health benefits including Medical, Dental, Vision, Employee Assistance Program, Life Insurance, Disability, and Savings Plans. Please visit the City's for detailed information on coverage, cost, and dependent coverage.
For information on the City's Retirement Plan(pension for full-time employees), please visit the Office of Retirement Services You will be able to view information based on different Sworn/Federated job classification.
In additional to the benefits above, there is an to explore further benefits of working for the City of San Jose like paid leave, educational reimbursements, and holiday pay are specific to the job classification and union membership.
01
What is the highest level of education you have completed?
High School Diploma or the equivalent (GED)College (1 to 29 semester units/ 1 to 44 quarter units)College (30 to 59 semester units/ 45 to 89 quarter units)College (60 to 89 semester units/ 90 to 134 quarter units)College (90 to 119 semester units/ 135 to 179 quarter units)College (120 or more semester units/ 180 or more quarter units)Associate's DegreeBachelor's DegreeMaster's DegreeDoctoral DegreeOtherNone of the above
02
If you have a bachelor's degree or higher from an accredited college or university in a related field, please state the field of study and the issuing accredited college or university.
03
This position requires a State of California Driver's License. Please select the applicable option that best describes your driver's license, or your ability to possess a valid driver's license.
State of CA, Class A Driver's LicenseState of CA, Class B Driver's LicenseState of CA, Class C Driver's LicenseI do not possess a State of California Driver's License but, I can obtain one.I do not possess a State of California Driver's License and I cannot obtain one
04
Do you possess a CURRENT, TERMINAL LEVEL cybersecurity certification such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in the Governance of Enterprise IT (CGEIT), Certified in Risk and Information Systems Control (CRISC), OR an equivalent professional, industry recognized certification? If YES, please attach a scanned copy of the certification(s) you possess in the "File Attachments" part of the application process.
YesNo
05
If you answered Yes to the previous question (question 4), please indicate if you possess a CURRENT (non-expired) certification(s) listed below. Please ATTACH a scanned copy of the certification(s) you possess in the "File Attachments" as part of the application process (check all that apply):
Certified Information Systems Security Professional (CISSP)Certified Information Systems Auditor (CISA)Certified Information Security Manager (CISM)Certified in the Governance of Enterprise IT (CGEIT)Certified in Risk and Information Systems Control (CRISC)Other equivalent Certification(s)I do not have any certification.
06
Please select the areas of technical competency where you have expertise in the configuration and ongoing support of (check all that apply):
Identity and Access ManagementVulnerability Scanning toolsIT Asset Inventory / ManagementGovernance Risk & Compliance toolsIncident Response and ManagementContingency Planning and testingThreat and Vulnerability ManagementNIST Cybersecurity FrameworkNone of the Above.
07
Please share with us a significant Vulnerability Management implementation you led or helped lead. Please describe your role, customer impacts and involvement, and the scale of the implementation. What was the outcome? What would you have done differently?
08
Please describe your experience in managing identities. What challenges did you have, and how were you able to overcome those challenges? What were the lessons learned?
Required Question
$141,697.92 - $172,645.20 Annually
Location :
San Jose
Job Type:
Full-Time
Remote Employment:
Flexible/Hybrid
Job Number:
202300509
Department:
Information Technology
Opening Date:
07/06/2024
Our diverse and inclusive workforce of more than 7,000 employees play a key role in the success of San José, the heart of the Silicon Valley. All City of San José employees work together as one team to make San José a vibrant, innovative, and desirable place to live and work. Visit to learn more about our One Team Leadership Values and Expectations, including quality and excellent customer service and
here
to learn more about San José.About the Department
The City of San José is a place where we use civic technology to help our community thrive.
As the 10th largest city in the nation, the City manages a large set of services and assets. The City operates on a budget of $5 billion, with 7,000 employees serving 1+ million residents and 80,000 businesses in the heart of Silicon Valley.
Information Technology's (IT) mission: Put powerful tools and information in the hands of people to unleash their brilliance in service to our community. IT enables that mission through business and infrastructure systems, cybersecurity, data management and analysis, productivity and collaboration tools, the San Jose 311 resident experience platform, data equity and privacy programs, and strategic planning. San Jose is powered by truly great people, a robust technology environment, and a strong sense of purpose.
We promote work-life integration and a focus on growth to bring out the best in our people. Come join us in making San Jose the most vibrant, equitable, sustainable, and innovative city in America!
You can visit the website to learn more about us.Position Duties
NOTE - The first review of applications will be on Monday, August 5, 2024. Please submit your application by 11:59 p.m. (PST) on Friday, August 2, 2024, if you would like your application to be included in the first review. Candidates who pass the first application review round will be invited to interviews on the week of August 12, 2024.
The City of San José Information Technology Department (ITD) seeks a Cybersecurity Analyst (Enterprise Supervising Technology Analyst) to support new and existing initiatives in the Cybersecurity Office. The position will focus on Risk Mitigation as well as Identity & Access Management with exposure and support on all aspects of the Cybersecurity practice, including cross-support.
