Assists the Manager of Information Security with the implementation of security policies, procedures and standards. Work involves installation, configuration, administration, documentation, and maintenance of relevant systems.
This position is distinguished from other information technology positions by the responsibility of providing technical leadership of security initiatives. As a technical leader, the position requires strong analytical and technical skills and a detailed working knowledge of current and emerging security technologies. The position is within the Information Technology Services (ITS) division with a focus on information security. Employees in this position report to the Manager of Information Security.
Assists in operational duties relating to a Microsoft Active Directory and Azure including administration of cloud security tools, user and group permissions, and GPOs.
Responsible for full knowledge of the Colorado Judicial Department’s security goals as established by its cyber security plan, stated policies, procedures and standards and actively works towards upholding those goals.
Assists in performing, monitoring, and maintaining relevant systems and associated hardware/software, as well as provide support and troubleshooting for those systems when required.
Responsible for maintaining and monitoring the secure configuration and operations of all in-place devices to include security tools, workstations, mobile devices, servers and network devices.
Responsible for administration of SIEM including correlation of events between endpoint security, mail server, and internet proxy.
Responsible for administration and troubleshooting of endpoint security, Encryption, HIPS, mail server and any other information security related systems the Department currently utilizes or may utilize in the future.
Assists in preventing data loss by configuring and maintaining backups and replication for all critical systems. Assists in preventing configuration loss by creating and maintaining documentation when requested.
Executes encryption standards as it relates to hardware and software.
Documents security systems configurations, settings, policies and procedures.
Works with the technical support team to manage physical security of hardware and software inventory.
Executes systems security incident response process as needed.
Provides Tier 1, 2 and 3 support for all information security relevant systems, including but not limited to: AD user accounts, mailboxes, NTFS permissions, internet proxy, mail server, endpoint security, and SIEM.
Develops and maintains good working relationships with all Department employees and vendors.
Assists in research, implementation, and maintenance of security products including cloud security solutions such as Microsoft ATP.
Acts as a resource to internal ITS staff, judicial districts, other state agencies, and/or other organizational units as directed.
Travel throughout the state of Colorado is required at times, not to exceed 10% of the time.
Shares on-call support for all in-place security solutions.
May perform other duties related to information security technology and Windows/Linux systems.
Attends meetings and training as required.
Performs other duties as assigned.
Responsible for one's own work product and may provide guidance, assistance, or mentorship to less knowledgeable or experienced coworkers, volunteers, or interns. This may include scheduling of work, instructing in work methods, and reviewing work products. May provide input into hiring, performance evaluation, and discipline/termination processes.
Graduation from an accredited college or university with a bachelor’s degree in computer science or related field and five years of related work experience required. SIEM knowledge is required. CISSP is preferred.
OR
Additional relevant experience may substitute for the required education on a year-for-year basis as follows: graduation from high school or equivalent and eight years working in computer related areas; four years of direct security related experience is required. SIEM knowledge is required. CISSP is preferred.
While performing the duties of this job, the employee is regularly required to talk and hear. The employee is frequently required to sit and reach with hands and arms and perform repetitive motions with wrists, hands, and fingers. The employee is occasionally required to stand and walk. The employee must occasionally lift and/or move up to 50 pounds or more. Specific vision abilities required by this position include close vision, color vision, depth perception, ability to adjust and focus, and the ability to see clearly at 20 feet or more.
While performing the duties of this job, the employee is occasionally exposed to moving mechanical parts, work in high precarious places and the risk of electrical shock. Frequently handles emergency or crisis situations and may be subject to varying and unpredictable situations and work hours. The employee is subject to frequent interruptions, multiple calls and inquiries, and may occasionally handle absentee replacement on short notice. The noise level in the work environment is usually moderate.