At a senior level, maintains and operates a variety of security measures and software that monitors and controls access to system resources. Provides support to the end-user community and ensures they have up-to-date protection from spam, viruses and firewall threats. Tests and recommends security measures to reduce and mitigate risk. Provides reports and other information related to information security issues as requested by management and human resources. Performs evaluation and analysis of security applications and systems and makes recommendations to management. Recommends best practices to ensure system security across the enterprise. Monitors security alerts on internet and determines whether reported threats could impact LCRA information or telecommunication systems. Reviews system generated logs for anomalies. Provides documentation, deployment, review and maintenance of information security policies, standards, guidelines and procedures. Provides technical consulting to other groups within LCRA on security requirements. Implements and ensures technical security compliance solutions for NERC, PCI, FBI CJIS and other regulatory requirements. Participates in the planning and implementation of security technology projects. Provides business continuity/disaster recovery and risk analysis expertise. Performs investigations in response to IT and telecom security events, physical security investigations and human resources investigations. This position utilizes in-depth knowledge of best practices and experience in own discipline to provide and improve services. Takes a new perspective to solve complex problems. Works independently and receives minimal guidance. Acts as a resource for colleagues with less experience; may direct the work of other staff members.
This general overview only includes essential functions of the job and does not imply that these are the only duties to be performed by the employee occupying this position. Employees will be required to follow any other job-related instruction and to perform any other job-related duties requested by supervisor or management.
Nine or more years of experience in information systems security. A degree(s) in information technology, computer science or relevant field may be substituted per LCRA guidelines for certain years of experience.