Alameda County Water District
Chief Information Security Officer
Alameda County Water District, Fremont, California, us, 94537
Salary :
$179,420.80 - $218,088.00 Annually Location :
Fremont, CA Job Type:
Regular, Full-Time Job Number:
25-07 Department:
Engineering & Technology Services Opening Date:
07/11/2025
The district participates in both an Alternative Work Schedule and Hybrid Work from Home Program.
Under general direction from the Director of Engineering and Technology, and within the framework of policies and procedures, plans, organizes, coordinates and implements District-wide cybersecurity compliance, activities and operations, to ensure the confidentiality, integrity and availability of information technology systems; serves as a subject matter expert and an internal consultant on cybersecurity and information privacy matters to improve cybersecurity risk management, and performs a variety of professional and technical level tasks relative to assigned area of responsibility.
The incumbent in this position directs the Districtwide information technology security program while performing the full range of routine to complex and specialized technical activities in cybersecurity and information privacy. Assignments are given in general terms and subject to periodic review while in progress and upon completion by the Director of Engineering and Technology. There is significant latitude for discretion and independent judgment in the selection of work methods to achieve established goals.
The Ideal Candidate will possess: Comprehensive knowledge of key information technology controls and risk frameworks applicable to both IT and OT environments. Broad working knowledge of compliance and regulatory requirements related to information security, integrity, and privacy. Extensive experience providing technical leadership in the areas of information privacy and security including experience leading, managing, and evaluating technical teams. Experience in development and adoption of information security policies, procedures, and standards. Broad knowledge of information security technologies, current and emerging information security trends, threats, tactics, and cyber defense mechanisms. Thorough understanding of security architectures and TCP/IP protocols including installation and configuration requirements for LANs, WANs, VPNs, routers, firewalls, and related network and security devices. Knowledge and experience with Windows, Active Directory, Group Policy, DNS, encryption, patch management, anti-virus, system configuration management Extensive experience managing information security risk programs including developing and executing information security vulnerability assessments, audits, mitigations, and remediations. Evidenced experience ensuring the security of on-premises systems and cloud services. Expertise partnering, communicating, and collaborating with a diverse audience of stakeholders (i.e., end users, peers, managers, executives, and vendors). Excellent analytical and problem-solving skills. Ability to develop and maintain effective and cooperative working relationships. Ability to change priorities, work under pressure and meet critical deadlines. Ability to exercise a high degree of initiative, independence of action, tact and good judgment. Ability to make and provide sound recommendations and decisions. Reputable industry-related certifications such as:
Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) GIAC Security Leadership (GSLC) Certified Ethical Hacker (CEH)
Examples of Duties TYPICAL EXAMPLES OF DUTIES MAY INCLUDE, BUT ARE NOT LIMITED TO THE FOLLOWING:
Coordinates the continuous development, implementation and update of information security and privacy policies, standards, guidelines, baselines, processes, and procedures in compliance with best practices and any local, state and federal regulations. Develop and implement a comprehensive cybersecurity program by researching, identifying, and analyzing existing and potential security threats; develop and manage the frameworks, processes, and tools necessary to properly manage risk and to make risk-based decisions related to Information Technology (IT) and Operational Technology (OT), including but not limited to Industrial Control System (ICS) and Supervisory Control and Data Acquisition (SCADA) activities. Implement processes to continuously monitor District software and systems for vulnerabilities; monitor logs and alerts for security events and assist IT and SCADA systems staff in patching and updating District systems on a continuous basis; monitor and assess success of patching and updating of District systems and infrastructure. Lead and participate in complex projects designed to provide for the protection of District information assets; recommend solutions and appropriate technology to meet District needs; design project and resource plans and schedules; develop proposals using cost/benefit analysis; evaluate proposed system hardware and software to ensure compatibility with existing systems; coordinate with vendors and contractors. Provides functional supervision to District staff involved in cybersecurity projects and activities. Proactively identify and mitigate cybersecurity risks and respond to observations identified by third party auditors/security service providers. Review cybersecurity vulnerabilities and conduct penetration testing on a periodic basis. Develop periodic reports and dashboards presenting the level of controls, compliance and current IT and SCADA risk posture. Lead, implement and maintain District-wide training related to cybersecurity. Represent information security and privacy function on committees and outside organizations as necessary; coordinate emergency preparedness activities and tabletop exercises related to cybersecurity. Assist IT and SCADA Administrators in creating, implementing, and testing emergency and disaster recovery measures that ensure continual operational readiness of District systems. Work closely and collaborate with other departments' staff responsible for OT and SCADA systems. Serve as the District's central point of contact for information security related incidents or violations; investigate and document cybersecurity incidents, lead and assist in remediation of cybersecurity incidents and vulnerabilities, make recommendation for improvements. Coordinate information security incident response and reporting for events or exploited vulnerabilities including unauthorized system or network access, denial of service, inappropriate data access, data corruption, and/or collection of private or confidential information. Work as a liaison with local, state and federal authorities requiring information and reports on security incidents to FBI or other law enforcement agencies. Participate in budget preparation; prepare cost estimates for budget recommendations; submit justifications for program materials, equipment, supplies, and services Stay abreast of new trends and developments in the areas of cybersecurity, networking, server and storage systems, disaster recovery; attend and participate in group meetings. Perform other related work as required
Typical Qualifications Typical Qualifications: Possession of a Bachelor's degree from an accredited college or university with a major in information systems, computer science, or closely related field and five (5) years progressively responsible professional level work experience in Information Security.
