50539 - INFORMATION SECURITY ARCHITECT

Posted: 11/08/2021

Follow the link to apply:

 

https://ltmwebprod01.dpsk12.org/ltmprod/xmlhttp/shorturl.do?key=9KK

 

DEPARTMENT OF TECHNOLOGY SERVICES (DOTS)

Traditional 235 work days 

FTE: 1.0

Salary Range: $90,575 - $113,220

  

Essential Functions and Objectives:

 

Applies engineering principles, techniques and scientific methods in a specific area of expertise (building, construction, technology, etc.). Responsible for solving technical problems and discovering new ways to improve the districts systems, infrastructures, processes and operations. 

 

Provide district-wide leadership in Incident Response, Computer Security Threat Hunting, Malware Analysis and Hands-on Vulnerability Assessments. Provide leadership and guidance on updating and maintaining the district incident response playbook. Lead and conduct forensics of computer security incidents to determine root cause analysis of events and develop Indicators of Compromise for mitigation of future risks. Provide leadership and guidance on district security and event monitoring tools. Provide expertise and training to Security Operations staff for detecting computer security threats and risks and responding to computer security incidents.

 

- Determine the most effective utilization of assets and services (capital, equipment, facilities, and systems) to maximize product and output. Improve efficiencies by planning, studying requirements, researching, and producing.

- Reviews business needs, defines problems or opportunities, examines materials (charts, blueprints, drawings, technical specifications, etc.), formulate ideas, and selects solution approaches. Plans and conducts research, devises studies, and keeps abreast of industry changes, new developments and technologies through publications. Defines and considers key scoping variables, such as: costs, resources, time, limitations, economic factors, etc.

- Reviews specifications and evaluates effectiveness of cost, reliability and safety by in-depth analysis of workflow, utilization, causation, quality output, risks, and production. 

- Ensures efficient implementation of solutions, systems, and processes according to functional specification. Produces final designs, builds and maintains new solutions, monitors upgrades and modifications. 

- Provides ongoing opportunities to help improve daily work skills; educates new team members, hosts meetings, mentors, and allows a showcase of strengths. Ensures compliance with the district by implementing and enforcing standard practices and procedures.

- Maintains a close relationship and regularly discusses workload and deadlines with the team. Report status to team members and managers, including cost, scope, quality, time, performance, and output to create a positive team atmosphere and keep everyone informed.

- Demonstrate DPS Shared Core Values and hold colleagues accountable for doing the same. 

- Coach members of the Security Operations team in hunting computer security threats, investigating incidents, and determining actionable root cause analyses. 

- Develop strategies for streamlining, updating, and maintaining the district's computer security incident response playbook.

- Develop procedures for interpreting and prioritizing Cyber Threat Intelligence feeds to create Indicators of Compromise. 

- Develop strategies for building out Security Information and Event Management capabilities for the district. 

- Develop risk assessment score of Enterprise applications and assets to assign a Threat Risk profile for the district. 

- Develop metrics for reporting computer security metrics and incident reporting. 

- Develop vulnerability assessment and penetration testing procedures of enterprise applications and assets. 

- Develop procedures for tracking and handling incidents and breaches for the Security Operations team.

- Develop guidelines and procedures for hardening of enterprise applications and assets.

- Mentor and review work of Security Operations team members. 

- Brings positivity and optimism to interactions with others.

- Design training scenarios to expand the threat hunting skills of the Security Operations team.

- Design security monitoring tools and capabilities for the district and Security Operations team within a limited operational budget. 

- Design Security Awareness Training for many audiences including central admin staff, educators, students, and parent. 

- Participate in community user groups to share cyber threat intelligence and tips and tricks. 

- Other duties as assigned.

 

Knowledge, Experience & Other Qualifications:

 

- Seven (7) or more years of experience in Information Security, Network Administration.

- Certified Information Systems Security Professional (CISSP) desired. 

- Certified Information Security Manager (CISM) desired.

- Knowledge with Google Suite and Microsoft Office products including Word, Excel and Outlook.

- Effective communication skills.

- Strong attention to detail.

- Effectively handle multiple demands and competing deadlines.

- The ability to take responsibility for one’s own performance.

- Work collaboratively with others on a team.

- High degree of integrity in handling confidential information.

- Aptitude for variety and changing expectations and a fast-paced environment. 

- Ability to work in a multi-ethnic and multicultural environment with district and school leaders, faculty, staff and students.

- Effective time management and organizational skills.

- Experience designing, maintaining, and coordinating the computer security incident response playbook, preferred.   

- Experience in the analysis of malware, tactics, techniques, and procedures (TTPs), and Advanced Persistent Threats, preferred.

- Experience performing vulnerability assessments and penetration testing of enterprise environments, preferred.   

- Experience with the risk identification and threat scoring of enterprise assets and applications, preferred.

- Experience designing and leading red team/blue team training scenarios, preferred.

- Experience interpreting computer security intelligence sources and creating Indicators of Compromise, preferred.

- Experience designing and maintaining computer security metrics, preferred.

- Knowledge of networking, Internet application protocols, and next generation firewall technologies, preferred.

- Familiarity with Python, PowerShell and other scripting languages, preferred.

- Experience developing hardening guidelines for system administrators and support staff, preferred.

- Strong oral and written communication skills and comfort presenting to management and other non-technical staff, preferred.  

 

Education Requirements:

 

- Bachelor's Degree in Computer Science, Information Security.

- Master’s Degree is preferred.

 

Other information:

 

The mission of the DPS Department of Technology Services (DoTS) is to be a proactive partner enabling the success of every child. We support the students, families, and staff of Denver Public Schools by providing the infrastructure, tools, data, and support to enable effective educators and efficient operations. Our leading-edge technology work includes delivering custom portals for our students, parents, teachers, and administrators, managing one of the largest networks in the state of Colorado, providing unparalleled levels of customer support, finding new ways to get technology in the hands of our students, and much more. We believe that technology is a positive, enabling force for parent engagement, student engagement, educator effectiveness, operational efficiency, student safety, and student achievement. By joining us, you too will be enabling the success of every child!

 

Additional Information:

 

- Work Year Calendars (including accrued time off): http://thecommons.dpsk12.org/Page/1129

- Benefits (including DPS contributions): http://thecommons.dpsk12.org/Page/1397

- Compensation Structures: http://thecommons.dpsk12.org/Page/244

- Employee must live and work with a permanent home address in Colorado while working for Denver Public Schools.  

 

About Denver Public Schools:

 

Denver Public Schools is committed to meeting the educational needs of every student with great schools in every neighborhood. Our goal is to provide every child in Denver with rigorous, enriching educational opportunities from preschool through high school graduation.  DPS is comprised of nearly 200 schools including traditional, magnet, charter and alternative pathways schools, with an enrollment of more than 90,000 students.  

 

DPS has become the fastest-growing school district in the country in terms of enrollment and the fastest-growing large school district in the state in terms of student academic growth.  Learn more at dpsk12.org.  

  

Denver Public Schools is an Equal Opportunity Employer and does not discriminate on the basis of race, color, religion, national origin, sex, sexual orientation, age, disability, or any other status protected by law or regulation. It is our intention that all qualified applicants be given equal opportunity and that selection decisions be based on job-related factors.