About Harris County and Universal Services:
Harris County is the third largest and most diverse county in the nation, with a population of more than 4.7 million. Harris County Commissioners Court, the County’s governing body, directs a budget of more than $4 billion providing essential services including flood control, infrastructure, healthcare, housing, and justice administration.
Harris County Universal Services (HCUS) is the enterprise IT solutions center for the departments and offices of Harris County, providing Information Technology, Public Safety and Justice Technologies, 311 Constituent Engagement Services, Fleet Services, and Records and Information Governance Services.
HCUS is transforming the way the County does business and seeking a Lead Information Security Analyst - GRC - to join our team. Now is a great time to join Universal Services as we enhance critical services to Harris County residents and internal customers!
Job Summary:
The Information Security Lead will ensure cybersecurity risks and threats are proactively identified and addressed to maintain the protection of Harris County’s information systems, critical assets, and network security infrastructure.
Duties and Responsibilities:
Conduct information security risk assessments and facilitate reviews of cloud, hybrid cloud, and on-premises IT solutions and infrastructure.
Perform third-party vendor security risk assessments to support governance efforts.
Serve as a subject matter expert (SME) on Cloud Security, with an emphasis on Microsoft Azure.
Stay updated on cybersecurity threats and vulnerabilities and provide recommendations for mitigation, particularly within Microsoft Azure cloud security.
Utilize security controls to enhance security posture and research emerging threats relevant to cloud and hybrid cloud operations.
Assess and prioritize information security risks, ensuring compliance with regulatory requirements and information security policies.
Oversee assigned project activities to ensure timely completion.
Develop remediation plans and proactively track progress, presenting cybersecurity risks and gaps to stakeholders.
Provide design input, implementation, and maintenance of enterprise-wide security solutions to address cybersecurity needs.
Work on high-complexity projects requiring in-depth knowledge across multiple technical areas and business segments.
Communicate security vulnerabilities and risks to key stakeholders and consult on remediation efforts.
Develop documentation to support cybersecurity operations, including:
Communications
Job aids
Educational/training materials
Architecture diagrams
Technical reference guides
Procedures
Strategy/technology roadmaps
Request for Proposal/Offers (RFP/RFOs)
Statement of Work (SOW)
Metrics and reports
Project plans
Executive presentations
Coach and mentor junior-level technical staff.
Participate in Cybersecurity Incident Response Team (CIRT) investigations and response activities.
Perform other duties as assigned.
Harris County is an Equal Opportunity Employer
https://hrrm.harriscountytx.gov/Pages/EqualEmploymentOpportunityPlan.aspx
If you need special services or accommodations, please call (713) 274-5445 or email
[email protected].
This position is subject to a criminal history check. Only relevant convictions will be considered and, even when considered, may not automatically disqualify the candidate. Education:
Experience:
Knowledge, Skills, & Abilities:
Designing, implementing, and executing IT Risk Management projects.
Building and maintaining strong interdepartmental relationships.
Effectively communicating security risks and controls to stakeholders and leadership.
Passion for cybersecurity, a self-starter mentality, and ability to work in a team environment.
NOTE: Qualifying education, experience, knowledge and skills must be documented in your job application. You may attach a resume to the application as supporting documentation but ONLY information stated on the application will be used for consideration. "See Resume" will not be accepted for qualifications.