Additional Requirements: Must possess a valid California driver's license upon hire and have a satisfactory driving record.
Possession of information technology security certifications such as Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) are highly desirable.
Selection Procedure Selection Procedure: Application materials including a supplemental questionnaire must be submitted online at: The first review of applications will be
Friday, August 8, 2025.
As soon as a candidate has been selected, the position will close. Candidates who present the best job-related qualifications will be invited to participate in a qualification appraisal as well as an interview by an appraisal panel. Candidates passing the qualifications appraisal process will be ranked on an employment list for further consideration. Top-ranking candidates will be invited to a personal interview with the hiring Supervisor. Health Insurance : Coverage is provided through the CalPERS Health program. Under the Cafeteria Plan, employees will receive a flex dollar allowance to purchase healthcare coverage, and qualifying voluntary products.
Dental and Vision : Coverage for the employee and eligible dependents is fully paid by the District.
Retirement : California Public Employees Retirement System (CalPERS) benefit depends on whether the employee is a "new" member or "classic" member under state law.
Classic member : Employee who is a member of PERS or reciprocal agency within six months of hire at ACWD. 2.5% @ 55 with 8% employee contribution. $5000 Retired Death Benefit, 3% Annual Cost-of-Living Allowance Increase, Post-Retirement Survivor Allowance to Continue After Remarriage, Pre-Retirement Death Benefits to Continue After Remarriage of Survivor, Additional Opportunity to Elect 1959 Survivor Benefits, 1959 Survivor Benefit Level 4, Unused Sick Leave Credit, Public Service Credit for Peace Corps, AmeriCorps VISTA, or AmeriCorps Service, Military Service Credit as Public Service, Final Compensation 1 Year, Post-Retirement Survivor Allowance, Prior Service. The District picks up 2.5% of the CalPERS retirement contribution.
New member : Employees hired after 12/31/12 who were not members of PERS or a reciprocal agency within the last six months of hire at ACWD. 2% @ 62 with 7% employee contribution. Effective 7/1/23 PEPRA employee contributions will increase to 7.75%. $5000 Retired Death Benefit, 1959 Survivor Benefit Level 4, 3% Annual Cost-of-Living Allowance Increase, Additional Opportunity to Elect 1959 Survivor Benefits, Final Compensation 3 Years, Military Service Credit as Public Service, Post-Retirement Survivor Allowance, Post-Retirement Survivor Allowance to Continue After Remarriage, Pre-Retirement Death Benefits to Continue After Remarriage of Survivor, Pre-Retirement Option 2W Death Benefit, Prior Service, Public Service Credit for Peace Corps, AmeriCorps VISTA, or AmeriCorps Service, Unused Sick Leave Credit.
Social Security/Medicare : The District does not participate in Social Security, but provides a 1.45% matching Medicare contribution.
Retiree Health Benefits : Coverage is provided through the CalPERS Health program. The District's contribution for retiree coverage shall be the PEMHCA minimum contribution as determined by CalPERS on an annual basis. Please refer to the Memorandum of Understanding for various eligibility and plan details.
Employees hired on or after January 1, 2019 will receive a defined-contribution benefit into a retiree health savings account.
Life Insurance : The District provides you with Basic Life Insurance and Basic AD&D Insurance of one and one half times your annual salary to a maximum of $250,000. There is no cost to employee for this insurance.
Long Term Disability : The District provides you with Long Term Disability Income Insurance of 66 2/3% of monthly earnings with a maximum monthly benefit of $15,000.
Short Term Disability : Coverage is provided through the District for employees working more than 20 hours per week at 66 2/3% of base weekly earnings for the first 12 weeks up to a weekly benefit maximum of $2,350.
