Oversees the engineering aspects of network systems (Local and Wide Area Networks or Call-Processing), including design, development, installation, configuration, testing, security, and maintenance of networks.

• Performs work in either the local area network (LAN), wide area network (WAN) and wireless LAN (WLAN) environment or Cisco Unified Communications (UC), Voice over Internet Protocol (VoIP) and Private Branch Exchange (PBX) environment

• Designs, implements, recommends, manages, and maintains LAN/WAN/WLAN information systems or Cisco UC Gateways, Cisco UC Services, VoIP equipment and related services

• Manages and maintains Nortel PBX equipment

• Installs or supervises the installation of LAN/WAN/WLAN infrastructure, hardware and operating systems or Cisco UC, VOIP and related system hardware and software

• Protects personally identifiable information using data loss prevention software

• Installs security measures and operates software to protect systems and information infrastructure, including data encryption programs

• Analyzes, troubleshoots, and resolves LAN/WAN/WLAN or Cisco UC, VOIP, PBX, and related system hardware and software problems

• Evaluates network hardware or software; may conduct extensive on-site testing to ensure products meet standards before recommending procurement

• Researches security enhancements and make recommendations to management

• Works with security team members to perform tests and uncover network vulnerabilities

• Investigates security breaches and other cybersecurity incidents

• Develops and implements cybersecurity awareness programs

• Assembles and evaluates information, and prepares reports, correspondence, and other documentation dealing with network feasibility, engineering design criteria, performance, and usage

• Works or consults with users and consultants in preparing scopes of work (SOWs) and requests for proposals (RFPs) related to procurement of LAN/WAN/WLAN or Cisco UC, VoIP, PBX and related system equipment, maintenance, and services

• Prepares and maintains documentation for network cabling, backup and disaster methodologies and procedures, and connectivity infrastructure; ensures that documentation is available and up to date

• Coordinates services with outside agencies

• Performs inspections on completed work

• Provides technical advice, direction, assistance, and training to other technical and non-technical staff

• Stays up to date on information technology trends and security standards

• Supervises, trains and motivates assigned staff

• Contributes to ensuring that the Equal Employment Opportunity (EEO) policies and programs of Metro are carried out

For IT Security:

• Maintains and operates information system security controls and countermeasures

• Monitors and assists with the implementation of security controls and procedures in business processes related to use of information systems and assets

• Monitors information systems for security incidents and vulnerabilities, develops monitoring and visibility capabilities, and reports on incidents, vulnerabilities, and trends

• Responds to information system security incidents, including investigation of, countermeasures to, and recovery from, computer-based attacks, unauthorized access, and policy breaches; interacts with third-party incident responders, including law enforcement

• Assesses authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets

• Monitors trends, news, and changes in threat and compliance environment with respect to organizational risk, assists in the execution of plans for compliance and mitigation of risk, and assists in the completion of risk and compliance self-assessments and third-party risk and compliance assessments

• Assists with the administration of information security training and awareness programs

  
  May be required to perform other related job duties

Knowledge of (defined as a learned body of information that is required for and applied in the performance of job tasks)

• Diverse IT (Information Technology) infrastructure/security environments, with various IT systems, technologies, platforms, concepts, and applications

• Applicable local, state, and federal laws, rules, and regulations governing information systems for a public agency

• Privacy law and regulation compliance, such as PCI-DSS (Payment Card Industry Data Security Standard), California S.B. 1386, and HIPAA (Health Insurance Portability and Accountability Act)

• Theories, principles, and practices of management information systems and specified application areas Network operating systems such as Cisco Routing and Switching, Microsoft LYNC Server, Microsoft Windows 2008, Microsoft NT Advanced Server, Microsoft LAN manager, UNIX, and other networks related to the area of assignment

• Network architecture and design elements

• WLAN RF (Radio Frequency) fundamentals and network design elements

• Voice administration and voicemail systems administration

• Networked PBX environments

• Advanced capabilities in computer hardware and peripherals

• Advanced capabilities in computer software

• Microcomputer and network security concepts

• Digital PCI redaction services

• Security and contingency planning concepts, including data integrity, authentication and authorization

• Project management techniques and tools

• Engineering mathematics

• Computer applications and documentation standards

• Various trade journals, publications, and other technical resources for evaluation of changing technology

• Principles of supervision

For IT Security:

• Security frameworks and governance such as NIST (National Institute of Standards and Technology), International Organization for Standardization (ISO) 27000 series, and GDPR (General Data Protection Regulation)

• Penetration testing techniques and technologies

• Application development security concepts, such as OWASP (Open Web Application Security Project) Top 10 Vulnerabilities

• Active Directory administration and Windows authentication

• Security technologies, such as SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection Systems/ Intrusion Prevention Systems), Web filters, two factor authentication, and web application firewalls

• Malware detection, analysis, exploitation, containment, and eradication techniques

• Scripting languages

Skill in (defined as the proficient manual, verbal, or mental utilization of data, people, or things)

• Managing projects from conception to culmination

• Studying computer systems, assessing potential risks, and considering possible solutions

• Analyzing situations, conducting research, defining problems, providing recommendations, and implementing solutions and alternatives based on network infrastructure

• Educating users and explaining the importance of cybersecurity and how to protect data

• Seeking out and updating knowledge on applicable systems, legislation, practices and techniques

• Communicating effectively orally and in writing and making presentations

• Interacting professionally with various levels of Metro employees and outside representatives

Ability to (defined as a present competence to perform an observable behavior or produce an observable result)

• Effectively communicate technical information, issues, and solutions to multiple organizational levels internally and externally in a clear and simple way

• Think strategically and turn ideas into actions

• Work independently and deliver results

• Analyze and evaluate system changes to determine feasibility

• Prepare, interpret, and understand detailed software and hardware specifications and instructions

• Understand, interpret, and apply laws, rules, regulations, policies, procedures, contracts, and budgets

• Prepare documentation, reports, and correspondence

• Oversee assigned staff

• Read, write, speak, and understand English

A combination of education and/or experience that provides the required knowledge, skills, and abilities to perform the essential functions of the position. Additional experience, as outlined below, may be substituted for required education on a year-for-year basis. A typical combination includes:

Education

• Bachelor′s Degree in Information Systems, Computer Science, Engineering, or a related field

Experience

• Three years of relevant experience in the design, development, use, and maintenance of various computer systems, including network systems (LAN/WAN) or telephone systems (PBX/Cisco UC Call Manager); some positions in this class may require specialized experience in area of assignment

For IT Security:

• Three years of relevant experience in a dedicated information security role

Certifications/Licenses/Special Requirements

• A valid California Class C Driver License or the ability to utilize an alternative method of transportation when needed to carry out job-related essential functions

• Certification in network systems related to the area of assignment preferred

• Overtime, on-call, weekend/holiday work required when necessary

• Travel to offsite location when necessary

For IT Security:

• Global Information Assurance Certification (GIAC), Certified Ethical Hacker (CEH), or Certified Information Systems Security Professional (CISSP) from International Information System Security Certification Consortium (ISC)² preferred

The physical demands described are representative of those that must be met by the employee to successfully perform the essential functions of this job. Metro provides reasonable accommodation to enable individuals with disabilities to perform the essential functions.

Working Conditions

• Typical office situation

• Close exposure to computer monitors and video screen

• Local Travel

Physical Effort Required

• Sitting at a desk or table

• Operate a telephone or other telecommunications device and communicate through the medium

• Type and use a keyboard and mouse to perform necessary computer-based functions

• Standing

• Walking (distance 5' to 100')

• Good distance vision and/or depth perception to judge distances

• Communicating through speech in the English language required