PRIMARY PURPOSE:

Responsible for the overall design and implementation of technology security initiatives and risk management for the district. Ensure the District’s infrastructure, systems, and data are appropriately secure and maintained with proper authorized control within District policies, standards, and objectives. QUALIFICATIONS: Education/Certification: Bachelor’s degree in Computer Science, Information Systems, or related field or equivalent experience in Information Technology security administration preferred. Cisco CCNA - Security/CCNP - Security preferred. Certified Information Systems Security Professional (CISSP) preferred. Special Knowledge/Skills: ·In depth understanding of local area (LAN) networks, wide area networks (WAN), servers, storage, DNS, and network protocols. ·Knowledge of firewalls, intrusion detection systems, anti-virus software, data encryption, current and evolving information security concepts and strategies, and other industry-standard techniques and practices. ·Experience in conducting intrusion and exploit analysis. ·Strong knowledge of securing Windows, Linux, Cisco, Palo Alto, and other devices in a production environment. ·Fundamental understanding, practice, and implementation of enterprise cloud security. ·Ability to manage and safeguard sensitive information from unauthorized access. ·Experience in database administration and robust log file analysis and reporting. Strong organizational skills and ability to multi-task with minimal supervision. Ability to function in a team based environment with the ability to share knowledge and a willingness to learn from other team members. Ability to communicate effectively with various levels of technical ability. Strong commitment to customer service. Technical, analytical and interpersonal skills. EXPERIENCE: Three or more years of information technology security and risk management experience is preferred. MAJOR DUTIES AND RESPONSIBILITIES: Network and Data Security: ·Develop and enhance an information security management and control framework based on established industry standards. ·Design, perform, and/or oversee penetration testing of all systems in order to proactively identify system vulnerabilities; define security requirements; correct security issues. ·Analyze and resolve security breaches and vulnerability issues accurately in a timely manner. Identify the root cause analysis to prevent it from reoccurring. ·Evaluate, recommend, and manage existing and new security products, services, and techniques for enhancing information security controls and practices; responsible for the integration, monitoring and remediation of network security devices, backend infrastructure, and endpoint security. ·Participate, plan for disaster recovery exercises and business continuity plans, and update them as needed. ·Design, implement, and maintain public key infrastructures (PKIs), with use of certificate authorities (CAs) and digital signatures for all systems where applicable. ·Maintain district system logging aggregation for multiple systems. ·Safeguard all CISD sensitive information from unauthorized exposure. ·Provides strategic risk guidance for IT projects and trusted learning environments including the evaluation and recommendation of technical controls and solutions. ·Serve as liaison to software and hardware vendors to maintain appropriate product support and to resolve any issues that occur. ·Maintain network design and configuration documentation for all security hardware and services. ·Provide assistance to all staff to identify and resolve security issues and answers to technology security related questions. ·Provide technical assistance and support to all Technology Support Specialists on any issue that they are unable to resolve. ·Maintain and evaluate district-wide security for all systems. ·Perform district security audits and make recommendations for improvement. Monitor activity reports, take actions of intrusion, and act on findings. ·Identify, curtail and prevent possible infractions of the district's Responsible Use for Technology Resources policy. Administrative Functions: ·Proactively promote information security awareness and education by establishing and overseeing end user training programs tailored to the evolving needs of the District. ·Coordinate investigations of suspected computer system misuse with the appropriate data owners, application owners, and document the results of such investigations; coordinate with Human Resources and District administration as necessary. ·Work with the appropriate District resources to monitor the external threat environment for emerging threats, and advises relevant stakeholders on the appropriate courses of action. ·Identify and recommend the acquisition of new services, software and hardware to meet the security needs of the District. ·Provide technical training sessions as required. ·Manage assigned projects and programs to deliver services in accordance with established objectives. Organization Improvement: ·Provide ongoing research for technologies and strategies that serve to further the security hardening posture for the district. ·Perform network traffic audits and make recommendations for improvement. ·Serve as an internal information security consultant to the organization by ensuring the District applies industry best practices surrounding information security. ·Attend all technology related meetings as designated by the Director of Technical Services. ·Promote departmental culture of customer service through frequent communication, positive relationships and prompt support. Records and Reports: ·Ensure that all security related documentation is current and accurate; report on appropriate information security standards adherence. ·Implement, manage, and enforce information security directives as mandated by federal and state law, the State Board of Education, and the local board policy; perform ongoing risk assessments and audits to ensure that information systems are adequate and meet these requirements. ·Maintain accurate documentation, diagrams and maps of district security infrastructure. ·Maintain accurate, up to date records of preventive maintenance. ·Maintain accurate records of time and materials required to perform repairs and service. ·Participate in assignment, priority and record keeping of technology-related work orders. ·Compile, maintain, and file all physical and computerized reports, records, and other security documents as required. ·Comply with policies established by federal and state law, the State Board of Education, and the local board policy. Classroom Management and Organization ·WORKING_CONDITIONS: Working Conditions: ·The majority of the job responsibilities for this position will occur within an indoor office and/or campus environment. ·The employee will occasionally be required to engage in labor in buildings without air conditioning. ·The employee must be willing to work in alternative locations and environments as needed. Mental Demands/Physical Demands/Environmental Factors: ·Repetitive hand motions and prolonged use of computer; lifting and moving of heavy equipment; stooping, bending, and kneeling. ·Lift, carry, push and/or pull items of up to 50 lbs. on a daily basis. ·Prolonged and irregular hours as needed. ·Maintains professionalism under stress. ·Districtwide and statewide travel may be required. ·Meet deadlines as defined. ·Hear and speak to exchange information in person and/or on the telephone. ·Accurately perceive sound, near and far vision, color vision, peripheral vision, depth perception and the ability to adjust focus. ·Sit or stand for extended periods of time. START DATE: 07/01/2025