Job Details

Company Description

San Francisco is a vibrant and dynamic city, on the forefront of economic growth & innovation, urban development, arts & entertainment, as well as social issues & change. This rich tapestry of culture and ideas is sustained by our City's commitment to heighten the quality of life for the diverse population of San Franciscans and residents of the greater Bay Area. Our employees play an important role not only in making our City what it is today, but also in shaping the future of San Francisco.

Application Opening: 5/25/2022
Application Reposted: 11/06/2023*
*Announcement reposted to reflect changes in the minimum qualifications.
Application Deadline: Continuous

How to Apply:
Applications for Principal Information Systems Engineer - Security Specialty are only accepted through an online process. Visit to begin the application process. Select “Apply Now” at the top of the job ad and follow instructions on the screen.

Applicants may be contacted by email about this announcement and, therefore, it is their responsibility to ensure that their registered email address is accurate and kept up-to-date. Also, applicants must ensure that email from CCSF is not blocked on their computer by a spam filter.

Applicants will receive a confirmation email that their online application has been received in response to every announcement for which they file. Applicants should retain this confirmation email for their records.

Job Description

Under general supervision, assists in analyzing, planning, implementing, maintaining, troubleshooting and enhancing large complex systems or networks consisting of a combination that may include mainframes, mini-computers, personal computers, mobile devices, LANS, WANs, servers, data storage and the physical and logical components that integrate these systems together as an enterprise networking backbone.

The 1044 Principal Security Engineer is the highest level in the Engineer series and may be assigned to function as a supervisor, expert or project leader. When assigned as a supervisor, develops, coordinates and executes policies, methods and procedures and supervises personnel. When assigned as an expert, performs work requiring a very high level of technical knowledge of a specific area or ability to integrate at a high level the knowledge of several areas. When assigned as a project leader, manages and provides technical leadership of projects involving large-scale, complex and highly analytical tasks. Positions at this level are distinguished from Senior IS Engineers, in that the latter performs more specific and small-scale, though complex, analytical tasks.

Essential Duties:

1. Architects, designs, implements, maintains and operates information system security controls and countermeasures; supervises and trains operators in the administration of these systems; documents the operation, use and expected outputs of these systems.
2. Analyzes and recommends security controls and procedures in acquisition, development and change management lifecycle of information systems, and provides oversight to ensure compliance.
3. Analyzes and recommends security controls and procedures in business processes related to use of information systems and assets, and provides oversight to ensure compliance.
4. Monitors information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities and trends to IT or executive management.
5. Oversees the response to information system security incidents, including investigation of, countermeasures to and recovery from computer-based attacks, unauthorized access and policy breaches; engages, interacts and coordinates with third-party incident responders, including law enforcement.
6. Oversees the administration of authentication and access controls, including provisioning, changes and deprovisioning of user and system accounts, security/access roles and access permissions to information assets.
7. Analyzes trends, news and changes in threat and compliance environment with respect to organizational risk; advises organization management and develops and executes plans for compliance and mitigation of risk; oversees risk and compliance self-assessments and engages and coordinates third-party risk and compliance assessments.
8. Analyzes and oversees the development of information security governance, including organizational policies, procedures, standards, baselines and guidelines with respect to information security and use and operation of information systems.
9. Oversees the development and administration of information security training and awareness programs.

*This position may include additional duties as assigned.*

Qualifications

These minimum qualifications establish the education, training, experience, special skills and/or license(s) which are required for employment in the classification.

Education:
An associate degree in computer science, computer engineering, information systems, or a closely-related field from an accredited college or university OR its equivalent in terms of total course credits/units.

Experience:
Five (5) years of experience analyzing, installing, configuring, enhancing and/or maintaining the components of an enterprise network.

Substitution:
Additional experience as described above may be substituted for the required degree on a year-for-year basis (up to a maximum of two (2) years).

Verification: Applicants may be required to submit verification of qualifying education and experience at any point during the recruitment and selection process.

Additional Department Specific Requirements

Positions with the San Francisco Airport:
Transportation Security Administration (TSA) Security Clearance: Candidates for employment with the San Francisco Airport Commission are required to provide a complete employment history for the past ten (10) years and an explanation of all gaps in employment during that period.

Additional Information:
Applicants are required to complete a Supplemental Questionnaire as part of the online application process. The purpose of the Supplemental Questionnaire is to allow candidates to self-certify their qualifications for the position.

Note: The City and County of San Francisco encourages women, minorities and persons with disabilities to apply. Applicants will be considered regardless of their sex, race, age, religion, color, national origin, ancestry, physical disability, mental disability, medical condition, HIV/AIDS status, genetic information, marital status, sexual orientation, gender, gender identity, gender expression, military and veteran status, or other protected category under the law.