The ideal candidate will be part of one of the largest, most innovative communities in the nation. Led by the City Information Security Officer (CISO), the Cybersecurity Analyst will implement and manage information and system security programs across the City that keep municipal services secure and resilient. The Cybersecurity Analysts will support the CISO and the City by administering risk identification, protection and compliance, threat detection, incident response, and recovery services for all City departments to achieve business resilience.
The City of San José requires Cybersecurity Analysts to be highly skilled and adapt quickly to deal with emerging challenges. The candidate must be able to apply expertise in all aspects of security, interface with vendors, keep their skills current, manage security projects, and provide security services to City departments with strong outcomes.
Key responsibilities include but are not limited to the following:
Building and maintaining a robust Identity and Access Management program with the following characteristics:
Auditing and ReportingRole-based Access ControlSingle Sign-OnFederationIdentity Lifecycle (Workflow management)Privileged Identity ManagementProvisioningCompliancePolicy Management
Defining, planning, and executing security-related projects from beginning to end.Managing vendors to execute tasks on demand or as part of a project.Building and managing a strong vulnerability management program. The ideal candidate will have hands-on experience with vulnerability management tools and a strong technical understanding and experience assessing vulnerabilities and identifying weaknesses in multiple operating system platforms, databases, and application servers.Building and managing a strong IT asset management program. The ideal candidate will have a strong background in maintaining IT asset inventories, software, hardware, and logical inventory of systems.Identifying and mitigating threats utilizing existing technologies. Working with other teams to mitigate identified vulnerabilities from identification to closure. Tracking and reporting mitigation efforts. Be familiar with the Plan of Action and Milestones in tracking, remediating, socializing, and getting them to completion.Working with other teams preparing, detecting, eradicating, and restoring operations in the event of incidents.Managing Plan of Action and Milestones for existing vulnerabilitiesWorking with relevant teams to ensure the restoration of systems and technologies in accordance with policy and based on business group needs.Interfacing with the Virtual Security Operations Center (V-SOC) and using deployed tools and services to ensure system and network monitoring is taking place in accordance with defined service levels, contracts, and established standards.This role requires flexibility and adaptability to meet the Security needs of the ITD. The individual must be able to support other areas of expertise within the security domain, such as but not limited to NIST Cybersecurity Framework implementation, Identity Access Management, Risk Management & Compliance, Risk Assessments, Training, Audit Support, and others.Please note that the Cybersecurity Analyst (Enterprise Supervising Technology Analyst) position is currently eligible for a hybrid telework schedule. The schedule for working remotely and onsite is subject to change.
Salary Information:
The final candidate's qualifications and experience shall determine the actual salary. In addition to the starting salary, employees in the Enterprise Supervising Technology Analyst (ESTA) classification shall also receive an approximate five percent (5%) ongoing non-pensionable compensation pay.
Salary Range (including the 5% NPWI): $141,697.92 - $172,645.20The ESTA classification is represented by the bargaining unit.Minimum Qualifications
Education and ExperienceA Bachelor's Degree from an accredited college or university in a relevant field, AND four (4) years of progressively responsible professional/journey level experience, of which at least two (2) years of experience include lead technical work in development, implementation and maintenance of electronic business systems/solutions, or application development and/or support.
Acceptable SubstitutionAdditional years of increasingly responsible directly related work experience may be substituted for education on a year-for-year basis up to two (2) years.Completion of a Master's Degree in a relevant field from an accredited college or university may be substituted for one (1) year of the required two (2) years of experience which include lead technical work in development, implementation and maintenance of electronic business systems/solutions or application development and/or support.Required Licensing (such as driver's license, certifications, etc.):Possession of a valid State of California driver's license may be required.Certification as a Microsoft Certified Systems Engineer (MCSE) or equivalent certification from a professional organization acceptable to the City of San Jose may be required.Passing a San Jose Police Department (SJPD) background check is a condition of employment.Other Qualifications
Competencies
The ideal candidate will possess the following competencies, as demonstrated in past and current employment history. Desirable competencies for this position include:
Job Expertise
- Demonstrates knowledge of and experience with applicable professional/technical principles and practices and federal and state rules and regulations.
Breadth of expertise to enable managing major technology services, programs, and products across multiple departmental technology environments and ensuring cross-coordination between departments, including adherence to Citywide and departmental procedures/policies and federal and state rules and regulations.Expertise in updating and/or optimizing the Incident Response (IR) plan on a yearly basis to ensure maximum effectiveness.Expertise in Identity and Access Management using AD and Azure EntraExpertise in handling incidents from identification to closure.Highly skilled in updating and testing the Disaster Recovery Plan (DRP) on a yearly basis.Ability to update and optimize the Threat & Vulnerability Management Plan on a yearly basis.Strong experience in managing vulnerabilities from identification to closure.Capability in overseeing aspects of a Virtual Security Operations Center and ensuring processes and procedures are followed.Experience in working with patch assessment and vulnerability scanning technologies at scale/Knowledge of application, network, and operating system security.Hands-on experience with Linux patching.Knowledge of vulnerability scoring systems (e.g. CVSSv3).Experience with vulnerability scanning tools, dynamic scans, static scans, and penetration testing.Experience in using monitoring tools.5+ years in a Vulnerability Management Plan is a plus. Knowing not only how to assess vulnerabilities but also prioritize and drive remediation activities.Possession of a current (non-expired) Certified Information Systems Security Professional (CISSP) or equivalent certification is highly desirable.Security architecture experience is a plus.Teamwork & Interpersonal Skills
- Develops effective relationships with co-workers and supervisors by helping others accomplish tasks and using collaboration and conflict resolution skills.
