Systems Analyst Ia -Cybersecurity Analyst

Requisition ID: 40868 

Organization
Located on the traditional, ancestral and unceded lands of the xʷməθkʷəy̓əm (Musqueam), Sḵwx̱wú7mesh (Squamish), and səlilwətaɬ (Tsleil-Waututh) Peoples, Vancouver has a commitment to becoming a City of Reconciliation. Vancouver consistently ranks as one of the world’s most liveable cities and is working towards being the greenest city in the world. Named among Canada's Top 100 Employers, BC's Top Employers, and Canada's Greenest Employers, the City of Vancouver seeks colleagues who can help shape and embody our core commitments to sustainability, reconciliation, equity and outstanding quality of life for all residents.

Consider joining our committed team of staff and being part of an innovative, inclusive and rewarding workplace.

Main Purpose and Function
The Cybersecurity Analyst I is responsible for protecting the integrity and availability of City computing data and telecommunications facilities. The incumbent applies technical knowledge of computers, networks, and security best practices to manage changes to existing, or upgrade to new technologies enterprise wide. The incumbent is also tasked to implement tools, establish and configure business rules, processes, and procedures pertaining to Cybersecurity, as well as the monitoring and managing of security incidents to minimize the risk to the City from data being damaged or compromised or from the inappropriate use of the City’s computing and telecommunications facilities. The incumbent has access to critical infrastructure

systems within the City as well as IT event logs. The incumbent handles sensitive business and/or personnel information.

The scope of the program is Citywide and encompasses protection of networks, systems, equipment and data from attack, damage or unauthorized access. The role also provides support to all technology services delivered directly or indirectly to or by the City.

Specific areas of responsibility include:

• Payment Card Industry compliance
• Application security
• Cloud security (Iaas, PaaS and SaaS)
• Information security
• Network security including SCADA and Internet of Things
• Operational security
• End User security and education

 

Specific Duties and Responsibilities

• Monitors firewall logs, intrusion detection logs and other data collected by City systems, which entails a detailed review of all pertinent traffic and transactions on any given system or network within the City.
• Executes risk assessments to determine the security posture of the City’s data and infrastructure from existing City systems and those being considered for purchase or implementation. Makes recommendations based on best practices and in context of the risk to the City and its operational environment.
• Implement, administer, maintain and monitor IT security controls for all digital assets and processes (network, hypervisor, endpoint, server, application, etc), including but not limited to:
  • Firewalls, routing and switching equipment
  • Vulnerability assessment, validation and remediation
  • Intrusion Detection/Prevention Systems
  • Anti-malware protection and management
  • Remote Access Systems and VPN
  • Identity and Access Management Systems and Directories
• • Security incident management and response
  • Data Loss Prevention
  • Endpoint security (laptops, workstations, mobile devices)
  • Network Security (Wired & Wireless)
  • Application Security
  • Operating system hardening
  • Managed file transfer
  • Logging and monitoring systems (SIEM)
  • Network segmentation
  • System forensics
  • Multi-factor authentication
  • Mobile device management
  • User and system administration
• Compliance and Audit Management
• Participates in the development and maintenance of Internal Security Policy and Cyber Security Policies
• Support the Systems Team by acting as a resource checking patching for completeness and timeliness.
• Assist in trouble shooting security related network issues with the network support team
• Develop scripts and system integrations to assist in the detection of system misuse or breaches of security.
• Identifies and investigates computer security incidents and inappropriate use of City computing and telecommunications facilities.
• Reviews records of technology usage and presents findings to management
• Works in conjunction with the Internal Audit division on audits that relate to IT Security technologies within the City
• Implements Cybersecurity technologies for use across city business units to secure and protect services delivered to citizens and staff, supporting cost savings, financial responsibility and legal compliance.
• Provides tactical technical advice and consultation to business unit clients and project teams and provides assistance with the adoption of Cybersecurity technology
• Remains current with developments in Cybersecurity and recommends new approaches and application of new technology which will assist the City and clients to meet their business objectives
• Delivers educational security awareness framework for City staff; business and technical; including multi-channel approaches.
• Other duties/responsibilities as assigned.

 

Qualifications
Education and Experience:
Bachelor’s degree in Business, Analytics, Computer Science, or Engineering; CISSP, CCSP, OSCP or equivalent; minimum of 3 years IT experience including 1 year proven experience in Cybersecurity, information security or related technical field; working knowledge of and experience in information security policy frameworks (PCI DSS, IS0 27001, NIST 800-53, etc.) or an equivalent combination of education, experience and training.

Knowledge, Skills and Abilities:

• Experience in supporting a Cybersecurity, or information security operational program
• Experience in system and network incident response practices and procedures
• Strong technical knowledge, understanding of a variety of technical Cybersecurity technologies, solutions, practices, and familiarity with implementing these in public sector organizations
• Experience in Risk Management frameworks and their application
• Ability to collaborate with project teams, creative teams, and solution development teams within a matrix organization.
• Demonstrated ability to work in a technical team of individuals to find ways to ensure secure delivery of technology services.
• Demonstrated operational skills: planning, coordination, organization, and problem-solving skills; results-focused, team-oriented
• Excellent oral, written and presentation/facilitation skills, with the ability to communicate at technical and non-technical levels while working with projects and teams within the organization.
• Working Knowledge of business and technical risks, current computer security issues and trends
• Ability to prepare reports on risk assessment results, product recommendations and computer forensic analysis
• Strong analytical and problem solving skills
• Strong working knowledge of Windows and Linux operating systems
• Ability to handle confidential and/or sensitive information with a high degree of discretion and impartially
• Demonstrable creativity, problem solving and negotiating skills
• Ability to deal with changing and competing deadlines
• Ability to deal effectively with staff at all levels of the organization
• Ability to exercise independent judgement and action in the technical and operational aspects of the work.

Where operationally appropriate and subject to change, the City of Vancouver has a Flexible Work Program. This program allows staff to work remotely 1 – 4 days a week from locations that are a daily commutable distance from their work at a City worksite.  At this time this position is eligible to be part of the Flexible Work Program.

Business Unit/Department: IT, Digital Strategy & 311 (1070) 

Affiliation: Exempt 

Employment Type: Regular Full Time 

Position Start Date: June, 2024 

Salary Information: Pay Grade RNG-070: $84,489 to $105,602 per annum

Application Close: May 8, 2024

At the City of Vancouver, we are committed to recruiting a diverse workforce that represents the community we so proudly serve. Indigenous peoples, people of colour, 2SLGBTQ+ persons including all genders and persons with disabilities are encouraged to apply.  Accommodations will be provided upon request during the selection process. Learn more about our commitment to diversity and inclusion. 

Before you click Apply now

Once you start your application you can save your work and leave the applications page, however please remember to submit your profile to the specific job requisition before the posting closing date.

In addition to uploading your cover letter and resume, part of the application process may include answering application questions related to the preferred requirements of the role which may take approx. 5-10 minutes. Cover letters should express interest and highlight additional information relevant to the position and resumes should include a summary of skills and experience related to the position.

Apply here

Organization: City of Vancouver

Region: Lower Mainland

Posted: April 24, 2024, 3:09 pm

Expires: May 8, 2024, 4:30 pm

Employment Type: Full Time
Employment Length: Permanent
Education Requirement: Bachelor’s degree
Job Experience: 1 year to less than 2 years
Rate: $84,489.00 to $105,602.00 Year