Information Security Project Leader

InformationSecurityProjectLeader Aside from the exciting range of opportunities to make a real difference to your community and county, South Dublin County Council is a great place to work and for many people already provides an attractive career and working environment. Working for South Dublin County Council will give you the opportunity to gain experience at the heart of local government and to develop your career in a diverse work environment. We recognise the value of our employees, can offer a diverse range of job and career options, can provide plenty of scope for career progression and can provide structured training and personal development We also offer flexible working arrangements including blended working arrangements, a positive work environment, training and development opportunities, a defined career path and the opportunity to make a difference. Everything you need to know about South Dublin County Council The role We are seeking an Information Security Project Leader to spearhead the Councils cyber security efforts and ensure our digital assets are protected from the ever-evolving cyber threat landscape. Supported by the wider department, the successful candidate will lead a modest team of dedicated cybersecurity professionals whose actions will directly impact the Councils resilience against cyberattacks, safeguarding customer data and the Councils standing. The successful candidate will oversee the implementation and maintenance of the Councils Information Security Management System, including its security protocols, risk assessments, training requirements, policy development, and incident response. The Information Security Project Leader will oversee technical responsibilities related to the technologies detailed below. Such may include developing security strategies, maintaining Information Security Policies, conducting penetration testing, managing security technologies, ensuring compliance with legislation, and preparing disaster recovery plans. The role requires a deep understanding of the organisation's security architecture and infrastructure including Microsoft Security Platforms, Juniper Networks, ClearPass, CryptoSpike, and QRadar. Experience with these technologies will be advantageous to potential candidates. Candidates must demonstrate strong soft skills, including fostering collaboration, adapting to changing priorities, communicating complex information, providing customer-centric support, managing time effectively, and inspiring their team. These skills are essential for leading the cybersecurity team and driving continuous improvement. The ideal candidate will combine both technical expertise and a human touch, acting as both a team leader and player who can collaborate and adapt in a fast-paced environment. This is an exceptional opportunity for a cybersecurity professional to move to the next level of their career, to lead a team, and make a lasting impact on the security of all that the Council holds digitally. The office is wholetime, permanent and pensionable. A panel will be formed to fill permanent and temporary vacancies. Persons employed will be required to work in any location within the South Dublin administrative area. Salary €58,252 - €59,677 - €61,341 - €63,011 - €64,680 - €66,172 - €67,700 - €69,179 - €70,656 - €73,185 (LSI 1) - €75,728 (LSI 2) HoursofWork The successful candidates normal hours of work will be 35 hours per week. The Council reserves the right to alter your hours of work from time to time. Annual Leave Annual leave entitlement for this position is 30 days. Only applications received electronically through the Councils e-Recruitment system will be accepted and must be received no later than midnight on Thursday, 20th February 2025 Qualifications Character Candidates will be of good character. Health Each candidate must be in a state of health such as would indicate a reasonable prospect of ability to render regular and efficient service. Essential Education, training, experience Candidates must have on the latest date for receipt of completed applications - A) A qualification at Level 8 on the National Framework of Qualifications (NFQ) major award (i.e. honours degree), in a relevant computing discipline and at least 4 years directly relevant, recent ICT hands-on experience from your employment to date* B) A qualification at Level 8 on the National Framework of Qualifications (NFQ) major award (i.e. honours degree), or higher, with computing taken in the final year and at least 5 years directly relevant, recent ICT hands-on experience from your employment to date* OR C) A qualification at Level 7 on the National Framework of Qualifications (NFQ) major award (i.e. ordinary degree), in a relevant computing discipline and at least 5 years directly relevant recent ICT hands-on experience from your employment to date*. OR D) A Level 6 NFQ major award qualification in a relevant computing discipline and at least 6 years directly relevant recent ICT hands-on experience from your employment to date.