CYBERSECURITY SPECIALIST
Lewis and Clark CountyBrief Description
Lewis & Clark County IT&S Department is hiring a Cybersecurity Specialist. Under general direction of the IT&S Operations & Security Manager, this position assists in protecting County information technology infrastructure, citizen data, and access to public services from cyber threats.
Who We Are
The knowledge, skills, and abilities required for this position are acquired through a combination of education and experience equivalent to an associate's degree in computer science, information systems, computer or network engineering and at least two (2) years' experience in information security, systems auditing or security monitoring. Security+ or equivalent security certification required. Two (2) years of computer technology experience can be substituted for a degree. Other combinations of education and experience will be considered on a case-by-case basis.
Summary
Duties and Responsibilities
Knowledge Skills & Abilities
Examples of Knowledge
May be required to work extended hours to identify, contain, and remediate a cyber security threat.
CompTIA Security + or equivalent security certification is required.
Must be able to successfully pass a Federal and State criminal history background check.
Physical Demands
Duties are generally performed in an office environment where hazards and discomforts are controlled and modifiable. This position requires the ability to bend at the waist, kneel, reach over the head, talk, hear, and see. Must be able to move or lift documents and materials weighing up to 30 pounds. Position requires knowledge and use of typical office equipment including copy machines, telephone and personal computer. Position requires frequent contact with fellow employees, governmental agencies, vendors, contractors and citizens.
Application Instructions
Applications for this position are accepted online only through our career portal.
The following items are required along with the on-line application:
Benefits
Lewis and Clark County offers a competitive benefits package!
Includes:
Other Benefits
Lewis & Clark County IT&S Department is hiring a Cybersecurity Specialist. Under general direction of the IT&S Operations & Security Manager, this position assists in protecting County information technology infrastructure, citizen data, and access to public services from cyber threats.
Who We Are
- The IT&S Department provides technology support for the City of Helena and Lewis and Clark County.
- Staff of 15 full time employees
- Seven functional areas
- Administration (4 FTE)
- Central Systems (1 FTE)
- Geographic Information Services (2 FTE)
- Network Services (3 FTE)
- Customer Support Services (5 FTE)
The knowledge, skills, and abilities required for this position are acquired through a combination of education and experience equivalent to an associate's degree in computer science, information systems, computer or network engineering and at least two (2) years' experience in information security, systems auditing or security monitoring. Security+ or equivalent security certification required. Two (2) years of computer technology experience can be substituted for a degree. Other combinations of education and experience will be considered on a case-by-case basis.
Summary
Duties and Responsibilities
- Assists with protecting the Organization's IT infrastructure, public services, and data from cyber threats;
- Performs continuous technical security auditing and monitoring across desktop, server, network, and cloud environments to identify misconfigurations, unauthorized access, and policy violations;
- Monitors network infrastructure logs from firewalls, switches, routers, wireless controllers, and VPN systems to identify anomalous traffic patterns, lateral movement, or unauthorized connections;
- Reviews and enforces cloud and hybrid identity logs, authentication events, and administrative actions to ensure proper access controls and policy enforcement;
- Analyzes and correlates desktop, server, network, and cloud log data to identify security threats and anomalies;
- Identifies misconfigurations in operating systems, applications, and network devices that increase security risk;
- Develops, tests and updates vulnerability management by verifying patch levels, configuration changes, and compensating controls across endpoints, servers, and network devices;
- Mitigates device compliance policies, patch management, and endpoint detection and response solutions to safeguard assets;
- Collaborates with desktop, server, and network administrators to remediate identified risks and validate corrective actions;
- Implements and validates password policies, MFA enforcement, and privileged access controls;
- Performs in-depth Active Directory auditing, including user and computer accounts, group memberships, Group Policy Objects (GPOs), service accounts, and delegated permissions;
- Assists in ensuring user education and compliance with IT&S and Organizational technology policies and procedures;
- Conducts and documents security awareness training programs for the Organization;
- Conducts cyber security investigations following established incident response procedures;
- Documents, mitigates and resolves incident response efforts by providing technical analysis of activities during security events;
- Reviews backup, recovery, and system event logs to verify readiness for ransomware or data-loss scenarios;
- Assists in reviewing and updating of IT&S security policies, protocols and procedures;
- Performs other duties as assigned.
