Analyze and respond to computer security incidents. Isolate and correct problems related to security. Assist with system and application audits. Assist in development of risk management procedures, business continuance scenarios, contingency and disaster recovery plans for central and distributed systems to maintain operations during downtime and/or major disasters. Monitors reports of malware infection or other intrusions; designs and documents processes and procedures for incident response. As manager of the GOAA Computer Security Incident Response Team (CSIRT), will be responsible and accountable for responding to required information security related incidents including those which may impact the confidentiality, integrity, or availability related to PCI DSS, privacy data, or GOAA confidential information. Perform other duties as assigned.
Bachelor degree in Computer Science or related field and two (2) years’ experience required in the administration of security for corporate networks, or an equivalent combination of education, training and experience.
Knowledge of computer and data security principles, TCP/IP and associated network and system protocols
Experience with at least one scripting language such as PowerShell, Python, Ruby, Bash, or Perl
Experience with logging formats
Experience with network management systems (NMS)
Experience with security information and event management (SIEM) software
Experience with SNMP and network packet analysis tools
Experience with Cisco network components
Experience with Palo Alto security components
Experience using security products such as McAfee endpoint
Experience using network security products such as endpoint protection, ePO, DLP, WebGateway, TIE, ATD, Splunk, NeXpose
Experience using tools such as Nessus, Nmap, Ettercap, Hashcat, Metasploit, Aircrack, Burp Suite, Acunetix, FTK, Sleuth Kit, Wireshark, Tcpdump, Netcat, and similar tools
Experience with Microsoft Server and client Operating Systems (OS)
Linux, proficiency at the command line level
Experience in computer security incident response and forensics
Experience with the administration of BCP for a corporate environment.
Experience with Oracle eBusiness Suite (or related Financials package) security, audit and control methods and concepts
Working knowledge of information security programs using best practices methodologies such as Florida’s ‘Security of Data and Information Technology Resources Act’ (Rule Chapter 60DD-2 Florida Information Resource Security Polices and Standards)
Working knowledge of ISO, COBIT, etc. that include administration, technical and physical safeguards
The Greater Orlando Aviation Authority offers a comprehensive benefits package.
Paid Vacation Holidays, Sick and Personal Leave Days
Orlando International and Executive Airports are managed by the Greater Orlando Aviation Authority, which is governed by a seven-member board; the mayor of the City of Orlando, the Chairman of the Board of County Commissioners, and five other members who are appointed by the Governor of the State of Florida, subject to confirmation by the senate.