This listing has expired and therefore is not publicly viewable.
|Company||Irvine Ranch Water District|
|Preferred GIAC Certifications||GICSP, GCIP, or GRID|
|Contact Name||Kim Steere|
The Irvine Ranch Water District is currently accepting applications for a Cybersecurity Analyst. Under general supervision, the incumbent will be responsible for cybersecurity engineering processes and procedures, assisting with cybersecurity architecture, design, requirements validation and verification, and handling the day-to-day duties for the cybersecurity infrastructure.
Assist in defining global security policies, standards, guidelines and procedures to ensure ongoing maintenance of security.
Assist in developing and implementing strategies to balance security recommendations with business needs; define solutions that balance both business and security requirements.
Identify deficiencies in current system designs and recommend solutions.
Assist in performing project management duties on assigned systems projects; may be assigned full responsibility for specific systems.
Monitor vendor and third-party security reports/lists in order to assist staff in proactively applying security patches.
Monitor and analyze cybersecurity incident-related data and determine the appropriate response.
Provide emergency response to reduce down-time, correct errors, or initiate and monitor vendor activity surrounding critical system failures, off-hours scheduled maintenance downtime, or on an as needed basis.
Perform research, gather costing information, recommend hardware and software; gather vendor quotes and assist in budget preparation.
Provide reporting on system security status and relevant cybersecurity data.
Assist with conducting disaster and recovery analysis, planning, implementation, testing and administration for systems.
Conduct security impact analyses; implement and monitor access controls.
Coordinate cybersecurity projects with all District departments, including SCADA, to ensure compliance.
Maintain effective relationships with various departments, consultants, and vendors to provided needed support and participate in cross-department projects as directed.
Lead Automation in collaboration efforts with other cybersecurity experts, consultants, and internal staff to develop and implement well-constructed ICS/SCADA cybersecurity policies, standards, guideline, procedures, and cybersecurity tools to balance both business and security requirements.
Stay abreast with current developments and regulation changes in the automation controls, information systems technologies, cybersecurity, and water utility industries to provide updates, best practices, and integrate new methods and tools as appropriate.
Maintain a system performance management program with relevant key performance indicators (KPIs) and tracking mechanisms.
After hours' accessibility will be required, to secure and support continuous 24/7 operation, as needed to meet District needs.
Comply with District safety work-related practices and attend relevant safety training.
Perform other related duties as assigned.
A combination of education and experience equivalent to a bachelor’s degree in Computer Science, Engineering or related field. For degrees obtained outside of the U.S., an official equivalency evaluation is required.
A combination of five (5) years of experiences with at least:
1 year of experience in implementing cybersecurity and ultra-secure network architecture for Operational Technology (ICS/SCADA) or Defense Sector
2 years of highly specialized cybersecurity experience
2 years of experience in enterprise network & server
Experience with all of the following software or hardware is required:
Microsoft Windows Server and Desktop operating system
Microsoft Active Directory and Group Policy
Kali Linux or other similar distribution
Vulnerability Management Software (Nessus, OpenVas, Metasploit or other)
Security Information and Event Management (SEIM)
Syslog, Simple Network Management Protocol (SNMP) and Trap
Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS)
Experience with two of the following software or hardware is required:
Radio Communications Equipment
Network Switches and Routers
Next Generation Firewalls
Experience with any of the following software or hardware is highly desired:
Wonderware Intouch, Application Server or other SCADA software
Schneider Modicon PLC
Microsoft SQL and Power BI
Schneider/Wonderware System Platform, Historian, InTouch and Maple Systems
Schneider Unity Pro
Licenses and Certifications:
A valid class 'C' California Drivers' license may be required.
Must obtain one (1) of the following certification(s) within 12 months of hire date:
Cisco CCNP (Cisco Certified Network Professional) Security
Microsoft MSCE (Microsoft System Certified Engineer) Server Infrastructure
Certified Penetration Tester (CPT) and Certified Ethical Hacker (CEH)
Certified Expert Penetration Tester (CEPT)
GIAC Industrial Cyber Security Professional (GICSP)
GIAC Critical Infrastructure Protection (GCIP)
GIAC Response and Industrial Defense (GRID)
Certified Information Systems Security Professional (CISSP)
DHS (Department of Homeland Security) Industrial Controls System 101, 201, 301 & 401 Series
Other relevant Cybersecurity certifications if approved by the department manager