Knowledge Skills & Abilities
Examples of Knowledge
- Lewis and Clark County and IT&S policies and procedures;
- Desktop, server, and network architectures commonly used in enterprise and public-sector IT environments;
- Windows and/or Linux operating systems, including authentication, authorization, logging, security concepts and auditing;
- Active Directory architecture, including domain controllers, replication, Group Policy, security and identity lifecycle management;
- Network principles and security for TCP/IP, DNS, DHCP, VPNs, firewalls, VLANs, and intrusion detection/prevention;
- Security logging sources from endpoints, servers, network devices, and cloud platforms;
- Cybersecurity frameworks and standards, including NIST publications and other recognized models;
- Sources of security event data, including log management, monitoring tools, and related technologies;
- Security auditing and monitoring practices for Active Directory, cloud systems, and technology infrastructure.
- Use common computer hardware such as desktops, laptops, servers, thumb drives, switches, Firewalls, USP's, desk phone, cell phone, mouse, and keyboards;
- Perform technical audits of workstations, servers, Active Directory, and network devices for security compliance; Use relevant information and individual judgment to determine whether events or processes comply with laws, regulations, or standards;
- Proficient in analyzing data and information;
- Communicate effectively verbally and in writing;
- Work under pressure, prioritize tasks, and meet investigative and reporting deadlines;
- Establish and maintain effective relationships with fellow employees, supervisors, vendors and citizens;
- Follow internal ticketing procedures for reporting and tracking security incidents;
- Implement password complexity and MFA policies in accordance with IT&S standards;
- Use NIST Cybersecurity Framework categories to assess current security environment.
May be required to work extended hours to identify, contain, and remediate a cyber security threat.
CompTIA Security + or equivalent security certification is required.
Must be able to successfully pass a Federal and State criminal history background check.
Physical Demands
Duties are generally performed in an office environment where hazards and discomforts are controlled and modifiable. This position requires the ability to bend at the waist, kneel, reach over the head, talk, hear, and see. Must be able to move or lift documents and materials weighing up to 30 pounds. Position requires knowledge and use of typical office equipment including copy machines, telephone and personal computer. Position requires frequent contact with fellow employees, governmental agencies, vendors, contractors and citizens.
Application Instructions
Applications for this position are accepted online only through our career portal.
The following items are required along with the on-line application:
- Resume - Attach resume to online application in designated section .
- Cover Letter - Attach cover letter to online application in designated section.
- CompTIA Security + or equivalent security certification number - List number on resume or in certification section of the online application.
Benefits
Lewis and Clark County offers a competitive benefits package!
Includes:
- Health Coverage – 2 Types of Health Plans which includes medical, dental, vision, and pharmacy coverage.
- Traditional Plan - cost for employee only is $50 per month and with the Wellness incentive, the cost may be reduced to $0 per month for full-time employees.
- High Deductible Health Plan – cost for employee is $0 per month and a additional $1200 per year to a Health Savings Account for full time employees.
- PureView Health Center – preferred clinic provider and no cost to the employee and his/her dependents
- Retirement plans
- Paid Vacation and Sick Leave and Holidays
- Employees are provided with $25,000.00 of Life Insurance and $25, 000.00 of AD&D insurance as a new employee.
- Wellness Screening Incentive
- Gym Membership Reimbursement
- Voluntary Supplemental Life Insurance
- Public Service Loan Forgiveness (PSLF) – Employment with the County may qualify you to receive student loan forgiveness under the PSLF. Look here to learn more and see if you may qualify!
- https://fed-pro.org/public-service/
Other Benefits
- Working in a fast-paced environment
- Professional development and training opportunities
- Cost of living increases
- Market adjustments
- Step based wage increases
- Longevity pay
- Paid parental leave
Job Type
- Job Type
- Full Time
- Location
- Helena, MT
Share this job: