IT Security Analyst

Description

First review after two weeks: 3/20/2025

CORE VALUE STATEMENT

The City of Kennewick will provide excellent public service and ensure the safety and wellbeing of our community and one another through the empowerment of each employee. We value integrity, inclusiveness, stewardship and communication. We are accountable to our community for innovative and collaborative efforts that anticipate needs, leverage resources and deliver solutions.

SAFETY STATEMENT

We expect our employees to ensure compliance with all applicable safety practices and policies, including those established by OSHA/DOSH regulations and by the City’s Accident Prevention Plan. This includes but is not limited to actively identifying and correcting potential hazards that may affect employee and public safety, including those identified by co-workers. Leading by example to promote a positive culture of workplace safety through everyday action; emphasizing safe completion of work throughout all aspects of developing and carrying out work plans.

CLASSIFICATION SUMMARY
Under general direction of the Information Technology (IT) Infrastructure Supervisor, the Temporary IT Security Analyst is responsible for executing and maintaining multiple Citywide Enterprise Security programs including Vulnerability Management, identity management, threat management, incident response and forensics as well as Security Education and Awareness. Works closely with the IT leadership team to support, and be an active participant in global IT projects, security assessments, and remediation plans for non-compliant systems and processes. As a primary point of contact for security risks, this position will assist in monitoring progress, making resolution recommendations for outstanding issues that may lead to non-compliance or security threats to the City of Kennewick, and implementing solutions reviewed by IT Management. Report statistics and other reports on enterprise functions that fall within the scope of responsibilities to all vested parties. In addition, provide high quality first line customer service with excellent verbal and written communication skills. As a key member of the IT team, this position must focus on strong collaboration, risk management and corporate resiliency.

Examples of Work Performed (Illustrative Only)

The following list reflects the essential job duties and responsibilities of this classification, but should not be considered all-inclusive. The incumbent will be expected to perform other related duties as assigned.

• Implement and/or maintain enterprise level system configurations and administration along with providing in-depth, expertise in, and support for endpoint detection tools, identity management tools, penetration testing tools, multi-factor authentication. Preference will be given for experience with AMP, Umbrella, Active Directory, Artic Wolf, NetIQ.
• Analyze and apply security policies to meet security objectives of the City of Kennewick.
• Assess adequate access controls based on principles of least privilege and need-to-know.
• Assess all the configuration management and evaluate change management requests in regards to security configuration and release management processes.
• Assess the effectiveness of security controls, file permissions, employees assigned assets, and mobile/smart device management
• Provide oversight with enterprise security, including antivirus and anti-malware, software development frameworks, mobile device management, system configurations, and software settings.
• Execute, manage, and lead users through the security on-boarding processes, and support and resolve specific user deployment issues.
• Design, develop and communicate key on-boarding process and security and technology improvement feedback
• Interact daily with IT team to provide and share technical issue resolution knowledge and deployment/adoption processes best practices
• Assist with routine monitoring and analysis to include audit log reports evaluation, system reports, site and system usage, and assist in site settings.
• Assist in developing and maintaining technology roadmaps to ensure solutions remain leading edge in terms of functionality, security, performance, and availability
• Ensure all systems security operations and maintenance activities are properly documented and updated as necessary. In addition, ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
• Implement security measures to resolve vulnerabilities, mitigate risks and recommend security changes to system or system components as needed. In addition, implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation
• Mitigate/correct security deficiencies identified and recommend risk acceptance for IT Leadership
• Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities
• Plan and recommend modifications or adjustments based on exercise results or system environment
• Participate in maintaining IT Service Catalog listing all IT services, their respective Business Importance Level, key-performance indicators for each service by properly documenting all systems security implementation, operations and maintenance activities. Verify and update security documentation reflecting the application/system security design features
• Verify minimum security requirements are in place for all applications for appropriate compliance (HIPAA, CJIS, etc) as well as industry best practices. Review and revise processes to identify, assess, and mitigate compliance and regulatory risks, including HIPAA, PCI, CJIS, SOX (et al) and directly engage with other departments and stakeholders to meet compliance requirements.
• Participate in business continuity with efforts to counter security breaches and anticipating and reducing the likelihood of future security alerts, incidents, and disasters
• Attend and participate in staff meetings. Provide input to develop customer service programs and improve the department’s efficiency and effectiveness around IT Service Management (ITSM) principles and processes as described by ITIL. Manage resources to ensure consistent level of service and effective service delivery. Identify shared service and other alternative approaches to improving IT service delivery.
• Work with IT Management to review, revise, develop and implement all functional policies, procedures and knowledge base documentation, including those for desktop systems, standards, purchasing and service provisions; analyzes existing operations and makes recommendations for the improvement and growth of the desktop computing infrastructure and IT systems.
• Communicate risk and risk mitigation plans to the IT Management team and report on metrics to assess the City’s security posture and consolidate measures across security portfolio.
• Assess security requirements during procurement processes, implementation processes, as well as any change management processes.
• Provide recommendations and participate in implementation of prescribed corrective actions and/or counter measure deployments. Interpret cyber security requirements relative to differing environments and provide guidance to ensure securing the environment (network, application, or system).
• Performs other related duties as assigned.

