IT Security Specialist #19-WAW-15
IT SECURITY SPECIALIST
UNITED STATES DISTRICT COURT
WESTERN DISTRICT OF WASHINGTON
ANNOUNCEMENT NUMBER 19-WAW-15
ANNOUNCEMENT DATE Open until filled; preference given to resumes received by 6/14/2019
The United States District Court for the Western District of Washington is seeking a highly
qualified IT Security Specialist. This position is part of a consolidated IT Department and
reports to the IT Directors. The incumbent performs work related to the implementation and
administration of information technology security policies and practices in the U.S. District
Court for the Western District of Washington, which includes judicial staff, Clerk's Office, U.S.
Probation, and U.S. Pretrial Services.
The IT Security Specialist performs professional work related to the management of
information technology security policy, planning, development, implementation, training, and
support, and provides actionable advice to improve IT security and serves as a team lead to
fulfill security objectives within the court. The incumbent is responsible for developing and
implementing local IT security policies, processes, and technologies that are consistent with
the federal judiciary national Information Security program as well as for collaborating with
other judiciary stakeholders, such as the Administrative Office, other court IT personnel, and
commercial IT resource providers.
This position is located at the federal courthouse in Seattle, Washington, with regular travel
to divisional offices required.
REPRESENTATIVE DUTIES
• Review, evaluate, and make recommendations in regard to the court's IT security program, including those which are pertinent to network infrastructure, locally developed and nationally supported software applications, COTS software, data, voice, and video telecommunications, mobile/remote access, and other technologies
utilized by the court.
• Provide technical advisory services to securely design, implement, maintain, or modify information technology systems and networks that are critical to the
operation and success of the court.
• Perform research to identify potential vulnerabilities in, and threats to, existing and proposed technologies, develop and implement effective mechanisms and procedures for mitigating risks and threats.
• Provide advice on matters of IT security, including security strategy and implementation, to judges, court unit executives, other senior court staff, and Systems Technology Division management.
• Develop and deliver end user and IT staff training and develop/distribute related documentation on IT security and appropriate IT usage guidelines and practices.
• Develop and administer local court security policies and guidance, and assist with the remediation of identified risks and the implementation of security measures.
• Create and employ methodologies, templates, guidelines, checklists, procedures, and other documents in support of the court's IT security framework.
• Act as team lead in the administration of IT security-related automated tools including but not limited to antivirus products, operating system/software patch management mechanisms, web security/filtering platforms, system logging facilities, and locally installed firewall appliances.
• Assist with the development and implementation of secure end user workstation LAN policy settings and access methods, remote access methods and procedures, programming methods and procedures, and security for mobile computing devices.
• Provide security analysis of IT activities to ensure that appropriate security measures are in place and are enforced. Conduct security risk and vulnerability assessments of planned and installed information systems to identify weaknesses, risks, and protection requirements.
• Recommend and implement changes to ensure the reliability of information systems and to prevent and defend against unauthorized access to systems, networks, and data.
• Assist with the development and implementation of a secure migration from on premises file storage to a cloud-based solution.
• Communicate and collaborate with other judiciary stakeholders including the Administrative Office, the Ninth Circuit IT Security Officer, other court IT personnel, and commercial IT resource providers in regard to IT security guidelines, procedures, practices, administration, and incident response.
• Actively communicate with court staff through various communication methods to ensure that security is always a part of court staff's daily work.
• Manage the IT portion of the court's internal controls documentation, international travel policy and Continuity of Operations documentation.
• Educate judges about best practices when traveling.
QUALIFICATIONS
High School diploma required, a bachelor’s degree or higher from an accredited
institution, in an IT or IT-related major preferred. Certified Information Systems Security
Professional (CISSP), Certified Information Security Management (CISM), CompTIA
Security+, or similar certification preferred. At least five years of professional IT security
experience preferred, including:
• Previous and current Federal Court IT experience preferred.
• Thorough knowledge of network management and security, network traffic analysis, computer hardware and software, and data communications.
