https://community.isc2.org/t5/Career-Discussions/IT-Security-Consultant-City-of-Austin-Department-Austin-Energy/m-p/42057#M3034 <P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/1073172551">@Court</a>&nbsp;</P><P>&nbsp;</P><P>"This is the way," says a former Mandalorian Bounty Hunter who is now consulting in the tradecraft.&nbsp; &nbsp;&nbsp;</P> Wed, 30 Dec 2020 13:16:18 GMT tmekelburg1 2020-12-30T13:16:18Z https://community.isc2.org/t5/Career-Discussions/IT-Security-Consultant-City-of-Austin-Department-Austin-Energy/m-p/41946#M3029 <P><FONT size="5"><STRONG>Headline</STRONG></FONT></P><P><SPAN>Austin Energy seeks an </SPAN><STRONG>IT Security Consultant</STRONG><SPAN>. Location: Austin Texas. Position type: Full Time</SPAN></P><P>&nbsp;</P><P><FONT size="5"><STRONG>Overview/Description</STRONG></FONT></P><P><SPAN>Austin Energy seeks an </SPAN><STRONG>IT Security Consultant</STRONG><SPAN>. This position will ensure secure elevated access to energy network resources with strong assurance of appropriate auditing, accountability, and reporting; administer Privileged Access Management system; author policies, standards, and procedures; mentor others; provide cybersecurity awareness; communicate with all levels of staff; assist with gathering </SPAN><SPAN class="caps">NERC</SPAN><SPAN>-</SPAN><SPAN class="caps">CIP</SPAN><SPAN> evidence for regulatory compliance; partner with others to ensure security requirements are defined, documented, and achieved.</SPAN><BR /><BR /><SPAN>This position requires a Financial and </SPAN><SPAN class="caps">NERC</SPAN><SPAN>-</SPAN><SPAN class="caps">CIP</SPAN><SPAN> background investigation and the ability to travel to more than one work location.</SPAN><BR /><BR /><SPAN>Working with Austin Energy provides a number of health and welfare benefits such as low-cost medical, dental, vision, paid leave time, a highly competitive retirement plan, career development opportunities and more.</SPAN></P><P>&nbsp;</P><P><FONT size="5"><STRONG>Duties/Responsibilities</STRONG></FONT></P><DIV>1. Plan, design, implement, monitor risk mitigation and compliance of security measures, and&nbsp;policies and procedures</DIV><DIV>2. Manage response to high-level information security issues</DIV><DIV>3. Provide security program leadership in designing, procuring and implementing secure IT&nbsp;solutions for enterprise-wide application and infrastructure-related projects including business&nbsp;continuity and disaster recovery plans</DIV><DIV>4. Develop, maintain and publish documentation for enterprise-wide information technology&nbsp;security standards, procedures and guidelines.</DIV><DIV>5. Maintain awareness of security industry trends and identify areas where existing information or&nbsp;physical security infrastructure requires change or development</DIV><DIV>6. Provide risk assessments and security briefings to advise on critical issues that may affect&nbsp;security of enterprise infrastructure or business process</DIV><DIV>7. Perform computer security incident response to possible security breaches or policy violations.</DIV><DIV>8. Perform information and physical security investigations</DIV><DIV>9. Develop security awareness and compliance training programs</DIV><DIV>10. Consult on projects or project manage security implementations and development&nbsp;</DIV><P>&nbsp;</P><P><FONT size="5"><STRONG>Qualifications</STRONG></FONT></P><UL><LI>Privileged Access Management (<SPAN class="caps">PAM</SPAN>) Technologies</LI><LI>Regulatory Audits</LI><LI>Formal Interaction and Communication with Executives</LI><LI>Conducting Cybersecurity Awareness and Training</LI><LI>Microsoft and Linux Operating Systems</LI><LI>Supporting and/or Leading Complex Projects</LI><LI>Authoring/Publishing Policies, Standards and Procedures</LI><LI><SPAN class="caps">CISSP</SPAN> or other Information Security