Cybersecurity Operations Supervisor

US Government, County Executive Office

Cybersecurity Operations Supervisor 
(IT Supervisor)

In addition to performance-based merit increases, this position is scheduled to receive salary range increases on the following dates:


Effective June 28, 2024 – 4.25% increase
Effective June 27, 2025 – 4.00% increase

Salary may be negotiable within the range listed above, based on position requirements and the successful candidate's qualifications, subject to appropriate authorization.

This recruitment will establish an open eligible list that will be used to fill current and future IT Supervisor positions. The eligible list established may also be used to fill positions in similar and/or lower classifications throughout the County of Orange.

This recruitment will be open for a minimum of five (5) business days and will close
Monday, August 5th, 2024 at 11:59PM (PST).

The mission of Orange County Information Technology (OCIT) is to provide innovative, reliable, and secure technology solutions that support County departments in the delivery of quality public services. OCIT provides IT solutions across
County departments for voice communications, network services, application support, service desk, desktop support, as well as data center services.

Click here for more information on OCIT
Click here for more information on the County of Orange

OCIT is seeking an experienced Cybersecurity Operations Supervisor (IT Supervisor) for the Enterprise Cybersecurity Operations Team. The selected candidate will lead and oversee a team of cybersecurity analysts in charge of continuous monitoring of the County enterprise environment assets, analyzing threats, mitigating vulnerabilities, detecting compromises, and conducting incident response. The candidate is also responsible for the design, configuration, implementation and ongoing support of County Enterprise security tools.

Essential duties and responsibilities of the position will include but are not limited to:

  • Supervising a team of County and contractor staff at the County 24×7 Security Operations Center (SOC)
  • Providing leadership in day-to-day operation of the SOC, including, but not limited to threat analysis, tools enhancement, event correlation, threat hunting, and incident response
  • Reviewing SOC performance, contract deliverables, end of shift reports and other metrics to obtain a common operating picture and report to management and executive staff
  • Training and mentoring staff in the latest cybersecurity tools and concepts
  • Serving as the subject matter expert on security systems and concepts, including but not limited to SIEM, SOAR, EDR, IAM, PAM, IPS/IDS, Web Proxy, Firewall, DLP, Email Security, and WAF.
  • Ensuring the service ability and integrity of SOC equipment and tools
  • Overseeing threat hunting activities including analysis of threat intelligence, detection and evaluation of IoCs, and escalation of incidents
  • Evaluating vendor solutions, make recommendations, and lead projects for deployment and/or enhancement of security systems
  • Participating in the incident response team and execute the County Incident Response Plan and cyber incident playbooks
  • Reviewing cybersecurity requests against normal operational security processes and provide approval or escalation
  • Overseeing SOC efforts in digital forensics and eDiscovery
  • Liaise with County departments on operational security matters, requests, and problems
  • Creating/maintaining superior documentation on tools, processes, procedures, and playbooks

The ideal candidate will possess a bachelor’s degree in Information Computer Sciences, Information Computer Technology, Information Systems, or in a related field AND a minimum of three (3) years of professional experience in a cybersecurity lead role.
Possession of at least one active cybersecurity certification such as CISSP, CISA, CEH, Security+ CySa+,  is required.

In addition, the ideal candidate will possess extensive professional work experience and/or knowledge in the following core competencies:

Technical Knowledge | Expertise

  • Understanding the NIST 800-53 framework and application of its controls in operational security
  • Proficiency in scripting languages and PowerShell
  • Implementing enterprise security best practices including encryption, implicit and explicit permissions, multi-factor authentication, auditing and digital forensics, and data retention
  • Understanding network protocols, routing and switching, LAN/WAN, remote access, and encryption protocols
  • Understanding and applying network security concepts and troubleshooting enterprise firewalls, IDS/IPS, DNS Security, and WAF
  • Knowledge of Microsoft Office365, Azure Cloud, and related security concepts
  • Supporting email routing and messaging systems, email security gateways, and email encryption
  • Intimate knowledge of security tools such as SIEM, SOAR, EDR, DLP, and Web Filter/Proxy
  • Knowledge/background in installing, configuring, and supporting all varieties of Microsoft Windows Services and platforms in an enterprise environment is highly desirable
  • Red-teaming/offensive security expertise

Problem Solving | Analytical Skills

  • Identifying and resolving challenging technical issues and problems through good judgment and decision making
  • Proactively detecting problem areas and recommending/implementing solutions
  • Analyzing problems and proposing solutions while dealing with changing priorities

Supervision | Leadership Skills

  • Mentoring and training staff
  • Writing staff performance evaluations and conducting bi-annual performance reviews
  • Conducting team meetings and fostering effective communication
  • Directing work and oversee staff assignments

Communication Skills | Oral & Written

  • Developing and delivering effective written and verbal communication with stakeholders
  • Collaborating with other OCIT staff and management
  • Effective in building rapport and negotiating with vendors and department staff to resolve or mitigate contract performance issues and conflicts
  • Self-driven learner with the ability to rapidly assimilate and communicate instructions
  • Ability to translate and interpret difficult/technical topics to any given audience in a succinct and courteous manner

Click here to learn more about the minimum qualifications for the IT Supervisor classification as well as the physical, mental, and environmental conditions.
Note: Foreign degrees require an evaluation of U.S. equivalency by an agency that is a member of the National Association of Credential Services (N.A.C.E.S.).

Part of the selection process for this position, that all candidates undergo an extensive background investigation process, to the satisfaction of the Department.  
Human Resource Services (HRS) will screen all application materials for minimum qualifications. After the initial screening, qualified applicants will be referred to the next step of the selection process. All applicants will be notified via email of their status in the process.

Application Screening (Refer/Non-Refer)
Applications and supplemental responses will be screened for qualifications that are highly desirable and most needed to successfully perform the duties of this job. Only those applicants that meet the qualifications as listed in the job bulletin will be referred to the next step.

Structured Oral Interview | SOI (Weighted 100%)
Applicants will be interviewed and rated by an oral interview panel of job knowledge experts. Each applicant's rating will be based on responses to a series of structured questions designed to elicit the applicant's qualifications for the job. Only the most successful candidates will be placed on the eligible list.
Based on the Department's needs, the selection procedures listed above may be modified. All candidates will be notified of any changes in the selection procedure.

Eligible List
Once the assessment has been completed, HRS will establish an eligible list of candidates. Candidates placed on the eligible list may be referred to a selection interview to be considered for present and future vacancies.

Veterans Employment Preference
The County is committed to providing a mechanism to give preferential consideration in the employment process to veterans and their eligible spouses and will provide eligible participants the opportunity to receive interviews in the selection process for employment and paid internship openings. Please click here to review the policy.

Job Overview
Your subscription could not be saved. Please try again.
Your subscription has been successful. Please check your spam inbox and add to your contacts!

Our marketing platform's terms of use