Jul 05, 2022

Cybersecurity Analyst

$82,128 - $117,524 yearly
  • City of Commerce City
  • Commerce City, CO, USA
Full-Time Information Technology

Job Description

The hiring range for this position is $82,128/yr ($39.4844/hr) - $117,524/yr ($56.5021/hr). 

The City of Commerce City has adopted a hybrid work environment that includes remote (telework) and in-person duties. This position offers primarily remote work and is required to be on-site when needed, this position will also have flexible schedule options. 

Essential Duties & Responsibilities

  • Establishes, supports, and continuously improves enterprise security by researching, recommending, and adopting cybersecurity best practices 
  • Assists with any external auditing functions including NIST, CJIS, and other system audits
  • Conducts regular vulnerability scanning and recommends remediation steps
  • Coordinates regular penetration testing
  • Acts as SME and provides cybersecurity training to all end-users
  • Installs, configures, and monitors security systems and responds to security system alerts, which include monitoring intrusion detection and prevention systems, firewalls, data encryption and other cyber security systems, technologies and platforms
  • Oversees the current state of the City's cybersecurity preparedness, developing plans to acquire or remediate systems and/or software where appropriate
  • Designs, coordinates implementation of, and monitors security measures for the protection of computer systems, networks, and information
  • Lead for security investigations and the Security Incident Management protocol
  • Reviews annually and coordinates any changes to the Incident Response Plan and the overall IT Security Policies/Standards
  • Works closely with the Network and Systems Administrators to address security requirements for all city systems, whether on-premises or cloud-hosted
  • Works closely with the Service Desk to identify, contain, and remediate end-user related security incidents (viruses, credential compromises, etc.)
  • Researches and evaluates new technologies and cybersecurity management tools
  • Assists in the preparation of bid specifications and requests for proposals
  • Project manager and/or technical lead for the implementation of new security systems monitoring and policy enforcement platforms, which includes integrating systems, networks, events, and user access logs, and integrating into vulnerability, compliance, inspection, and data scanning systems.
  • Assesses information systems security for potential risks and vulnerabilities  
  • Coordinates and conducts table-top exercises and other drills to test incident response 
  • Document all work products and progress in the IT Service Management System
  • Ensure service level commitments are met to internal and external customers
  • All employees must model and demonstrate the City Values at all times during the course of employment; to include: Integrity, Collaboration, Innovation, Respect and Excellence

Performs other duties as assigned




The hiring range for this position is $82,128/yr ($39.4844/hr) - $117,524/yr ($56.5021/hr).

Security Clearance

NO Security Clearance

Job Requirements

Minimum Qualifications

Bachelor’s degree in Cybersecurity, Computer Information Systems, Technology Management or a related field and at least three years of administering information security systems to include any or all of the following: information security architecture, information security procedures and controls, physical security, attack & penetration testing, application testing, information assurance program gap analysis and incident response. Experience and training in Windows Servers, Networking, Firewalls and Vulnerability scanning required. Certifications in IT Cybersecurity preferred. Experience and training in ITIL with ITIL Foundations Certification preferred. CJIS certified or ability to obtain certification within 30 days of employment.  Any equivalent combination of education, training and experience which provides the required knowledge, skills and abilities may be considered.

Knowledge, Skills, and Abilities

  • Strong knowledge of industry security standards and best practices
  • Knowledge of the theory, principles, practices, and methods of management and administration of information systems, including systems analysis, design, construction, monitoring, maintenance, testing, documentation, training, and production support
  • Knowledge of server and network infrastructure enterprise design models, practices, and technologies
  • Knowledge of security technologies including firewalls, proxies, SIEM, antivirus software, and IDPs
  • Knowledge of network and cabling theory and applications. Knowledge of network protocols, architecture, and system design 
  • Strong Knowledge of vulnerability scanning, penetration testing, network security, and the techniques used to expose and correct security flaws
  • Knowledge of current Microsoft Server operating systems and server hardware
  • Knowledge of enterprise server virtualization – VMWare preferred
  • Knowledge of enterprise storage and backup technology – Veeam preferred
  • Knowledge of Disaster Recovery methods
  • Knowledge of Microsoft Active Directory
  • Knowledge of Office365 system and security administration
  • Strong knowledge of vulnerability scanning tools and incident response tools – Rapid7 preferred
  • Knowledge of Cisco switch, routing, firewalls, wireless, and access/identity
  • Knowledge of Security Awareness Training and Phishing Campaign applications
  • Knowledge of Microsoft System Center, Endpoint Manager, and WSUS
  • Knowledge of Malwarebytes and Microsoft Defender for Endpoint
  • Strong skill in documentation and standard/policy development
  • Strong skill in utilizing computer hardware, software tools, applications, and techniques to complete daily assignments
  • Strong problem-solving skills
  • Strong skills in verbal and written communication
  • Strong customer advocacy and customer relationship skills
  • Skill in managing, monitoring, and administrating a server, network, and desktop computer systems
  • Ability to research new technologies and provide recommendations based on security 
  • Ability to explain technical terminology to non-technical end-users
  • Ability to identify and spotlight vulnerabilities on on-premises and remote networks and recommend remediation steps 
  • Ability to think critically and innovatively about security solutions

Equipment Used, Work Environment and Physical Activities

  • Driving: May need to drive a city or personal vehicle in the normal course of business
  • Office Equipment: Daily use of a computer, keyboard, copier, scanner, printer, calculator, phone (desk and cell). Daily use of software programs including Microsoft Office Suite, Outlook, Word, Excel.
  • Physical Activities: Sits for long periods of time; light physical activity that may include walking, sitting, standing, stooping, bending, reaching, lifting and carrying
  • Lifting: Occasionally lifts, carries, and exerts up to 50 pounds 
  • Vision & Hearing: Must have visual acuity to see and read paper and electronic documents. Must be able to answer telephones, communicate conversation and respond to verbal inquires.
  • Exposure to Environmental Conditions: Position generally works in an office setting with overhead lighting and long periods of screen time.  Work may be performed in precarious or tight spaces.
  • Schedule:   Position generally scheduled Monday - Friday; occasional after-hours work as needed to address security concerns/incidents.   Some work from home is authorized.   May require attendance at off-site meetings. 
  • Additional Working Conditions: None 
  • Reasonable accommodation may be made to individuals with disabilities for the essential functions of the job.

NOTE:    This job description is not intended to be an exhaustive list of all responsibilities and qualifications. Employees are accountable for all duties associated with this position.

Apply Now