Deferred Compensation : Optional deferred income plans allowing tax sheltering of current income and payment later as supplemental retirement income. The District pays a match of up to $2,250 per year to the employee's 401(a).
Vacation : 10 days first year, increasing to 25 days after 20 years.
Holidays : 11 days per year.
Sick Leave : 12 days per year
Management Leave : 80 hours to 96 hours of Management Leave per calendar year (depending on classification).
Employee Assistance Program : Up to 6 sessions for employees and family members for professional consultation and short-term counseling for personal problems.
Tuition Reimbursement : The District will reimburse 100% of the total tuition and textbook costs incurred in taking courses outside of normal working hours related to District employment up to an annual maximum of $5,250. 01
IMPORTANT NOTE (applies to all questions): Following an assessment of minimum qualifications, the determination as to whether candidates should be invited to the hiring interview will be based only on evaluation of responses to this Supplemental Questionnaire. The District will evaluate responses to the Supplemental Questionnaire individually and separately from the employment application and any submitted resume or other materials (such materials will not be available to those evaluating responses to the Supplemental Questionnaire). Therefore, your responses to the Supplemental Questionnaire should be comprehensive, should demonstrate any proficiency in those areas highlighted in the announcement, and should NOT reference or rely on any information provided in the application or other submitted materials.Be sure to additionally include the name(s) of your employer(s), your dates of employment with that employer, and your job title(s) in your responses to each question as applicable.Do you agree to answer each supplemental question completely, and in your own words (without the use of generative Artificial Intelligence tools, including but not limited to Chat GPT, Microsoft AI, or any other AI tool), and that your responses can be verified from information included within your application? 02
Describe your experience in managing information security and privacy as your primary job duty. Describe how you navigated organizational, cultural and logistical challenges. 03
Describe your expertise in implementing information security architectures, security procedures and controls, and security program gap analysis including understanding the implementation challenges and advantages across all levels of hardware platforms and software applications in IT and OT environments. 04
Describe your experience working with and securing a wide variety of operating system platforms such as Windows Server, Windows 10, Linux etc. 05
Describe your experience and working knowledge of Firewalls, IDS, anti-malware, alerting and monitoring and other related security technologies? Please include specifics of the technologies and platforms you worked with. 06
Please describe your experience with Windows, Active Directory, Group Policy, DNS, encryption, patch management, anti-virus, system configuration management? 07
Please describe your approach to and experience in responding to disasters/emergencies created by data or information security breach. Required Question
$179,420.80 - $218,088.00 Annually Location :
Fremont, CA Job Type:
Regular, Full-Time Job Number:
25-07 Department:
Engineering & Technology Services Opening Date:
07/11/2025
The district participates in both an Alternative Work Schedule and Hybrid Work from Home Program.
Under general direction from the Director of Engineering and Technology, and within the framework of policies and procedures, plans, organizes, coordinates and implements District-wide cybersecurity compliance, activities and operations, to ensure the confidentiality, integrity and availability of information technology systems; serves as a subject matter expert and an internal consultant on cybersecurity and information privacy matters to improve cybersecurity risk management, and performs a variety of professional and technical level tasks relative to assigned area of responsibility.
The incumbent in this position directs the Districtwide information technology security program while performing the full range of routine to complex and specialized technical activities in cybersecurity and information privacy. Assignments are given in general terms and subject to periodic review while in progress and upon completion by the Director of Engineering and Technology. There is significant latitude for discretion and independent judgment in the selection of work methods to achieve established goals.