Employment Standards

Two (2) year degree in Computer Science or related field (Bachelor’s Degree preferred). Two (2) years of enterprise security analytics and possess the required skillsets to protect, monitor, analyze, detect, and respond to enterprise system attacks, intrusions, disruptions, or other unauthorized actions that would compromise the City. Knowledgeable of (LAN) theory and the TCP/IP communication protocols. Working knowledge of current and past Microsoft Windows Operating Systems, Networking, Microsoft Office, and other similar applications.

Or, certification in Cybersecurity such as SSCP (Systems Security Certified Practitioner), CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) and four (4) years of enterprise security analytics and possess the required skillsets to protect, monitor, analyze, detect, and respond to enterprise system attacks, intrusions, disruptions, or other unauthorized actions that would compromise the county. Knowledgeable of (LAN) theory and the TCP/IP communication protocols. Working knowledge of current and past Microsoft Windows Operating Systems, Networking, Microsoft Office, and other similar applications.

• Must successfully complete the Cisco CyberOps Associate Certification or CCNP Security Course within 1 year of hire date.
• Must possess and maintain a valid State of Washington driver’s license.
• Must pass a criminal background investigation.
• Must pass CJIS certification
• IS security clearance is required.
• Must maintain a level of mental and physical fitness required to perform the essential functions of this classification.

Knowledge, Skills and Abilities:

To perform the essential functions of the classification, incumbents must be able to demonstrate the following knowledge, skills and abilities:

Knowledge of:

• ITIL Service Management methodology.

• Excellent IT skills including a thorough knowledge of MS Office productivity suites, Windows desktop and server operating systems, infrastructure & network support including, but not limited to LAN, WLAN, server, virtualization, back-up, storage, email, printer, voice and security technologies.

• Correct English usage, grammar, spelling, punctuation and vocabulary.

• Public speaking techniques.

Skills & Ability to:

• Excellent organizational skills with the ability to work calmly under pressure, multi-task, remain flexible to changing priorities, and prioritize.

• Demonstrated ability to lead and to effectively communicate with staff at all levels including a proven ability to communicate with technical and non-technical staff across multiple disciplines.

• Interpersonal skills using tact, patience and courtesy.

• Maintain confidentiality of sensitive materials and information.

• Organized with a strong attention to detail.

• Assist with physical inventories and accurate recordings of equipment and software

• Demonstrate strong written and verbal communication skills required to present department plans and activities to individuals and groups throughout the organization.

• Seek assistance and advice as needed but take ownership of assignments and responsibilities. Perform excellent work under intense deadlines. Possess strong time management skills

• Apply principles of logical or scientific thinking to define problems, collect data, establish facts and draw valid conclusions.

• Knowledge and ability/aptitude to learn the administrative and functional components of enterprise software applications; Ability to provide in-depth support for, and maintenance of, these applications

• Ability to align tasks and responsibilities with department operations and strategic plans to meet stated goals and objectives.

• Ability to handle job stress and interact effectively with others in the workplace.

• Ability to prepare clear, concise, and informative support documentation, presentation, and user training materials

• Ability to carry out instructions furnished in written, oral or diagrammatic form.

• Must maintain regular attendance and punctuality.

Physical Requirements:

To perform the essential functions of the classification, incumbents must be able to meet the following physical requirements: must regularly talk, hear/listen, see/observe, sit, stand and walk; must regularly demonstrate fine motor skills; must occasionally exert up to 10 pounds of force.

