Security Administrator

Company Description

A best-in-class city that attracts best-in-class talent, Philadelphia is an incredible place to build a career. From our thriving arts scene and rich history to our culture of passion and grit, there are countless reasons to love living and working here. With a workforce of over 30,000 people, and more than 1,000 different job categories, the City of Philadelphia offers boundless opportunities to make an impact. 
As an employer, the City of Philadelphia values inclusion, integrity, innovation, empowerment, and hard work above all else. We offer a vibrant work environment, comprehensive health care and benefits, and the experience you need to grow and excel. If you’re interested in working with a passionate team of people who care about the future of Philadelphia, start here.

What We Offer:
•    Impact - The work you do here matters to millions. 
•    Growth - Philadelphia is growing, why not grow with it? 
•    Diversity & Inclusion - Find a career in a place where everyone belongs.
•    Benefits - We care about your well-being.
 

The Office of Innovation & Technology (OIT) is the central IT agency for the City of Philadelphia headed by the Chief Information Officer (CIO). OIT oversees all major information and communications technology initiatives for the City of Philadelphia - increasing the effectiveness of the information technology infrastructure, where the services provided are advanced, optimized, and responsive to the needs of the City of Philadelphia’s businesses, residents, and visitors. OIT responsibilities include: identifying the most effective approach for implementing new information technology directions throughout city government; improving the value of the city’s technology assets and the return on the city’s technology investments; ensuring data security continuity; planning for continuing operations in the event of disruption of information technology or communications services; and supporting accountable, efficient and effective government across every city department, board, commission and agency.

Job Description

The Information Security Group is seeking a GRC Professional with experience in risk management, incident response, and policy/procedure development to join our team. The GRC Professional will be responsible for assisting with the development and implementation of an updated cybersecurity program. The professional will work with the City’s security team to ensure existing City policies are enforced throughout the organization and identify areas where new policies are needed. The GRC Professional will also work with the owners of OT and IT services to identify and communicate risk and develop mitigation strategies for these risks. Additionally, the GRC Professional will be responsible for maintaining and supporting the City's GRC system. The ideal candidate will have a background in cybersecurity that includes technical skills as well as experience with developing policies and procedures.

Essential Functions

• Assist in conducting risk assessments and identifying potential areas of compliance vulnerability.
• Support the development and implementation of policies and procedures to ensure compliance with regulatory requirements.
• Participate in internal audits and prepare reports on findings and recommendations.
• Monitor and analyze compliance data to identify trends and areas for improvement.
• Assist in the development and delivery of compliance training programs.
• Collaborate with various departments to ensure compliance with internal policies and external regulations.
• Maintain up-to-date knowledge of industry regulations and best practices.

Qualifications

• Education:
• Preferred: Bachelor's degree in a related field such as Computer Science, Information Security, Business Administration, or a similar discipline.
• Working towards relevant industry certifications, if not already certified, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), CompTIA Security+ or Certified Information Systems Security Professional (CISSP).
• Experience:
• Internship or coursework related to information security, risk management, or compliance is preferred.
• Basic understanding of regulatory frameworks such as NIST, ISO 27001, HIPAA, or GDPR.
• Preferred: Bachelor's degree in a related field such as Computer Science, Information Security, Business Administration, or a similar discipline.
• Working towards relevant industry certifications, if not already certified, such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), CompTIA Security+ or Certified Information Systems Security Professional (CISSP).
• Internship or coursework related to information security, risk management, or compliance is preferred.
• Basic understanding of regulatory frameworks such as NIST, ISO 27001, HIPAA, or GDPR.

Skills And Competencies:

• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Ability to work independently and as part of a team.
• Detail-oriented with strong organizational skills.
• Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint).
• Familiarity with GRC tools and software is a plus.

Additional Information:

• Employment is contingent upon passing a background check.
• The candidate must be willing to continuously update their knowledge and skills in the field of GRC.

Additional Information

Salary: $65k-$72,870k

Important: To be considered, candidates must provide a cover letter and resume.

• All applications should include the following: 
•     A one-page cover letter clarifying your interest and qualifications for the role. It really helps us understand why you’re interested in this position. We read every single one!
•     Your resume or curriculum vitae. 
•     Optionally, an online professional portfolio or public GitHub account.

We won’t accept or review incomplete applications.
 

Work Setting: in-person (onsite)

Discover the Perks of Being a City of Philadelphia Employee:
•    We offer Comprehensive health coverage for employees and their eligible dependents
•    Our wellness program offers eligibility into the discounted medical plan
•    Employees receive paid vacation, sick leave, and holidays
•    Generous retirement savings options are available
•    Pay off your student loans faster - As a qualifying employer, City of Philadelphia employees are eligible to participate in the Public Service Loan Forgiveness program. Join the ranks of hundreds of employees who have already benefited from this program and achieved student loan forgiveness.
•    Enjoy a Free Commute on SEPTA - Starting September 1, 2023, eligible City employees will no longer have to worry about paying for SEPTA public transportation. Whether you're a full-time, part-time, or provisional employee, you can seize the opportunity to sign up for the SEPTA Key Advantage Program and receive free Key cards for free rides on SEPTA buses, trains, trolleys, and regional rails.
•    Unlock Tuition Discounts and Scholarships - The City of Philadelphia has forged partnerships with over a dozen esteemed colleges and universities in the area, ensuring that our employees have access to a wide range of tuition discounts and scholarships. Experience savings of 10% to 40% on your educational expenses, extending not only to City employees but in some cases, spouse and dependents too!
Join the City of Philadelphia team today and seize these incredible benefits designed to enhance your financial well-being and personal growth!

*The successful candidate must be a city of Philadelphia resident within six months of hire

Effective May 22, 2023, vaccinations are no longer required for new employees that work in non-medical, non-emergency or patient facing positions with the City of Philadelphia. As a result, only employees in positions providing services that are patient-facing medical care (ex: Nurses, doctors, emergency medical personnel), must be fully vaccinated.

The City of Philadelphia is an Equal Opportunity employer and does not permit discrimination based on race, ethnicity, color, sex, sexual orientation, gender identity, religion, national origin, ancestry, age, disability, marital status, source of income, familial status, genetic information or domestic or sexual violence victim status. If you believe you were discriminated against, call the Philadelphia Commission on Human Relations at 215-686-4670 or send an email to faqpchr@phila.gov.