The Ideal Candidate will possess: Comprehensive knowledge of key information technology controls and risk frameworks applicable to both IT and OT environments. Broad working knowledge of compliance and regulatory requirements related to information security, integrity, and privacy. Extensive experience providing technical leadership in the areas of information privacy and security including experience leading, managing, and evaluating technical teams. Experience in development and adoption of information security policies, procedures, and standards. Broad knowledge of information security technologies, current and emerging information security trends, threats, tactics, and cyber defense mechanisms. Thorough understanding of security architectures and TCP/IP protocols including installation and configuration requirements for LANs, WANs, VPNs, routers, firewalls, and related network and security devices. Knowledge and experience with Windows, Active Directory, Group Policy, DNS, encryption, patch management, anti-virus, system configuration management Extensive experience managing information security risk programs including developing and executing information security vulnerability assessments, audits, mitigations, and remediations. Evidenced experience ensuring the security of on-premises systems and cloud services. Expertise partnering, communicating, and collaborating with a diverse audience of stakeholders (i.e., end users, peers, managers, executives, and vendors). Excellent analytical and problem-solving skills. Ability to develop and maintain effective and cooperative working relationships. Ability to change priorities, work under pressure and meet critical deadlines. Ability to exercise a high degree of initiative, independence of action, tact and good judgment. Ability to make and provide sound recommendations and decisions. Reputable industry-related certifications such as:
Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) GIAC Security Leadership (GSLC) Certified Ethical Hacker (CEH)
Examples of Duties TYPICAL EXAMPLES OF DUTIES MAY INCLUDE, BUT ARE NOT LIMITED TO THE FOLLOWING:
Coordinates the continuous development, implementation and update of information security and privacy policies, standards, guidelines, baselines, processes, and procedures in compliance with best practices and any local, state and federal regulations. Develop and implement a comprehensive cybersecurity program by researching, identifying, and analyzing existing and potential security threats; develop and manage the frameworks, processes, and tools necessary to properly manage risk and to make risk-based decisions related to Information Technology (IT) and Operational Technology (OT), including but not limited to Industrial Control System (ICS) and Supervisory Control and Data Acquisition (SCADA) activities. Implement processes to continuously monitor District software and systems for vulnerabilities; monitor logs and alerts for security events and assist IT and SCADA systems staff in patching and updating District systems on a continuous basis; monitor and assess success of patching and updating of District systems and infrastructure. Lead and participate in complex projects designed to provide for the protection of District information assets; recommend solutions and appropriate technology to meet District needs; design project and resource plans and schedules; develop proposals using cost/benefit analysis; evaluate proposed system hardware and software to ensure compatibility with existing systems; coordinate with vendors and contractors. Provides functional supervision to District staff involved in cybersecurity projects and activities. Proactively identify and mitigate cybersecurity risks and respond to observations identified by third party auditors/security service providers. Review cybersecurity vulnerabilities and conduct penetration testing on a periodic basis. Develop periodic reports and dashboards presenting the level of controls, compliance and current IT and SCADA risk posture. Lead, implement and maintain District-wide training related to cybersecurity. Represent information security and privacy function on committees and outside organizations as necessary; coordinate emergency preparedness activities and tabletop exercises related to cybersecurity. Assist IT and SCADA Administrators in creating, implementing, and testing emergency and disaster recovery measures that ensure continual operational readiness of District systems. Work closely and collaborate with other departments' staff responsible for OT and SCADA systems. Serve as the District's central point of contact for information security related incidents or violations; investigate and document cybersecurity incidents, lead and assist in remediation of cybersecurity incidents and vulnerabilities, make recommendation for improvements. Coordinate information security incident response and reporting for events or exploited vulnerabilities including unauthorized system or network access, denial of service, inappropriate data access, data corruption, and/or collection of private or confidential information. Work as a liaison with local, state and federal authorities requiring information and reports on security incidents to FBI or other law enforcement agencies. Participate in budget preparation; prepare cost estimates for budget recommendations; submit justifications for program materials, equipment, supplies, and services Stay abreast of new trends and developments in the areas of cybersecurity, networking, server and storage systems, disaster recovery; attend and participate in group meetings. Perform other related work as required
Typical Qualifications Typical Qualifications: Possession of a Bachelor's degree from an accredited college or university with a major in information systems, computer science, or closely related field and five (5) years progressively responsible professional level work experience in Information Security.
Additional Requirements: Must possess a valid California driver's license upon hire and have a satisfactory driving record.
Possession of information technology security certifications such as Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH) are highly desirable.
Selection Procedure Selection Procedure: Application materials including a supplemental questionnaire must be submitted online at: The first review of applications will be
Friday, August 8, 2025.
As soon as a candidate has been selected, the position will close. Candidates who present the best job-related qualifications will be invited to participate in a qualification appraisal as well as an interview by an appraisal panel. Candidates passing the qualifications appraisal process will be ranked on an employment list for further consideration. Top-ranking candidates will be invited to a personal interview with the hiring Supervisor. Health Insurance : Coverage is provided through the CalPERS Health program. Under the Cafeteria Plan, employees will receive a flex dollar allowance to purchase healthcare coverage, and qualifying voluntary products.
Dental and Vision : Coverage for the employee and eligible dependents is fully paid by the District.
Retirement : California Public Employees Retirement System (CalPERS) benefit depends on whether the employee is a "new" member or "classic" member under state law.
Classic member : Employee who is a member of PERS or reciprocal agency within six months of hire at ACWD. 2.5% @ 55 with 8% employee contribution. $5000 Retired Death Benefit, 3% Annual Cost-of-Living Allowance Increase, Post-Retirement Survivor Allowance to Continue After Remarriage, Pre-Retirement Death Benefits to Continue After Remarriage of Survivor, Additional Opportunity to Elect 1959 Survivor Benefits, 1959 Survivor Benefit Level 4, Unused Sick Leave Credit, Public Service Credit for Peace Corps, AmeriCorps VISTA, or AmeriCorps Service, Military Service Credit as Public Service, Final Compensation 1 Year, Post-Retirement Survivor Allowance, Prior Service. The District picks up 2.5% of the CalPERS retirement contribution.