WORK SCHEDULE

The initial work schedule for this classification will be full-time, Monday through Friday. Early mornings, evenings and weekend work may be occasionally required. Overtime may be occasionally required. This classification is exempt under the FLSA.

IDEAL QUALIFICATIONS

1. 5+ years of hands-on experience in information technologies such as continuous monitoring, anti-malware controls, intrusion detection/prevention, access control and cyber security incident response-focused systems.

2. One or more security focused certifications: Certified Information Systems Security Professional (CISSP) Certified Information Systems Auditor (CISA) Certified Information Security Manager (CISM)

3. One or more professional certifications: Microsoft Certified System Administrator (MCSA), Microsoft Certified Systems Engineer (MCSE), Cisco Certified Network Associate (CCNA), Cisco Certified Network Professional (CCNP), Certified Risk and Information Systems Control (CRISC) Certified Ethical Hacker (CEH), Project Management Institute Project Management Professional (PMI-PMP) or comparable certifications.

4. Experience with ArcticWolf, AMP, Umbrella, SCCM, Active Directory,

Supplemental Requirements

WORK SCHEDULE
The initial work schedule for this classification will be on-site, full-time, Monday through Friday. Early mornings, evenings and weekend work may be occasionally required. Overtime may be occasionally required. This classification is exempt under the FLSA.

The benefits listed below are those currently enjoyed by full-time City of Kennewick Non-Contract employees. It is important to remember that over the course of time these benefits may change - they are not permanent. Benefits may change through City Council or administrative action or changes mandated by state and federal law.

Paid Holidays
12 per year (9 scheduled; 3 “floating”)
New Year's Day, Martin Luther King Jr. Birthday, Washington's Birthday, Memorial Day, Independence Day, Labor Day, Thanksgiving Day and the day after Thanksgiving, Christmas Day, and three floating holidays selected by the employee. An employee will accrue one of the three floating holidays on each of the following days: February 1, February 12, and August 31. An employee will only accrue a floating holiday on these days if actually employed.

Paid Time Off (PTO)
The purpose of PTO is to compensate employees for absences due to injury, illness, vacation and personal business. In addition, the program is designed to provide employees with personal flexibility regarding the use of leave hours. PTO hours accrue based upon the actual number of regular hours worked.

Accrual per Month:
0-5yrs 6-9yrs 10-14yrs 15-19yrs 20-24yrs 25-29yrs 30+yrs
12 hours 15 hours 17 hours 19 hours 21 hours 23 hours 25 hours

Retirement Plan
All City employees are members of the Public Employees Retirement System (PERS). The City and the employee both contribute toward the plan. PERS provides regular retirement and disability retirement benefits. City employees also participate in the Social Security Program. Rates effective as of 09/01/2024. ( www.drs.wa.gov )

PERS Employee Contribution Rate Employer Contribution Rate
Plan II 6.36% 9.11%
Plan III Employee Choice (see booklet) 9.11%

Deferred Comp
The City contributes an equivalent of 5% of your regular monthly salary to Mission Square Retirement (previously ICMA) deferred compensation program. No employee match required, but employees may contribute towards plan if desired. ( www.icmarc.org )

Medical, Dental & Vision Insurance
The City currently pays the entire dental and vision insurance premiums for the employee and dependents. Employee current premium share is $200.00 per month for medical insurance to cover themselves and dependents.

Life Insurance
1.5 x annual salary (not to exceed $250K) provided by the City of Kennewick. Employee may purchase Voluntary Term Life Insurance for employee, spouse and/or dependents through New York Life (previously Cigna).

Long Term Disability
The City pays the entire long-term disability premium for employees through New York Life (previously Cigna).

Wellness Program
The Wellness Program has been established to encourage employee health and fitness, both at work and at home. A City Wellness Committee promotes and provides opportunities for healthy lifestyles. Employee fitness center is open to all employees and their spouses.

Employee Assistance
An Employee Assistance Plan (EAP) is provided by the City to assist you and family members, providing counseling and treatment in such areas as stress, drug and alcohol abuse and family counseling.

Other Benefits Offered

• Flexible Spending Plan (Pre-Tax Deduction for Medical/Dental and Day Care)
• Aflac Supplemental Insurance
• Tuition Assistance
• Bereavement Leave
• Overtime
• Direct Deposit (paydays are 5th and 20th of the month)

Closing Date/Time: 3/27/2025 11:59 PM Pacific

• 

• City of Kennewick

• (509) 585-4240

Show more