IT Security Specialist
: Job Details :

Position Title: IT Security SpecialistSafety Sensitive: NoSupervisor's Title: Chief Information OfficerFLSA Status: ExemptDepartment: Information TechnologyDivision: AdministrationThis is an onsite position. This role will not be remote.About UsWe are IndyGo, a Municipal Corporation of Indianapolis – Marion County, and we're proud to be the largest public transportation provider in the state of Indiana. We operate 31 transit routes throughout the county, providing nearly 10 million passenger trips a year to the good citizens of our region. IndyGo is committed to expanding mobility options to improve connectivity with the company's mission, vision, and goals.Who We AreA key measure of any great city is the ease of getting from one place to another. We call it “mobility.” It's as essential as access to electricity and clean water. It moves a city forward to become a better place of opportunity and community. It's a measure of a city's vitality and potential, and it reflects a city's judgment about its civic priorities. It makes a city a better home and a better place to visit.At IndyGo, getting people from one place to another is much more than just moving riders: it's about getting our riders to their hopes and dreams, to their education and careers, to their families and friends, to their health and well-being, and another day of life in Indianapolis and the surrounding areas.We're here because you've got somewhere you need to be, and you need an easy, reliable way to get there. So come on; get on and get going to wherever you want to go on IndyGo.INDYGO MISSIONAs the region's largest transit authority, we are duty-bound to set the bar for transparency, trust, and overall professionalism. Our mission is to connect our community to economic and cultural opportunities through safe, reliable, and accessible mobility experiences.Accountability : We are legally, ethically, and morally committed to utilizing all resources responsibly with integrity and transparency.Diversity : We promote, embrace, and value all individuals.Safety : We ensure safe and secure environments.Excellence : We strive for quality in everything we do.Teamwork : We actively promote effective communication, collaboration, and partnerships.Respect : We value and treat all with dignity.Benefits We Offer

• Full-time positions with guaranteed 40 hours/week.
• Medical, dental, and vision (effective on the 1 st of the month, 30 days after the start date).
• Free on-site wellness clinic for employees and their families.
• Retirement plan (401A and 457B).
• Tuition reimbursement.
• Free IndyGo transportation for employees and their families.
• Federal Loan Forgiveness Program

POSITION PURPOSEThe IT Security Specialist will play a critical role in the protection and resilience of our organizational infrastructure. The Specialist will use IT audit and security assessments, as well as detailed written policies, procedures, and best practices, to be pivotal in safeguarding our computer networks and systems and ensuring data integrity, confidentiality, and availability across our operations. This Specialist will be a subject matter collaborator for change and problem management, providing proactive security monitoring and working to collect, analyze, and report on relevant cybersecurity events, incident response, and vulnerability management. This role will interface with the Information Technology Support groups, Project Management Office, and Connected Vehicle Technician Team and will act as a liaison between Information Technology and the Governance & Audit Department.Essential Functions And ResponsibilitiesTo be successful in this role, an individual must be able to perform the functions listed above in a satisfactory manner. The company will make reasonable accommodations to enable individuals with disabilities to perform these functions.Essential Functions

• Create, review, and maintain IT policies, procedures, and best practices by developing a solid understanding of IT business and system processes and partnering with other members of the Information Technology organization.
• Research, implement, and manage tools, software, and processes that protect our computer systems, networks, and information from malware, computer intrusion, information theft, denial of service, data breaches, etc. Assist with the review, evaluation, and testing of application controls.
• Actively contribute and collaborate with the Change and Problem Management processes. Continually measure the progress of controls, provide reports to IT leadership on progress and problem areas, and assist in providing recommendations for improvement.
• Perform regular audit testing and provide recommendations to improve and remediate concerns. Monitor and analyze security events and alerts from internal systems and external sources to ensure awareness of all events that may compromise critical systems' confidentiality, integrity, and availability. Perform risk assessments and execute tests to ensure security measures and policies are functioning as expected.
• Recommend new hardware, software, and services to meet corporate and departmental goals. Ensure that all security tools and technologies are maintained and updated to provide the highest protection against threats.
• Review IT policy or procedure violations and engage in awareness and planned remediations of violations. Champion and promote security awareness to ensure improved adherence to IT controls. Keep abreast of the latest security threats, vulnerabilities, and trends. Use the latest technology to look for and correct exposures to help prevent potential cyber threats.
• Work closely with peers to ensure security is integrated into all facets of our technology environment, from new system development to daily operations. Consult team members on secure coding practices. Enhance the overall security culture of IndyGo by producing and editing various content for security awareness training materials.
• Respond to security alerts and incidents promptly. Analyze and determine the root cause of security breaches or threats and develop appropriate countermeasures. Ensure that the company knows as much as possible about all security incidents as quickly as possible.
• Effectively communicate complex security risks and solutions to Technical and Non-technical stakeholders. Make recommendations about security advancements to protect the company's systems best.
• Responsible for meeting deadlines and reporting obligations for scheduled compliance activities.

Other Functions

• Leads IT controls, security, and cybersecurity projects under the direction of the Chief Information Officer.
• Perform other duties as assigned.

Supervisory Responsibilities

• None

Education And/Or ExperienceTo perform this job successfully, an individual must have the following education and/or experience.

• Bachelor's degree in computer science/information technology or equivalent from an accredited college or university. An equivalent combination of training and work experience of five (5) years may be considered.
• A minimum of three (3) years of proven work experience in an IT security and/or cybersecurity role.
• Experience with IT security best practices and principles, documentation management, and planning.
• Experience with change and problem management processes.
• Experience utilizing ITIL principles preferred.

Knowledge, Skills, And AbilitiesThe requirements listed below are representative of the knowledge, skills, and/or abilities required to perform each essential duty satisfactorily.

• Ability to build client and peer relationships and be receptive to being mentored.
• Proficiency with computers, including expertise with Microsoft Office, the Internet, information systems, computer security, and application support packages, including the ability to install/maintain/repair computers and computer software/hardware.
• Ability to operate office equipment, including copiers, fax machines, and phones.
• Ability to work independently with minimal supervision.
• Ability to interact with others in person, by phone, via e-mail, and in virtual meetings.
• Must have proven prioritization, responsiveness, and customer service skills.
• General knowledge and ability to use correct grammar, vocabulary, and spelling in English.
• Ability to interact appropriately with colleagues for different purposes in different contexts.
• Must have effective organizational skills and attention to detail.
• Ability to troubleshoot issues and resolve problems quickly.
• Ability to maintain confidentiality and discretion.
• Ability to work in a deadline-oriented office environment.

PHYSICAL DEMANDSThe physical demands described here are representative of those an individual must meet to successfully perform the essential functions of this job.

• Position requires an individual remain stationary for extended periods without being able to leave the work area. May have to move or position themselves to use office equipment. May have to move occasionally between departments and/or facilities.
• Requires some exposure to machinery/equipment, excessive noise, extreme temperatures, fumes/odors, some hazardous materials, and dirt/dust.
• Ability to lift and carry up to 20 lbs.
• Local travel may be required occasionally between various Agency locations.

IndyGo is an Equal Opportunity Employer.#J-18808-Ljbffr