Logo
City and County of San Francisco

Assistant Information Systems Engineer - Security Specialty - City and County of

City and County of San Francisco, San Francisco

Save Job

Company Description

San Francisco is a vibrant and dynamic city, on the forefront of economic growth & innovation, urban development, arts & entertainment, as well as social issues & change. This rich tapestry of culture and ideas is sustained by our City's commitment to heighten the quality of life for the diverse population of San Franciscans and residents of the greater Bay Area. Our employees play an important role not only in making our City what it is today, but also in shaping the future of San Francisco.

Application Opening: 5/25/2022
Application Reposted: 11/06/2023*
*Announcement reposted to reflect changes in the minimum qualifications.
Application Deadline: Continuous

How to Apply:
Applications for Assistant Information Systems Engineer - Security Specialty are only accepted through an online process. Visit to begin the application process. Select Apply Now at the top of the job ad and follow instructions on the screen.

Applicants may be contacted by email about this announcement and, therefore, it is their responsibility to ensure that their registered email address is accurate and kept up-to-date. Also, applicants must ensure that email from CCSF is not blocked on their computer by a spam filter. To prevent blocking, applicants should set up their email to accept CCSF mail from the following addresses (@sfgov.org, @sfdpw.org, @sfport.com, @flysfo.com, @sfwater.org, @sfdph.org, @asianart.org, @sfmta.com, @sfpl.org, @dcyf.org, @first5sf.org).

Applicants will receive a confirmation email that their online application has been received in response to every announcement for which they file. Applicants should retain this confirmation email for their records. Failure to receive this email means that the online application was not submitted or received.

Job Description

Under general supervision, assists in analyzing, planning, implementing, maintaining, troubleshooting and enhancing large complex systems or networks consisting of a combination that may include mainframes, mini-computers, personal computers, mobile devices, LANS, WANs, servers, data storage and the physical and logical components that integrate these systems together as an enterprise networking backbone.

The 1041 Assistant Security Engineer is the entry level in the Engineer series. The class is distinguished from the Journey level by the complexity of the tasks, projects or duties assigned. Positions at this level perform a significant portion of the work assigned to the journey level, but without the independence or full responsibility expected of positions at the journey level. Assignments are generally limited in scope and are set within procedural frameworks established by higher level positions. As experience accrues, the incumbent performs with increasing independence. Work requires incumbents to exercise some judgement in selecting appropriate established guidelines to follow. Significant deviations require prior approval. Interpretation of general administrative or operational policies is sometimes necessary. Serves as an assistant technical architect and systems integrator for large complex systems or networks, with a focus on securing vulnerabilities and reducing risk of system and/or asset compromises.

Essential Duties:

  1. Maintains and operates information system security controls and countermeasures.
  2. Monitors and assists with the implementation of security controls and procedures in business processes related to use of information systems and assets.
  3. Monitors information systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities and trends.
  4. Responds to information system security incidents, including investigation of, countermeasures to and recovery from computer-based attacks, unauthorized access and policy breaches; interacts with third-party incident responders, including law enforcement.
  5. Administers authentication and access controls, including provisioning, changes and deprovisioning of user and system accounts, security/access roles and access permissions to information assets.
  6. Monitors trends, news and changes in threat and compliance environment with respect to organizational risk; assists in the execution of plans for compliance and mitigation of risk; assists in the completion of risk and compliance self-assessments and third-party risk and compliance assessments.
  7. Assists with the administration of information security training and awareness programs.

*This position may include additional duties as assigned.*

Qualifications

These minimum qualifications establish the education, training, experience, special skills and/or license(s) which are required for employment in the classification.

Education :
An associate degree in computer science, computer engineering, information systems, or a closely-related field from an accredited college or university OR its equivalent in terms of total course credits/units (i.e., at least sixty (60) semester or ninety (90) quarter credits/units with a minimum of twenty (20) semester or thirty (30) quarter credits/units in one of the fields above or a closely-related field).

Substitution :
Experience in analyzing, installing, configuring, enhancing and/or maintaining the components of an enterprise network may be substituted for the required degree on a year-for-year basis (up to a maximum of two (2) years). One (1) year is equivalent to thirty (30) semester units/ forty-five (45) quarter units with a minimum of 10 semester / 15 quarter units in one of the fields above or a closely-related field.

Completion of the 1010 Information Systems Trainee Program may be substituted for the required degree.

Verification:
Applicants may be required to submit verification of qualifying education and experience at any point during the recruitment and selection process.

If education verification is required, you must provide a copy of your diploma showing major or transcripts showing coursework completed. Information on how to verify education requirements, including verifying foreign education credits or degree equivalency, can be found at .

If experience verification is required, you must submit a letter from your employer on the employer's business letterhead stating your name, job title(s), dates of service in complete form (mm/dd/yy), a detailed description of duties performed and the verification letter must be signed by the employer or appropriate designee, such as a Human Resources Representative. Performance evaluations showing duties performed and dates of employment may also be submitted as verification documentation. Resumes are NOT verification.

All work experience, education, training and other information substantiating how you meet the minimum qualifications must be included on your application by the filing deadline. Information submitted after the filing deadline will not be considered in determining whether you meet the minimum qualifications. Resumes will not be accepted in lieu of a completed City and County of San Francisco application. Applications completed improperly may be cause for ineligibility, disqualification or may lead to lower scores.

Note: Any applicant whose application is deemed not qualified may reapply after 1 month upon successfully meeting the minimum qualifications for the given specialty area.

Note: Falsifying ones education, training, or work experience or attempted deception on the application may result in disqualification for this and future job opportunities with the City and County of San Francisco.

Additional Department Specific Requirements

Positions with the San Francisco Airport
Transportation Security Administration (TSA) Security Clearance: Candidates for employment with the San Francisco Airport Commission are required to provide a complete employment history for the past ten (10) years and an explanation of all gaps in employment during that period. The past ten (10) years of the candidate's employment will be verified. In addition, candidates will be required to undergo a criminal history check, including FBI fingerprints, in order to determine eligibility for security clearance and may be required to undergo drug/alcohol screening. Per Civil Service Commission Rule Section 110.9.1, every applicant for an examination must possess and maintain the qualifications required by law and by the examination announcement for the examination. Failure to obtain and maintain security clearance may be basis for termination from employment with the Airport Commission.

Customs Clearance: This position with the San Francisco Airport Commission requires that the incumbent be qualified for unescorted access to the San Francisco International Airport U.S. Customs Security Area. An application for a U.S. Custom Access Seal may be submitted to Customs ONLY after employment has commenced. Employment in this position requires that the incumbent submit an application for, successfully acquire and maintain a Customs Access Seal. Per Civil Service Commission Rule 110.9.1, every applicant must possess and maintain the qualifications required by law and by the examination announcement for this examination. Failure to acquire or maintain customs access, a requirement for this position, may be basis for termination from employment with the Airport Commission. Customs Access Seal requirements and procedures are lo