Metro Nashville
Information Systems Advisor 3 – Security and Compliance Administrator
Metro Nashville, Nashville, Tennessee, United States, 37247
This is a Non-Civil service position located within the Justice Integration Services Department. The
Security and Compliance Administrator will be responsible for developing and enforcing security policies, performing vulnerability assessments, and implementing security measures to protect systems that run the core operations of the Courts in Metro Nashville and Davidson County. This role requires a candidate with a strong understanding of cybersecurity best practices and a proactive mindset.
TO APPLY Email Resume and Cover Letter to: j
is
j
obs@
j
isnashville
.g
ov
Policy Development and Enforcement Develop, implement, and enforce security and compliance policies and procedures Ensure adherence to regulations like HIPAA, CJIS, FERPA, PCI-DSS, or other applicable frameworks. Security Monitoring and Risk Management Conduct routine audits and vulnerability assessments Monitor systems for suspicious activity and investigate incidents Manage role-based access controls and user provisioning/deprovisioning. Compliance Reporting and Documentation Prepare reports for internal/external audits and regulatory bodies Maintain logs and documentation for compliance reviews Develop and deliver employee training on security best practices and data handling Collaborate with appropriate entities to address compliance issues Incident Response Respond to and investigate security incidents Assist with or lead response efforts for security breaches, including documentation and communication Tracking information security budget Bachelor’s degree in Computer Science, Information Security, or related field and three (3) years of experience in IT security or a related role. *Additional experience may be considered in lieu of education.*
LICENSES REQUIRED CompTIA Security+ Certified Information Systems Auditor (CISA) Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM)
NOTE: Only one or more of the listed licenses/certifications are required.
Candidates with accreditations earned in a foreign institute are encouraged to apply.
Note: Per Metro Ordinance No. SO94-1078. All employees of the Metropolitan Government shall be residents of the State of Tennessee or become residents of the state within six (6) months of employment as a prerequisite to employment with the Metropolitan Government. Experience with the implementation of application penetration testing Experience with compliance in regulated environments with an understanding of government compliance frameworks, including but not limited to CJIS, HIPAA, or FISMA Additional relevant certifications (e.g., Microsoft Certified: Security, Compliance, and Identity Fundamentals) Experience with frameworks like NIST CSF, ISO/IEC 27001:2022, COBIT, or CIS Controls Strong knowledge of security best practices for Windows, Linux, and Microsoft 365 Experience with security tools (e.g., SIEM, IDS/IPS, firewalls) Strong knowledge of security protocols, cryptography, authentication, and authorization Experience with developing and testing disaster recovery plans Experience with developing and testing incident response plans Experience with vendor risk management Ability to analyze trends in security incidents and propose improvements Excellent analytical and problem-solving skills Strong documentation skills
We are an equal opportunity employer. All individuals, regardless of personal characteristics, are encouraged to apply. Metro Nashville is committed to selecting the most qualified candidate for each of our roles.
Metro Nashville Government respects the religious beliefs and practices of all employees and will make, on request, an accommodation for such observances when a reasonable accommodation is available that does not create an undue hardship on business operations.
Requests for ADA or other protected accommodations for the recruitment process should be directed to Human Resources at 615-862-6640. #J-18808-Ljbffr
Security and Compliance Administrator will be responsible for developing and enforcing security policies, performing vulnerability assessments, and implementing security measures to protect systems that run the core operations of the Courts in Metro Nashville and Davidson County. This role requires a candidate with a strong understanding of cybersecurity best practices and a proactive mindset.
TO APPLY Email Resume and Cover Letter to: j
is
j
obs@
j
isnashville
.g
ov
Policy Development and Enforcement Develop, implement, and enforce security and compliance policies and procedures Ensure adherence to regulations like HIPAA, CJIS, FERPA, PCI-DSS, or other applicable frameworks. Security Monitoring and Risk Management Conduct routine audits and vulnerability assessments Monitor systems for suspicious activity and investigate incidents Manage role-based access controls and user provisioning/deprovisioning. Compliance Reporting and Documentation Prepare reports for internal/external audits and regulatory bodies Maintain logs and documentation for compliance reviews Develop and deliver employee training on security best practices and data handling Collaborate with appropriate entities to address compliance issues Incident Response Respond to and investigate security incidents Assist with or lead response efforts for security breaches, including documentation and communication Tracking information security budget Bachelor’s degree in Computer Science, Information Security, or related field and three (3) years of experience in IT security or a related role. *Additional experience may be considered in lieu of education.*
LICENSES REQUIRED CompTIA Security+ Certified Information Systems Auditor (CISA) Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM)
NOTE: Only one or more of the listed licenses/certifications are required.
Candidates with accreditations earned in a foreign institute are encouraged to apply.
Note: Per Metro Ordinance No. SO94-1078. All employees of the Metropolitan Government shall be residents of the State of Tennessee or become residents of the state within six (6) months of employment as a prerequisite to employment with the Metropolitan Government. Experience with the implementation of application penetration testing Experience with compliance in regulated environments with an understanding of government compliance frameworks, including but not limited to CJIS, HIPAA, or FISMA Additional relevant certifications (e.g., Microsoft Certified: Security, Compliance, and Identity Fundamentals) Experience with frameworks like NIST CSF, ISO/IEC 27001:2022, COBIT, or CIS Controls Strong knowledge of security best practices for Windows, Linux, and Microsoft 365 Experience with security tools (e.g., SIEM, IDS/IPS, firewalls) Strong knowledge of security protocols, cryptography, authentication, and authorization Experience with developing and testing disaster recovery plans Experience with developing and testing incident response plans Experience with vendor risk management Ability to analyze trends in security incidents and propose improvements Excellent analytical and problem-solving skills Strong documentation skills
We are an equal opportunity employer. All individuals, regardless of personal characteristics, are encouraged to apply. Metro Nashville is committed to selecting the most qualified candidate for each of our roles.
Metro Nashville Government respects the religious beliefs and practices of all employees and will make, on request, an accommodation for such observances when a reasonable accommodation is available that does not create an undue hardship on business operations.
Requests for ADA or other protected accommodations for the recruitment process should be directed to Human Resources at 615-862-6640. #J-18808-Ljbffr