Threat Level: green Handler on Duty: Rob VandenBrink

SANS ISC: InfoSec Jobs - SANS Internet Storm Center InfoSec Jobs

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Cybersecurity Analyst
Company Irvine Ranch Water District
Location Irvine, CA
Preferred GIAC Certifications GICSP, GCIP, or GRID
Travel 0%
Salary $50.39-$70.79/hourly
URL https://www.governmentjobs.com/careers/irwd/jobs/3458104/cybersecurity-analyst?pagetype=jobOpportunitiesJobs
Contact Name Kim Steere
Contact Email steere/at/irwd.com
Expires 2022-08-10

Job Description

The Irvine Ranch Water District is currently accepting applications for a Cybersecurity Analyst. Under general supervision, the incumbent will be responsible for cybersecurity engineering processes and procedures, assisting with cybersecurity architecture, design, requirements validation and verification, and handling the day-to-day duties for the cybersecurity infrastructure.

GENERAL DUTIES:

Assist in defining global security policies, standards, guidelines and procedures to ensure ongoing maintenance of security.

Assist in developing and implementing strategies to balance security recommendations with business needs; define solutions that balance both business and security requirements.

Identify deficiencies in current system designs and recommend solutions.

Assist in performing project management duties on assigned systems projects; may be assigned full responsibility for specific systems.

Monitor vendor and third-party security reports/lists in order to assist staff in proactively applying security patches.

Monitor and analyze cybersecurity incident-related data and determine the appropriate response.

Provide emergency response to reduce down-time, correct errors, or initiate and monitor vendor activity surrounding critical system failures, off-hours scheduled maintenance downtime, or on an as needed basis.

Perform research, gather costing information, recommend hardware and software; gather vendor quotes and assist in budget preparation.

Provide reporting on system security status and relevant cybersecurity data.

Assist with conducting disaster and recovery analysis, planning, implementation, testing and administration for systems.

Conduct security impact analyses; implement and monitor access controls.

Coordinate cybersecurity projects with all District departments, including SCADA, to ensure compliance.

Maintain effective relationships with various departments, consultants, and vendors to provided needed support and participate in cross-department projects as directed.

Lead Automation in collaboration efforts with other cybersecurity experts, consultants, and internal staff to develop and implement well-constructed ICS/SCADA cybersecurity policies, standards, guideline, procedures, and cybersecurity tools to balance both business and security requirements.

Stay abreast with current developments and regulation changes in the automation controls, information systems technologies, cybersecurity, and water utility industries to provide updates, best practices, and integrate new methods and tools as appropriate.

Maintain a system performance management program with relevant key performance indicators (KPIs) and tracking mechanisms.

After hours' accessibility will be required, to secure and support continuous 24/7 operation, as needed to meet District needs.

Comply with District safety work-related practices and attend relevant safety training.

Perform other related duties as assigned.

Education:
A combination of education and experience equivalent to a bachelor’s degree in Computer Science, Engineering or related field. For degrees obtained outside of the U.S., an official equivalency evaluation is required.


Experience:

A combination of five (5) years of experiences with at least:

1 year of experience in implementing cybersecurity and ultra-secure network architecture for Operational Technology (ICS/SCADA) or Defense Sector
2 years of highly specialized cybersecurity experience
2 years of experience in enterprise network & server


Experience with all of the following software or hardware is required:

Microsoft Windows Server and Desktop operating system
Microsoft Active Directory and Group Policy
PowerShell Scripting
Kali Linux or other similar distribution
Vulnerability Management Software (Nessus, OpenVas, Metasploit or other)
Security Information and Event Management (SEIM)
Syslog, Simple Network Management Protocol (SNMP) and Trap
Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS)
Wireshark

Experience with two of the following software or hardware is required:

Radio Communications Equipment
Network Switches and Routers
Next Generation Firewalls

Experience with any of the following software or hardware is highly desired:

Wonderware Intouch, Application Server or other SCADA software
Schneider Modicon PLC
Microsoft SQL and Power BI
Schneider/Wonderware System Platform, Historian, InTouch and Maple Systems
Schneider Unity Pro
Python Scripting
Licenses and Certifications:

A valid class 'C' California Drivers' license may be required.
Must obtain one (1) of the following certification(s) within 12 months of hire date:

Cisco CCNP (Cisco Certified Network Professional) Security
Microsoft MSCE (Microsoft System Certified Engineer) Server Infrastructure
Certified Penetration Tester (CPT) and Certified Ethical Hacker (CEH)
Certified Expert Penetration Tester (CEPT)
GIAC Industrial Cyber Security Professional (GICSP)
GIAC Critical Infrastructure Protection (GCIP)
GIAC Response and Industrial Defense (GRID)
Certified Information Systems Security Professional (CISSP)
DHS (Department of Homeland Security) Industrial Controls System 101, 201, 301 & 401 Series
Other relevant Cybersecurity certifications if approved by the department manager