Kern Community College District
Under the direction of an assigned supervisor, provide technical leadership, coordination and planning in support of KCCD's IT Security systems and initiatives; and design, develop, test, install, monitor, and maintain information technology (IT) security systems for the district
Serve as the security engineer supporting security initiatives district-wide and advising District office and College IT staff on IT Security matters.
Coordinate with District office and College IT staff in troubleshooting and resolving IT Security related support requests in a timely manner.
Coordinate team efforts to research, select, plan, implement and support effective IT Security controls, monitoring tools and practices.
Assist with performing periodic and scheduled IT security audits, vulnerability scans and/or risk assessments to identify vulnerabilities and potential threats, and recommend mitigation practices.
Conduct assessments and implements strategies for ensuring KCCD meets IT Security compliance requirements, including those associated with FERPA, PCI, and HIPAA.
Monitor security systems and identify, troubleshoot, diagnose, resolve and report IT security problems and incidents; help coordinate and conduct investigations of suspected breaches in IT Security; respond to emergency IT security situations.
Maintain vendor contacts, partnerships, and relationships related to the implementation and support of KCCD's IT security architecture and programs.
Research, recommend and facilitate adoption of IT Security Standards for KCCD IT systems and networks (e.g. servers, routers, databases).
Monitor external IT Security threat environment for emerging threats and advise on appropriate
course of action.
Develop, maintain, and present IT Security awareness training for staff and faculty. E
Develop and maintain documentation for KCCD's IT Security architecture and programs.
Receive, prioritize and respond to help desk service tickets for IT Security-related issues
Develop and maintain help desk knowledge base articles for respective areas of responsibility.
Backup other IT Security, Network and Systems team members as needed.
Keep current with the latest developments in IT Security industry.
Perform related duties as assigned.
Education and Experience
Any combination equivalent to:
Bachelor's degree in computer science, information technology, or a related field and three years of experience in a system administration, networking, or IT security role.
Associate's degree in computer science, information technology or a related field and five years of experience in a system administration, networking, or IT security role.
A high school diploma, GED or equivalent certificate of competency and seven years of experience in a system administration, networking, or IT security role.
Preferred: One or more relevant technical security certifications such as the CCNA: Security, Offensive Security Certified Professional (OSCP), or a SANS certification. At least two years of
experience in an IT security role.
Note: Degrees and credits must be from accredited institutions (Title V Section 53406). Any degree from a country other than the United States, including Canada and Great Britain, must be evaluated by an evaluation service.
Note: The screening of candidates will be conducted by a screening committee. The screening committee reserves the right to limit the number of interviews granted. Meeting the minimum qualifications for a position does not assure the applicant of an interview.
Knowledge and Abilities
A variety of IT and security concepts including several of the following:
Multiple operating systems including recent desktop and server versions of Microsoft Windows and Redhat Linux or other Linux distributions.
IT architecture including data centers, cloud deployment, containers, etc.
Networking including routing and switching concepts, Ethernet, wireless networking, TCP/IP, and NetBIOS.
Programming or scripting ability in at least one language such as Python, PHP or Powershell.
Security Protocols including WPA/WPA2, Kerberos/AD, IPSEC, SSL/TLS, and SSH.
Security assessment and scanning tools such as Nessus, Nmap, oclHashCat, Kali.
Detection and monitoring tools including network-based IDS/IPS software and appliances,
and endpoint detection and response software.
Computer forensics and incident response tools and procedures.
Security standards and frameworks such as NIST, PCI-DSS, OWASP, or CIS Critical
Effective communication, documentation and writing skills.
Effective customer service skills and practices.
Effectively interact and negotiate with vendors.
Assess and remedy system performance problems.
Troubleshoot and resolve complex hardware and software problems.
Plan, organize, implement, and complete complex IT security projects.
Work independently with little direction.
Prepare and follow work plans and timelines for projects and tasks.
Learn new skills and adapt to changes in technology.
Communicate effectively, both orally and in writing