Analyst 4: Information Technology - Architecture

Position Title: Analyst 4: Information Technology - ArchitectureDepartment: IT Information Security – District OfficeStarting Rate: Band 10 - $97,600 - $113,450Benefits: SummaryClosed Date: January 30, 2025, 5:00 PM Arizona Time

Position Summary:Enterprise Security Architect will play a key role in effectively designing defensible network architectures, defensible builds & configurations, security platforms and automation, assisting in secure tool and product development, and will help establish security standards and guidelines across the enterprise. This role will lead security project work with technology peers for successful delivery and coach technology staff on appropriate security standards, processes, protocols and needs as they implement new technology into the organization.The work schedule for this position is flexible and may include working evenings and weekends and local travel.Successful candidates must be residents of Arizona by their start date. Duties and Responsibilities:

• Works out and designs complex security solutions
• Leads projects to implement secure enterprise systems and identifies issues that could compromise data integrity or security
• Creating and implementing enterprise security architecture models
• Utilizes open communication and managerial courage to ensure the standards, expectations and goals of the organization are respected and upheld
• Serving as an advisor to engineering and development teams in security best practices
• Leads security-related projects from inception to successful completion and is capable of effectively coaching technology staff on appropriate security protocols and needs as they implement new technology into the environment
• Works on complex issues where analysis of situations or data requires an in-depth evaluation of variable factors
• Having wide-ranging experience, uses professional concepts and company objectives to resolve complex issues in creative and effective ways
• Exercises judgment in selecting methods, techniques and evaluation criteria for obtaining
• Ensures an organization's security strategy is aligned with companies business goals
• Document and address organization's information security, cybersecurity architecture, and systems security engineering requirements throughout the acquisition life cycle
• Evaluate security architectures and designs to determine the adequacy of security design and architecture proposed
• Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately
  
  

Job Requirements:

• Bachelor's degree in IT Systems Administration IT Systems Design/Architecting or a closely related field of study and
• Ten or more years of related experience with IT/Security Administration (multi-platform) and System Architecture and
• Three or more years of supervisory experience and
• At least one advanced certification in architecture required. Examples include but are not limited to the following: Registered Technical Security Architecture (CRTSA), Certified Network Defense Architect (CNDA), Defensible Security Architecture (GDSA), CISSP - ISSAP (Information Systems Security Architecture Professional), ITIL v3 Master certification, TOGAF 9 and
• Security or higher level security certification
  
  

or

• An equivalent combination of certification, education and experience sufficient to successfully perform the essential duties of the job such as those listed above
  
  

The ideal candidate will have the following knowledge, skills and abilities:

• In-depth understanding of security concepts
• Understand how business, engineering, IT, and security processes align, and how to research, test, and implement solutions to complex objectives
• Analyzing network data and systems to select the most appropriate control mechanism for the security required
• Network and security concepts and protocols
• Network Elements: Network nodes (computers, routers, ), communications protocols (TCP/IP, HTTP, DNS, etc.), connection media (wired, wireless), and topologies (bus, star, mesh, etc.)
• Security Elements: Cybersecurity devices and software, secure communications protocols (e.g. IPsec VPN and TLS), and data privacy technologies (classification, encryption, key management, etc.)
• Network Security Frameworks
• Zero Trust
• Secure configuration management processes
• Security reviews, identifying gaps in security architecture, and developing security risk management plans