Deputy Chief Information Security Officer - Architecture, Engineering, and Risk Management & Compliance

About This Position

The City of Phoenix is honored to be recognized on the Forbes list of America's Best-In-State Employers 2024. This prestigious award is presented by Forbes and Statista Inc., the leading statistics portal and industry ranking provider. https://www.phoenix.gov/newsroom/human-resources/3215

With more than 14,000 employees working across 41 departments, the City of Phoenix offers opportunity for career growth and advancement. Whether you're an experienced professional or just starting your career, working in public service offers many rewards! Be a part of building the Phoenix of tomorrow.

The Information Technology Services (ITS) department has an opening for a seasoned Deputy Chief Information Security Officer to lead our Architecture, Engineering, and Risk Management & Compliance teams. This role requires an individual who is well-versed in cyber security operations and skilled in planning, project management, and operations. This role is instrumental in safeguarding our digital infrastructure and guiding our information security strategy. In this role, you will report directly to the Chief Information Security Officer (CISO).

Key Responsibilities

Security Architecture:

• Develop and direct efforts of secure architecture solutions for on-premises, cloud, and application environments.
• Ensure alignment with industry best practices and regulatory requirements.
• Conduct thorough security assessments and audits to identify vulnerabilities and recommend improvements through automation and manual processes as necessary.
  
  
  

Security Engineering

• Oversee the design, implementation, and maintenance of security measures and technologies.
• Lead efforts to integrate security into all stages of the development lifecycle across the Enterprise by working collaboratively with department technical and business leaders.
  
  
  

Risk Management & Compliance

• Direct the Risk Management and Compliance team in the ability to Identify, assess, and mitigate security risks to protect the organization's assets.
• Ensure compliance with relevant regulations, standards, and policies. Working with business leaders and staff to ensure security is fundamental in business development to ensure the public trust.
• Implement and maintain comprehensive risk management frameworks and act as the primary advocate and business partner in education and training for the Enterprise.
  
  
  

Strategic Planning And Leadership

• Assist the CISO in developing the organization's information security strategy.
• Lead and mentor Architecture, Engineering, and Risk Management & Compliance teams.
• Foster a culture of customer service, security awareness, and collaboration.
• Manage financial resources within the ISO budget.
• Establish and execute long- and short-term goals and set priorities for the divisions.
• Review employee knowledge, skill needs, and establish plans for training.
  
  
  

Cybersecurity Law And Policy

• Stay current on cybersecurity laws and policies in accordance with Federal, State, and Municipal requirements.
• Ensure the organization's policies comply with legal and regulatory requirements.
• Advise on legal implications of security practices.
  
  
  

Communication And Influence

• Effectively communicate with and influence customers and City leadership.
• Build relationships across the organization to promote security initiatives.
• Launch and deliver multiple IT projects, processes, or services on time and within budget.
• Coordinate with department management, staff, and supervisory personnel to accomplish division goals and objectives across ITS teams and departments.
• Produce technical and nontechnical written documents with clearly organized thoughts using proper sentence construction, punctuation, and grammar.
  
  
  

After an initial period of orientation and training, t his position may be eligible for a hybrid in-office/telework schedule up to two days per week at the discretion of the Chief Information Officer. The Deputy CISO is expected to come into the office for meetings or to address emerging issues in-person in the Phoenix metro area. Telework is subject to department need and could change in the future.

IDEAL CANDIDATE

• Excellent communication skills to effectively engage and influence customers, City leadership, and other stakeholders.
• Strong relationship-building skills to promote security initiatives across the organization.
• Proven ability to launch and deliver IT projects, processes, or services on time and within budget.
• Expertise in supervision, personnel administration, and budgeting.
• Solid understanding of cybersecurity law and policy.
• Proficiency in architecture and engineering tools and techniques.
• Ability to produce technical and non-technical written documents with clearly organized thoughts using proper sentence construction, punctuation, and grammar.
  
  
  

SALARY

Pay Range: $136,489.60 - $192,234.00 annually.

Hiring Range:$136,489.60 - $165,776.00 annually.

Pay Range Explanation

• Pay range is the entire compensation range for the position classification.
• Hiring range is an estimate of where you can receive an offer. The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience, education, licenses, training, and internal equity.
• The City contributes 9% of salary into 457/401(a) plans with no matching required. $4,200/annual car allowance and $1,440/annual cell phone allowance.
  
  
  

Benefits

A comprehensive Middle Manager benefits package is offered which includes:

• Traditional pension with employer and employee contributions, click here for more details: Pension Information
• 401(a) and 457 plans with employer contributions
• Choice of generous medical HMO, PPO, or HSA/HDHP plans
• Medical enrollment includes a monthly $150 City contribution to a Post-Employment Health Plan
• Wellness incentive of up to $720 annually
• Dental, vision, and life insurance options
• Employer paid long-term disability
• Free Bus/light rail pass
• Tuition reimbursement program up to $6,500 per year
• Paid time off includes 13.5 paid holidays, 12 vacation days, and 15 sick days and personal leave days
• Paid Parental Leave for eligible employees up to 480 hours (12 weeks) of paid leave for the birth, adoption, or foster care placement of a child during a 12-month period
• Federal Student Loan Forgiveness offered through Savi
  
  
  

For more details, visit: Middle Manager Benefits .

Minimum Qualifications

• Five years of responsible experience in securely developing and architecting solutions for on-premises, cloud, and application environments.
• Including two years managing a security engineering team.
• Bachelor's degree in Information Security, Computer Science, public or business administration, or a related field.
• Other combinations of education and experience which meet the minimum requirements may be substituted.
• The City job description can be found here .
• All finalists for positions are subject to a criminal background check applicable to the department or position.
• Candidates who receive a conditional offer of employment must be fingerprint ed and will have their fingerprint s used to check the Criminal History Records of the State of Arizona Department of Public Safety and the Federal Bureau of Investigation. Any records returned will be reviewed to determine the candidate¿s suitability for the job.
• Some positions require the use of personal or City vehicles on City business. Individuals must be physically capable of operating the vehicles safely, possess a valid driver's license and have an acceptable driving record. Use of a personal vehicle for City business will be prohibited if the employee is not authorized to drive a City vehicle or if the employee does not have personal insurance coverage.
• For information regarding pre-screening and driving positions, click here .
  
  
  

Preferred Qualifications

The minimum qualifications listed above, plus:

• Extensive experience in a leadership role managing multiple, large, cross-functional teams and projects in information security.
• Master's degree in computer science, information systems, business administration or related field.
• Certifications in CISSP, CISM, CRISC, CEH, or similar.
• Experience in organizational development.
  
  
  

RECRUITMENT DATES

Recruitment closes February 3, 2025. All materials must be received by 11:59 p.m. on this date.

This is a position-based recruitment and will not result in any ongoing eligibility list. This recruitment and any selection processes resulting from this recruitment may be used to fill other related vacancies within the organization now or in the near future.

How To Apply

Apply online by completing the required information and attaching, as one document, your cover letter and resume. Please include your experience as it relates to the qualifications stated above. Only the highest qualified may be posted to the eligible to hire list. The results of the resume screening process will be sent to your primary email address.

During the online application process, you will provide responses to questions regarding your experience and qualifications (the system allows copying and pasting). Information you provide in these questions should align to the information in your resume. Information not consistent with your resume may not be considered when determining your education and/or experience level.

• Tell us about your experience managing Security Architecture & Engineering.
• Describe your process for identifying and authoring policy and standards.
• Tell us about your experience running a security program.
• What cybersecurity business methodologies have you employed?
  
  
  

WE ARE HERE TO HELP

• Job interviews may be held by video or audio conference.
• If you are in need of computer resources, click here for free options.
• Arizona at Work has frequent classes to help with resume writing, interviewing skills, and general career guidance. Click here for more information.
• Explore other Employment Opportunities with the City of Phoenix .
• Subscribe to receive e-mail notifications about new employment opportunities.
• If you need assistance applying for this job, please contact our HR Connection Center at (602) 495-5700 .
  
  
  

REFERENCE

Deputy Chief Information Off, JC:09960, ID# 56830, 01/24/2025, USM, PO, Benefits: MidMgr

Building the Phoenix of tomorrow.

#DoWorkThatMakesPhoenixWork

City of Phoenix is an equal opportunity employer. AmeriCorps, Peace Corps, and other national service alumni who meet the required qualifications are encouraged to apply.