IT Security Operations Administrator

The IT Security Operations Administrator’s role is to ensure the secure operation of the DPH computer systems, servers, and network connections. This includes collaboration with OIT to check server and firewall logs, scrutinize network traffic, establishing, and updating virus scans, and troubleshooting. This person will also analyze and resolve security breaches and vulnerability issues in a timely and accurate fashion and conduct user activity audits where required.

The IT Security Operations Administrator acts as a senior member of the DPH Health IT team to respond to IT security issues related to IT operations; perform documented information security processes; identify, create, and document needed processes and process improvements related to IT security operations; and research information security topics, tools, techniques, and threats.  They lead operational security projects, serve as an information security resource on general DPH IT projects, develop responses to OIT Security audit and security findings.

Essential Functions

Security Operations Management

• Follow documented information security policies, processes, and procedures.
• Document new information security processes and update existing information security.
• Coordinate deployment, management, and maintenance of all security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and antivirus software with the Office of Innovation and Technology (OIT).
• Administer and maintain end user accounts, permissions, and access rights.
• Manage connection security for local area networks and DPH web sites.
• Manage and ensure the security of databases and data transferred both internally and externally.
• Review results of penetration tests and collaborate with application owners to mitigate or eliminate identified risks and vulnerabilities.
• Identify and implement necessary improvements to prevent incidents from recurring and proposing appropriate solutions and/or next steps.
• Prioritize information security issues, work on multiple tickets concurrently, monitor existing tickets, and manage resolution.
• Research information security topics, tools, techniques, and threats as directed.
• Serve as an information security resource on DPH IT projects.
• Participate in RFP/contract development and review for tools and services specifically related it DPH Security Operations.
• Actively promote a customer-oriented approach to maintain a secure DPH network.
• Know how to find answers. Understand available tools and resources to determine correct answers to security issues.

Relationship Management

• Build and maintain collaborative and consultative relationships with OIT, DPH Divisions/Units as well as vendors related to DPH operational security systems and processes being managed and or supported by DPH Health IT and OIT Operations Security Teams.
• Gain an understanding of OIT and DPH processes and requirements as they relate to the DPH supported systems.
• Conduct regular reviews, priority-setting, and planning sessions with the Health IT Director, the Health IT Infrastructure Manager, the Health IT Enterprise Data Services Manager, and other stakeholders.  Serve as an advocate for those priorities, plans, and other technology needs within DPH Health IT.
• Monitor, evaluate, and regularly report to Health Director on IT security related IT projects, services, and support; the delivery of services according to service level agreements; and levels of client satisfaction.

Competencies, Knowledge, Skills, and Abilities

• Extensive experience with information, network, and application security concepts, methodologies, and processes
• Deep understanding of information risk assessment and mitigation concepts, methodologies, and tools.
• Comprehensive understanding of forensics and compliance concepts, methodologies, processes, and tools.
• Ability to organize work effectively, conceptualize and prioritize objectives and exercise independent judgment based on an understanding of organizational policies and activities.
• Strong written and oral communication and interpersonal skills with a focus on rapport-building, listening and questioning skills.
• Proven analytical and problem-solving abilities, including ability to anticipate, identify, and solve critical problems.
• Ability to build effective relationships and strong commitment to working collegially and collaboratively with constituents at all levels in a diverse and distributed environment.