An Information Technology Security Specialist is responsible for performing a combination of the following essential job functions:

Leads, coordinates, and participates in the analysis, design, and implementation of IT security best practices; solutions for Industrial Control Systems (ICS) or Supervisory Control and Data (SCADA), servers, desktops, and cloud infrastructure.

Develops compliance strategies for IT security programs; leads the assessment of risks of non-compliance to management policies, procedures, standards and guidelines and reports findings to management; oversees, reviews, analyzes, and coordinates security upgrades and vulnerability management program.

Provides expert technical systems and infrastructure security advice, recommendations, and assistance in the development or implementation of risk-based mitigation plans.

Leads and participates in the technical analysis and correlation of security data/logs to identify potential threats and vulnerabilities, or to determine the root cause of a security-related event/incident.

Researches, evaluates, and recommends security tools, products, platforms, and standards based on industry trends, business requirements, and technical infrastructure; monitors, analyzes, and responds to security event using security-event management tools.

Maintains awareness and knowledge of current changes within legal, regulatory, and technology environments which may affect security, privacy, or operations; ensures senior management and staff are informed of any changes and updates in a timely manner.

Reviews and provides security contractual requirements and develops service-specific language to facilitate, mitigate, and identify third party security risks for solicitation documents including Requests for Information (RFI), Requests for Quotes (RFQ), and Statements of Work (SOW).

Performs security assessment/penetration testing for SCADA, infrastructure, applications, databases, and cloud computing; monitors and measures effectiveness of security metrics, risk remediation programs, and management reports.

Leads and participates in the development and implementation of Business Continuity Plans (BCP)/Disaster Recover Plans (DRP).

Required to participate in the Countywide Cybersecurity Incident Response Committee, Departmental Cybersecurity Incident Response Team, and Cybersecurity Workgroups as needed.

Supervise IT staff in the performance of security-related assignments as needed.

Required to represent the department in legal matters related to IT systems security, and performs other duties as assigned or requested as needed.

SELECTION REQUIREMENTS:

OPTION I:  Graduation from an accredited college or university with a bachelor's degree* in Computer Science, Information Systems, or a closely-related discipline  -AND- four (4) years of recent, full-time, highly responsible experience** within the last five years managing the security of multiple platforms, operating systems, software, and network protocols for a large IT organization.***

OPTION II:  Five (5) years of highly responsible experience** in the administration of a minimum of one (1) or more IT security functional areas**** at the level of Los Angeles County class of  Information Technology Security Analyst.*****

LICENSE:
A valid California Class C Driver License or the ability to utilize an alternative method of transportation when needed to carry out job-related essential functions.

PHYSICAL EXPECTATIONS:
Physical Class II - Light:  Light physical effort which may include occasional light lifting to a 10-pound limit, and some bending, stooping or squatting.  Considerable walk may be involved. 

SPECIAL REQUIREMENT INFORMATION:

*In order to receive credit for the required degree/coursework, you must include a legible copy of the official diploma, official transcripts, or official letter from the accredited institution which shows the area of specialization, at the time of filing or within five (5) calendar days of filing. Unofficial transcripts are acceptable; however official transcripts will be required at the time of appointment. Applications submitted without the required documents will be rejected as incomplete. Please submit documentation to bbaiz@dpw.lacounty.gov and indicate your name, the exam name, and the exam number.

 **Highly responsible experience is defined as experience at the senior level performing the more complex assignments related to the development, implementation, and monitoring of information technology security systems.

***Large IT organization is defined as a corporate or  public agency organization having a minimum of 1,000 employees.

****Information systems security, including assignments in one or more IT security-related areas: application, network, physical/environmental, server, and workstation security; and security incident response, information security best practices; security management and practices; computer threats, vulnerabilities and exploits, and risk assessment.

*****Experience at the level of  the Los Angeles County class of Information Technology Security Analyst in the service of the County of Los Angeles is defined as performing the full range of activities related to the development, implementation, and monitoring of information systems security standards, best practices, and architectures.

DESIRABLE QUALIFICATIONS: 

• Demonstrated skills in Industrial Control System (ICS), Supervisory Control and Data Acquisition (SCADA), security architecture, IT Security, networking, or systems administration with an emphasis on security is highly desirable.
• Communicate and present security risk concisely and effectively (written, oral and presentation).
• Experience in risk management, auditing, assessment, industrial Cybersecurity framework, and/or internal controls is highly desirable.
• Experience with security and privacy, legal, and regulatory requirements.
• Knowledge of information security management frameworks, such as NIST, CIS, ISO 27001, COBIT, or PCI DSS.
• Strong understanding of networking concepts and protocols (e.g., TCP/IP, LAN, WAN, DHCP, DNS, routing protocols, etc.).
• Expert level knowledge of security systems such as SIEM,  IPS firewalls, and related network security tools.
• Experience with operating systems such as  Windows, Unix, Apple, and databases such as  SQL, Azure, Oracle. 
• Experience with Industrial Control Systems software such as Siemens, Wonderware, and other similar platforms. 

• Certified Information Systems Security Professional (CISSP).
• Certified Information Security Manager (CISM).
• Global Information Assurance Certification (GIAC).
• Other comparable Security Certification.

OUR ASSESSMENT PROCESS:

This examination will consist of an Interview covering education, experience, workstyle, and general ability to perform the duties of the position weighted 100%. 

Candidates must achieve a passing score of 70% or higher on the interview in order to be placed on the eligible register.

ELIGIBILITY INFORMATION:
The names of candidates receiving a passing grade in the examination will be placed on the eligible register in the order of their score group for a period of twelve (12) months following the date of promulgation.

Applications will be processed on an "as-received" basis and those earning a passing grade will be promulgated to the eligible register accordingly.

NO PERSON MAY COMPETE IN THIS EXAMINATION MORE THAN ONCE EVERY 12 MONTHS.

SPECIAL INFORMATION: