Laserfiche WebLink
<br />Marion County Class Specification BulletinPage of <br />>>> <br />Information Technology <br />Security Analyst <br />Class Code: <br />560 <br />Bargaining Unit: 13 - Non-Supervisory <br />MARION COUNTY <br />SALARY RANGE <br />$3,408.80 - $4,565.60 Biweekly <br />$7,385.73 - $9,892.13 Monthly <br />OVERVIEW: <br />FLSA: EEOC: Department <br />Exempt02 Professionals: Information Technology <br />GENERAL STATEMENT OF DUTIES <br />Plan, organize, manage, and administer information security programs, operations, and functions; <br />develop and implement program and strategic planning; implement and assist in the development of <br />information security program policies, procedures, and business practices; evaluate goals, objectives, <br />priorities, and activities to improve performance and outcomes; recommend and establish administrative <br />controls and improvements; develop procedures to implement new and/or changing regulatory <br />requirements; serve as an advisor to the management team. <br />SUPERVISION RECEIVED <br />Works under general supervision of the IT Director who assigns work, establishes goals, and reviews the <br />results obtained for overall effectiveness through the analysis of work products, observations, and <br />meetings. <br />SUPERVISION EXERCISED <br />The employee does not typically supervise, but facilitates and leads representatives from county <br />departments and coordinates with IT Department personnel to achieve the objectives of the Information <br />Security Program plan. <br />DISTINGUISHING CHARACTERISTICS <br />Develops and maintains the framework for the organization's IT information security program. Evaluates <br />and recommends new information security technologies and counter-measures against threats to <br />information or privacy. Identifies information technology security initiatives and standards for the <br />enterprise. Manages the development, implementation, and maintenance of information security policy, <br />standards, guidelines, and procedures. Sets the access and authorization controls for everyday <br />operations, as well as emergency procedures for data. Sets the standards for access controls, audit trails, <br />event reporting, encryption, and integrity controls. Keeps abreast of latest security and legislation, <br />regulations, advisories, alerts and vulnerabilities pertaining to IT assets. <br />EXAMPLES OF DUTIES - DUTIES INCLUDE, BUT ARE NOT LIMITED <br />TO THE FOLLOWING: <br />1.Develops and implements an ongoing risk management program targeting information security <br />and privacy matters; determines the methods for vulnerability detection and remediation, and <br />https://agency.governmentjobs.com/marion/default.cfm?action=specbulletin&ClassSpecID=...8/3/2020 <br /> <br />