SENIOR SECURITY ANALYST

JOB ANNOUNCEMENT

SENIOR SECURITY ANALYST

DEPARTMENT OF TECHNOLOGY AND INNOVATION

(SECURITY)

Number of Positions: 2

(Additional vacancies possible pending budget approval)

Starting Salary: $116,640

Applications for this position will be accepted until 11:59 pm CDT on 05/02/2025

This class is distinguished from the entry-level by the amount of discretion exercised over technical

issues, problems, and resolutions; positions must possess a significant level of specialized

technical and functional expertise beyond that expected at the entry level; requires highly

specialized knowledge, abilities and skills, and experience, and often exercise independent judgment

judgement in the performance of their duties. The senior level also has greater latitude in

determining work methods and assignments; greater authority over assignments and decisions

required to complete the work than the lower-level classification, and works on complex security

services.

Identity & Access Management

Combines a risk management mindset, information systems knowledge, and a significant level of specialized technical and functional expertise in the cybersecurity field of Identity and Access Management to drive Identity and Access Management capabilities for the City of Chicago.

Managing team members, both matrixed employees and third parties, to address technical issues and problems and develop resolutions through the application of analytical thinking and the demonstration of ownership and commitment, initiative, and being outcome driven. Technologies include but are not limited to Lightweight Directory Access Protocol (LDAP), Privileged Access Management, certificate management, and identity governance solutions.

Governance Risk & Compliance

Combining critical thinking, complex problem-solving skills, and sound judgment and decision-making abilities in the cybersecurity field of Governance, Risk & Compliance (GRC) to drive GRC capabilities for the City of Chicago.

Managing team members, both matrixed employees and third parties, to assess and address risk using analytical thinking and applying quantitative risk analysis methods. Take ownership of and commitment to the continuous improvement of policy development, regulatory compliance and risk management addressing standards such as the National Institute of Standards (NIST), the Payment Card Industries (PCI) Data Security Standard (DSS), and the Health Insurance Portability and Accountability Act (HIPAA), among others.

NOTE: The list of essential duties is not intended to be inclusive; there may be other duties that are essential to particular positions within the class.

ESSENTIAL DUTIES

* Monitors and utilizes intrusion detection systems and security toolsets for the identification of suspicious and malicious activities and inadequate security practices across the City's network (e.g., analyzes network traffic, vulnerability scans, identification of computer viruses, unauthorized user activity) which may compromise the confidentiality, integrity, and availability of systems Designs and implements security for detection and notification, security auditing, alerting, response, vulnerability detection, and remediation

* Analyzes and monitors security violations, alerts, and reports, and acts as a liaison regarding all security vulnerabilities reported

* Performs security risk assessments, audits, and tests against internal sites and systems

* Analyzes, coordinates, and manages threat intelligence data

* Monitors the City's ongoing compliance with regulations, internal policies, standards, and procedures

* Works closely with management and department leaders to ensure business operations requirements meet IT security and compliance practices and polices

* Documents and manages the City's support of identity and access management capabilities

Additional duties may be required for this position

Location: 2 N LaSalle, Suite 1130

Days: Monday - Friday

Hours: 8:00 am - 4:00 pm

THIS POSITION IS NOT IN CAREER SERVICE

MINIMUM QUALIFICATIONS

Education, Training, and Experience

Graduation from an accredited college with an Associate's degree in Computer Science, Cybersecurity, Information Technology/Systems, or a directly related field, plus three (3) years of experience in information security, network architecture or engineering, application development, information technology auditing/compliance or an equivalent combination of education, training and experience.

Licensure, Certification, or Other Qualifications

Preference may be given to applicants who possess professional IT security, firewall, and network certifications

SELECTION REQUIREMENTS

This position requires applicants to complete an interview. The interviewed candidate(s) possessing the qualifications best suited to fulfill the responsibilities of the position will be selected.

For Information on our employees' benefits, please visit our benefits website at:

https://www.chicago.gov/city/en/depts/fin/benefits-office.html

For Information on our salary and title structure, visit our classifications website at:

https://www.chicago.gov/content/dam/city/depts/dhr/supp_info/JobClassification/2025_Classification_and_Pay_Plan.pdf

APPLICATION EVALUATION: Initial evaluation will be based on information provided on the application and the documents submitted. Department of Human Resources staff will review applications after the final posting date. Staff will follow any and all required Employment/Hiring Plan provisions, federal, state, and local laws, and Collective Bargaining Agreements when applicable. Staff will apply hiring preferences as required by the municipal code. Placement on an eligibility list is not an offer or guarantee of an interview or employment with the City of Chicago.

COMMITMENT TO DIVERSITY: To further our commitment to hiring applicants with diverse experience, the City of Chicago has adopted the following ordinances 2-74-020 and 2-74-075. The ordinances provide a preference to applicants who meet minimum qualifications and who are veterans of the Armed Forces, and/or residents of Socio-Economically Disadvantaged Areas (SEDA), and/or Chicago Public School (CPS) high school graduates, to be referred to departments for consideration. These hiring preferences do not apply to bidders, as Collective Bargaining Agreements define the hiring process for bidders. For positions covered by a collective bargaining agreement, bidders will be considered before external candidates. To learn more about our hiring practices, click here.

ALL REFERENCES TO POLITICAL SPONSORSHIP OR RECOMMENDATION MUST BE OMITTED FROM ALL APPLICATION MATERIALS SUBMITTED FOR CITY EMPLOYMENT.

The City of Chicago is an Equal Employment Opportunity, Military Friendly, and Fair Chance Employer.

City of Chicago

Brandon Johnson, Mayor