Certification</LI><LI>Ability to travel to more than one work location</LI></UL><P><FONT size="5"><STRONG>Knowledge, Skills and Abilities</STRONG></FONT></P><DIV>• Knowledge in networking, wireless, databases, applications and system operations and how they&nbsp;interact with each other</DIV><DIV>• Knowledge of enterprise information security systems and implementation</DIV><DIV>• Knowledge of securing different types of systems&nbsp;</DIV><DIV>• Knowledge of industry and department best practices, requirements and policies and procedures</DIV><DIV>• Skills in security assessments and recommendations</DIV><DIV>• Skill in analyzing and investigation of information security trends</DIV><DIV>• Skill in mentoring and monitoring daily work activities of others</DIV><DIV>• Skill in selecting and using training/instructional methods and procedures</DIV><DIV>• Skill in documenting and maintaining complex application and process or configuration&nbsp;information</DIV><DIV>• Skill in identifying complex problems and implementing solutions</DIV><DIV>• Ability to educate various personnel regarding information security</DIV><DIV>• Ability to identify trends as well as isolated events</DIV><DIV>• Ability to accurately identify/determine customer needs and take appropriate actions and/or&nbsp;steps to address identified needs</DIV><DIV>• Ability to recognize, value, and include different perspectives, experiences, approaches, and&nbsp;cultures in achieving organizational goals</DIV><DIV>• Ability to gain and maintain the trust and confidence of others and the organization through&nbsp;consistency and reliability</DIV><DIV>&nbsp;</DIV><P><STRONG><FONT size="5">Closing</FONT>&nbsp;</STRONG></P><P>&nbsp;</P><P>If you meet the qualifications listed above please apply at:&nbsp;<A href="https://www.austincityjobs.org/postings/86180" target="_blank" rel="noopener">https://www.austincityjobs.org/postings/86180</A></P><P>&nbsp;</P><P><STRONG>Closing date:<SPAN>&nbsp;</SPAN></STRONG><SPAN>01/10/2021</SPAN></P> Mon, 09 Oct 2023 09:44:11 GMT https://community.isc2.org/t5/Career-Discussions/IT-Security-Consultant-City-of-Austin-Department-Austin-Energy/m-p/41946#M3029 Danny_K 2023-10-09T09:44:11Z https://community.isc2.org/t5/Career-Discussions/IT-Security-Consultant-City-of-Austin-Department-Austin-Energy/m-p/41962#M3031 <P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/1305965283">@Danny_K</a>&nbsp;</P><P>&nbsp;</P><P>Just a suggestion. If this is a full time employee, get rid of the word Consultant and replace it with Manager if they oversee the security program and staff. Also, try aligning job titles and descriptions from here:&nbsp;<A href="https://niccs.cisa.gov/workforce-development/cyber-security-workforce-framework/workroles?name=Information+Systems+Security+Manager&amp;id=All" target="_blank" rel="noopener">NICE Cybersecurity Workforce Framework Work Roles</A>&nbsp;</P><P>&nbsp;</P><P>We have an issue within the industry of aligning job titles to responsibilities. If we as a whole try our best and pull from authoritative sources like this we can help combat the issue.&nbsp;</P> Mon, 28 Dec 2020 17:44:11 GMT https://community.isc2.org/t5/Career-Discussions/IT-Security-Consultant-City-of-Austin-Department-Austin-Energy/m-p/41962#M3031 tmekelburg1 2020-12-28T17:44:11Z https://community.isc2.org/t5/Career-Discussions/IT-Security-Consultant-City-of-Austin-Department-Austin-Energy/m-p/42057#M3034 <P><a href="https://community.isc2.org/t5/user/viewprofilepage/user-id/1073172551">@Court</a>&nbsp;</P><P>&nbsp;</P><P>"This is the way," says a former Mandalorian Bounty Hunter who is now consulting in the tradecraft.&nbsp; &nbsp;&nbsp;</P> Wed, 30 Dec 2020 13:16:18 GMT https://community.isc2.org/t5/Career-Discussions/IT-Security-Consultant-City-of-Austin-Department-Austin-Energy/m-p/42057#M3034 tmekelburg1 2020-12-30T13:16:18Z