* AND have a satisfactory knowledge of public service organisation or the ability to acquire such knowledge. *Relevant ICT hands-on experience should include, but is not limited to: areas such as managing delivery of digital solutions, enterprise architecture, software and applications development projects involving a range of technologies and platforms covering web development, data management, database administration, business analysis/discovery, business intelligence and data analytics, [...] systems and architecture stacks, telecommunications and networking infrastructure delivery support, technical support, ICT service management, operations and server support, ICT/ cyber security, mobile device management, virtualisation delivery support, database and application support, cloud computing, etc. Desirable Education, training, experience [...] and/or Computer Science. The ideal candidate for the Information Security Project Leader role will be an experienced professional with a strong grasp of enterprise security technologies, including firewalls, XDR, SOC/SIEM, and incident response. Their technical expertise will enhance the organisation's security posture and demonstrate adaptability to evolving systems. This candidate will exhibit outstanding leadership skills, fostering collaboration and communication within the team. They must adapt to changing priorities and effectively convey complex technical information to both technical and non- technical stakeholders, facilitating informed decision-making. A focus on people is crucial, with the candidate expected to provide proactive support and manage multiple projects efficiently. They will inspire and mentor their team, promoting professional growth and a culture of innovation and continuous learning. The candidate should have a comprehensive understanding of the cybersecurity landscape, staying updated on trends and regulatory requirements. Familiarity with standards like ISO 27001 and NIST will help align the organisations security practices with best practices and compliance. The Information Security Project Leader will develop and implement security strategies that align with organisational goals, conducting risk assessments and creating mitigation plans to address vulnerabilities while balancing immediate needs with long-term objectives. Proficiency in SIEM tools and experience with ransomware protection solutions are essential. The candidate should also be skilled in access control management, particularly with 801.1x authentication, to enhance network security. Overall, the ideal candidate will significantly contribute to the organisations security resilience through a combination of technical skills and leadership qualities. They will play a vital role in shaping the future of the organisations cybersecurity initiatives. We seek a dedicated professional ready to make a lasting impact and drive our cybersecurity efforts forward. Key competencies / skills Management and Change Delivering results Performance management Personal effectiveness Local government knowledge and understanding Candidates are requested to give an example of a situation which highlights the behaviour, skills and attitude that underpin effective performance in these areas and which demonstrates their suitability to meet the challenges of this role. Candidates should ensure the example used clearly demonstrates their ability in this area and that the scale and scope of the example given is appropriate to the post and level of the post Duties Thedutiesshallinclude,butarenotlimitedtothefollowing: Effective Team Leadership Set a clear vision and strategy for the team while fostering a supportive work environment. Manage team performance, development, and recognition, delegate tasks effectively, lead during crises, and promote continuous improvement. Cybersecurity Infrastructure Management Administer and support the organisation's cybersecurity infrastructure. Advise on network device configurations, monitor for suspicious activity, resolve security vulnerabilities, and implement security measures to protect digital services. Monitoring and Threat Analysis Overseeing the monitoring of security systems and networks for suspicious activity, conduct penetration testing and threat analysis, and ensure that appropriate measures are in place to protect the organisation's assets. Incident Response and Forensic Analysis Lead the incident response process by identifying and reporting suspicious activity, containing incidents, and conducting post-incident analysis. Perform digital forensic analysis to collect and analyse evidence related to cybersecurity incidents, using strong problem-solving skills. Information Security Management System (ISMS) Implementation Lead the implementation and maintenance of the ISMS, developing security controls and maintaining incident records. Ensure the ISMS aligns with industry best practices by applying frameworks and standards like NIST, ISO, and NIS2. Collaborative Working Relations Work closely with the Department Head, Senior ICT Team leaders, the Information Security Group, and management to advise on security matters and uphold the Council's Information Security Policy. Security Documentation and Solution Development Help develop and maintain security documentation, including policies and incident response plans. Participate in designing and implementing new cybersecurity solutions, evaluate security products, and provide training and support. Continuous Learning and Collaboration Stay updated on the latest cybersecurity threats and trends, sharing knowledge within the organisation. Provide first-line support to users and collaborate with cross-functional teams to enhance the overall security posture through risk assessments and awareness campaigns. These duties are indicative rather than exhaustive and are carried out under general guidance.