Sie sind auf Seite 1von 2

City of Tacoma Information Technology Department Information Security Internship

Supervisor: Dates: Duration: Compensation: To Apply: Paul Federighi, Chief Information Security Officer Spring Quarter 2013 through Spring Quarter 2014 (Summer 2013 optional) Five Quarters, up to 15 hours per week $2,500-$3,500 per quarter, depending on qualifications Provide resume and cover letter (addressed to Paul Federighi, Chief Information Security Officer) describing personal goals and interest in this position with resume to Julia Smith (jbsmith@uw.edu) by March 11, 2013.

Purpose To provide support to the Chief Information Security Officer and perform information security operations, analysis, event management and response functions for the Information Technology Department Security and Enterprise Architecture Office, as well as research, policy analysis, and other related information security analysis functions for the organization. Qualifications Currently enrolled in a college or university program emphasizing information security or information technology program with study in security principles and practices. This position will require a criminal background check prior to appointment. A valid driver's license is required at time of appointment. Educational Benefits Educational benefits to be derived by students in this job include: understanding of how organizations analyze needs for information technology security and how they implement information technology security programs and processes. Essential Duties Responds to requests for information and assistance from City staff on information security related matters. Researches and collects cyber security information for use in policy and standards development by the Chief Information Security Officer or as directed by the CISO for other City staff. Provides staff support for the IT Departments Security and Enterprise Architecture Office as requested by the CISO, including research, official reports, and related documents. Performs follow up activities related to information received from cyber security alerts and notices. Prepares communication material on the subject of information security for the purpose of alert notifications, status updates, general end user awareness, etc. for presentation and/or publication using various methods. Assists with and perform cyber security vulnerability assessment, risk assessment, and mitigation activities. Assists with cyber security related investigations and incident response activities analysis including forensic evidence collection and analysis. Utilizes information security tools and technologies. Review and examine events and logs generated by these tools. Attends meetings and related information security discussions and provides follow-up briefings to the

CISO and staff as requested. Performs special projects for the Security and Enterprise Architecture Office as requested. Work safely and cooperatively with co-workers and the public. Travel to offsite locations as needed. Performs other directly related duties consistent with the role and function of the classification. Current principles and practices of information security profession. Familiarity with published standards such as ISO 27000, NIST 800 series, PCI-DSS, etc. Computing system operations practices. Computer networking and communications protocols and practices. Communicate effectively with others, both orally and in writing, using both technical and non-technical language. Understand and follow oral and/or written policies, procedures and instructions. Prepare and present accurate and reliable reports containing findings and recommendations. Operate a personal computer using standard or customized software applications appropriate to assigned tasks. Use logical and creative thought processes to develop solutions according to written specifications and/or oral instructions. Perform a wide variety of duties and responsibilities with accuracy and speed under the pressure of time-sensitive deadlines. Work involves long periods of sitting while working on a personal computer performing repetitive hand and wrist motions, walking, talking, hearing, using hands to handle, feel or operate objects, tools, or controls and reach with hands and arms. Vision abilities required by this job include close vision and the ability to adjust focus. May be required to push, pull, lift, and/or carry up to 20 pounds.

Knowledge and Skills

Physical Requirements and Working Conditions