Project Management
- Ensures support for projects and implements agency goals and strategic objectives.Analytical Thinking
- Approaches a problem or situation by using a logical, systematic, sequential approach.
Communication Skills
- Effectively conveys information and expresses thoughts and facts clearly, orally and in writing; demonstrates effective use of listening skills; displays openness to other people's ideas and thoughts.
Selection Process
The selection process will consist of an evaluation of the applicant's training and experience based on the application and responses to all the job-specific questions. You must answer all questions to be considered, or your application may be deemed incomplete and withheld from further consideration. Only those candidates whose backgrounds best match the position will be invited to proceed in the selection process. Additional phases of the selection process will consist of one or more interviews, one of which may include a practical and/or writing exercise.
If you have questions about the duties of these positions, the selection process, or the hiring process, please contact Tram Nguyen at
Additional Information:
Employment Eligibility:
Federal law requires all employees to provide verification of their eligibility to work in this country. Please be informed that the City of San Jose will NOT sponsor, represent or sign any documents related to visa applications/transfers for H1-B or any other type of visa which requires an employer application.
Please note that applications are currently
not
accepted through CalOpps or any other third party job board application system.
This recruitment may be used to fill multiple positions in this, or other divisions or departments. If you are interested in employment in this classification, you should apply to ensure you are considered for additional opportunities that may utilize the applicants from this recruitment.
Please allow adequate time to complete the application and submit before the deadline or the system may not save your application. If your online application was successfully submitted, you will receive an automatic confirmation email to the email address you provided. IF YOU DO NOT RECEIVE THE CONFIRMATION, please email and we will research the status of your application.
The City of San Jose offers a wide range of core health benefits including Medical, Dental, Vision, Employee Assistance Program, Life Insurance, Disability, and Savings Plans. Please visit the City's for detailed information on coverage, cost, and dependent coverage.
For information on the City's Retirement Plan(pension for full-time employees), please visit the Office of Retirement Services You will be able to view information based on different Sworn/Federated job classification.
In additional to the benefits above, there is an to explore further benefits of working for the City of San Jose like paid leave, educational reimbursements, and holiday pay are specific to the job classification and union membership.
01
What is the highest level of education you have completed?
High School Diploma or the equivalent (GED)College (1 to 29 semester units/ 1 to 44 quarter units)College (30 to 59 semester units/ 45 to 89 quarter units)College (60 to 89 semester units/ 90 to 134 quarter units)College (90 to 119 semester units/ 135 to 179 quarter units)College (120 or more semester units/ 180 or more quarter units)Associate's DegreeBachelor's DegreeMaster's DegreeDoctoral DegreeOtherNone of the above
02
If you have a bachelor's degree or higher from an accredited college or university in a related field, please state the field of study and the issuing accredited college or university.
03
This position requires a State of California Driver's License. Please select the applicable option that best describes your driver's license, or your ability to possess a valid driver's license.
State of CA, Class A Driver's LicenseState of CA, Class B Driver's LicenseState of CA, Class C Driver's LicenseI do not possess a State of California Driver's License but, I can obtain one.I do not possess a State of California Driver's License and I cannot obtain one
04
Do you possess a CURRENT, TERMINAL LEVEL cybersecurity certification such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in the Governance of Enterprise IT (CGEIT), Certified in Risk and Information Systems Control (CRISC), OR an equivalent professional, industry recognized certification? If YES, please attach a scanned copy of the certification(s) you possess in the "File Attachments" part of the application process.
YesNo
05
If you answered Yes to the previous question (question 4), please indicate if you possess a CURRENT (non-expired) certification(s) listed below. Please ATTACH a scanned copy of the certification(s) you possess in the "File Attachments" as part of the application process (check all that apply):
Certified Information Systems Security Professional (CISSP)Certified Information Systems Auditor (CISA)Certified Information Security Manager (CISM)Certified in the Governance of Enterprise IT (CGEIT)Certified in Risk and Information Systems Control (CRISC)Other equivalent Certification(s)I do not have any certification.
06
Please select the areas of technical competency where you have expertise in the configuration and ongoing support of (check all that apply):
Identity and Access ManagementVulnerability Scanning toolsIT Asset Inventory / ManagementGovernance Risk & Compliance toolsIncident Response and ManagementContingency Planning and testingThreat and Vulnerability ManagementNIST Cybersecurity FrameworkNone of the Above.
07
Please share with us a significant Vulnerability Management implementation you led or helped lead. Please describe your role, customer impacts and involvement, and the scale of the implementation. What was the outcome? What would you have done differently?
08
Please describe your experience in managing identities. What challenges did you have, and how were you able to overcome those challenges? What were the lessons learned?
Required Question