New member : Employees hired after 12/31/12 who were not members of PERS or a reciprocal agency within the last six months of hire at ACWD. 2% @ 62 with 7% employee contribution. Effective 7/1/23 PEPRA employee contributions will increase to 7.75%. $5000 Retired Death Benefit, 1959 Survivor Benefit Level 4, 3% Annual Cost-of-Living Allowance Increase, Additional Opportunity to Elect 1959 Survivor Benefits, Final Compensation 3 Years, Military Service Credit as Public Service, Post-Retirement Survivor Allowance, Post-Retirement Survivor Allowance to Continue After Remarriage, Pre-Retirement Death Benefits to Continue After Remarriage of Survivor, Pre-Retirement Option 2W Death Benefit, Prior Service, Public Service Credit for Peace Corps, AmeriCorps VISTA, or AmeriCorps Service, Unused Sick Leave Credit.
Social Security/Medicare : The District does not participate in Social Security, but provides a 1.45% matching Medicare contribution.
Retiree Health Benefits : Coverage is provided through the CalPERS Health program. The District's contribution for retiree coverage shall be the PEMHCA minimum contribution as determined by CalPERS on an annual basis. Please refer to the Memorandum of Understanding for various eligibility and plan details.
Employees hired on or after January 1, 2019 will receive a defined-contribution benefit into a retiree health savings account.
Life Insurance : The District provides you with Basic Life Insurance and Basic AD&D Insurance of one and one half times your annual salary to a maximum of $250,000. There is no cost to employee for this insurance.
Long Term Disability : The District provides you with Long Term Disability Income Insurance of 66 2/3% of monthly earnings with a maximum monthly benefit of $15,000.
Short Term Disability : Coverage is provided through the District for employees working more than 20 hours per week at 66 2/3% of base weekly earnings for the first 12 weeks up to a weekly benefit maximum of $2,350.
Deferred Compensation : Optional deferred income plans allowing tax sheltering of current income and payment later as supplemental retirement income. The District pays a match of up to $2,250 per year to the employee's 401(a).
Vacation : 10 days first year, increasing to 25 days after 20 years.
Holidays : 11 days per year.
Sick Leave : 12 days per year
Management Leave : 80 hours to 96 hours of Management Leave per calendar year (depending on classification).
Employee Assistance Program : Up to 6 sessions for employees and family members for professional consultation and short-term counseling for personal problems.
Tuition Reimbursement : The District will reimburse 100% of the total tuition and textbook costs incurred in taking courses outside of normal working hours related to District employment up to an annual maximum of $5,250. 01
IMPORTANT NOTE (applies to all questions): Following an assessment of minimum qualifications, the determination as to whether candidates should be invited to the hiring interview will be based only on evaluation of responses to this Supplemental Questionnaire. The District will evaluate responses to the Supplemental Questionnaire individually and separately from the employment application and any submitted resume or other materials (such materials will not be available to those evaluating responses to the Supplemental Questionnaire). Therefore, your responses to the Supplemental Questionnaire should be comprehensive, should demonstrate any proficiency in those areas highlighted in the announcement, and should NOT reference or rely on any information provided in the application or other submitted materials.Be sure to additionally include the name(s) of your employer(s), your dates of employment with that employer, and your job title(s) in your responses to each question as applicable.Do you agree to answer each supplemental question completely, and in your own words (without the use of generative Artificial Intelligence tools, including but not limited to Chat GPT, Microsoft AI, or any other AI tool), and that your responses can be verified from information included within your application? 02
Describe your experience in managing information security and privacy as your primary job duty. Describe how you navigated organizational, cultural and logistical challenges. 03
Describe your expertise in implementing information security architectures, security procedures and controls, and security program gap analysis including understanding the implementation challenges and advantages across all levels of hardware platforms and software applications in IT and OT environments. 04
Describe your experience working with and securing a wide variety of operating system platforms such as Windows Server, Windows 10, Linux etc. 05
Describe your experience and working knowledge of Firewalls, IDS, anti-malware, alerting and monitoring and other related security technologies? Please include specifics of the technologies and platforms you worked with. 06
Please describe your experience with Windows, Active Directory, Group Policy, DNS, encryption, patch management, anti-virus, system configuration management? 07
Please describe your approach to and experience in responding to disasters/emergencies created by data or information security breach. Required Question