• Experience in providing risk assessment and risk mitigation strategies where appropriate.
• Experience in designing and providing security awareness training programs for users and IT staff applying industry standards. Position will be responsible for creating materials and presentations; maintaining training records; and providing IT security training.
• Knowledge of anti-virus, anti-malware, application control, web threat protection and endpoint security controls. Knowledge of IPSec and the ability to use it to protect data, voice, and video traffic.
• Knowledge of and experience with the following software platforms:
o Log Management (Splunk);
o Patch Management (Microsoft Configuration Manager);
o Vulnerability Scanning (Nessus).
• Understanding of incident response, including the ability to implement a plan and
procedures.
• Skill in interpersonal communications, including the ability to use tact and diplomacy
in dealing effectively with all levels of management, staff, and judicial officers.
• Skill in project management, organizing information, managing time and multiple
work assignments effectively, including prioritizing and meeting tight deadlines.
• Understanding of applicable programming languages, such as Python, Java, PHP, and
SQL.
• Demonstrate proficiency with Cisco IOS, Juniper’s JUNOS platform, as well as Palo
Alto firewalls as it relates to security best practices
• Possess significant professional IT security experience, a strong understanding of IT security best practices, and demonstrated ability to analyze, design, and implement security policies and procedures.
• Possess significant operational and technical experience relative to the installation, configuration, and support of Windows Server operating systems, Microsoft Active Directory, and Windows 7/10 desktop operating systems; enterprise IT asset management and patch deployment utilities such as Microsoft System Center
Configuration Manager; the Websense/Forcepoint Triton web security platform; enterprise log management/analysis platforms including Splunk and Nessus; and network monitoring solutions such as Solarwinds.
• Provide evidence of strong customer service skills; the ability to work cooperatively with clients, team members, and managers; the ability to handle multiple priorities in a fast-paced environment; and the ability to follow an assigned project through to completion.
SALARY RANGE Court Personnel System Classification Level:
CL28, Step 1 – 61, $65,009 - $105,695
CL29, Step 1 – 61, $77,327 - $125,651
BENEFITS
The District Court offers a generous benefit package, including transit passes, participation in a defined benefit pension plan (the Federal Employees Retirement System), Thrift Savings Plan (similar to a 401K), health and life insurance benefits, flexible spending accounts, and long term care options, annual and sick leave accrual, and ten paid holidays per year.
Judiciary employees are not covered by the Executive Branch civil service classification system or regulations. For additional information on employment with the federal courts, please visit www.uscourts.gov.
INFORMATION FOR APPLICANTS
Qualified applicants should submit the following:
• Cover letter
• Resume
Via e-mail (Word or Acrobat .pdf format) to: seattle_personnel@wawd.uscourts.gov
Or to:
Human Resources (#19-WAW-15)
U. S. District Court
700 Stewart Street, Suite 2218
Seattle, WA 98101
Only qualified applicants will be considered for this position. Applicants must be United
States citizens or eligible to work in the United States. Employees of the United States District
Court are considered “at will” employees. Applicants selected for interviews must travel at
their own expense.
The United States District Court requires employees to follow a code of conduct which is
available upon request. Reference checks with current and former employers will be
conducted on top candidates. A background investigation with law enforcement agencies,
including fingerprint and criminal record checks, will be conducted as a condition of
employment. Any applicant selected for a position will be hired provisionally pending
successful completion of the investigation. Unsatisfactory results may result in termination of
employment.
The Federal Financial Management Reform Act requires direct deposit of federal wages. The Court provides reasonable accommodations to applicants with disabilities. If you need a reasonable accommodation, please notify human resources. The decision on granting reasonable accommodations will be made on a case by case basis.
The Court reserves the right to modify the conditions of this job announcement, to withdraw the announcement, or to fill the position sooner than the closing date, any of which may occur without prior written or other notice. In the event that a position becomes vacant in a similar classification, within a reasonable time from the original announcement, management may elect to select a candidate from the applicants who responded to the original announcement without posting the position. More than one position may be filled from this announcement. in the work place.