City of Aurora logo

Business Operations Security Analyst

City of Aurora
1 day ago
Part-time
Remote friendly (Aurora, Colorado, United States)
United States
$37.44 - $46.80 USD hourly
eDiscovery Analyst

JOB LOCATION

15151 E Alameda Pkwy Aurora, Colorado 80012-1555

City of Aurora, Colorado


It is an exciting time to work for the City of Aurora, we're growing and looking for dedicated and collaborative individuals to join our team of talented and valued employees. Excellent organizations have a set of principles, or core values, that are used to implement their mission and vision. Those values represent the touchstone for the organization, guiding the decisions of the individuals and the organization. At the City of Aurora, we demonstrate our excellence by modeling the CORE 4 Values of: Integrity, Respect, Professionalism, and Customer Service, and we welcome all who share these values to apply.
 
Why Work for Aurora?

  • Make a difference in the lives of real people every day
  • Diverse community
  • Competitive total compensation package
  • Well-Funded General Employees Retirement Plan
  • Light rail station minutes away
  • On-site fitness center and overall employee well-being programs Internal educational programs to assist with career advancement
  • Access to innovation workspaces

PRIMARY DUTIES & RESPONSIBILITIES

Salary to be commensurate with experience

The hiring range for this position is $37.44 - $46.80 per hour.

This is classified as VHBE (Variable Hour Benefit Eligible), where the selected candidate can work up to 40 hours per week.  The selected candidate will be eligible to elect Medical, Dental, and Vision benefits, accrue paid time off, and receive 11 paid holidays. 

The deadline to submit applications is June 24th, 2026. Please note, The City of Aurora will conduct ongoing screenings of applications on a first come, first-serve basis; as soon as we determine to have a qualified pool of applicants, this position may close quickly and without notice.

Overview of Position/Department:

The Security Analyst will work within the ISO Engagement team and directly with city departments to evaluate information security and privacy risks across business processes and technology platforms. This role engages business leadership to design remediation strategies that support compliance with legal, policy, and security requirements. The position supports CORA and eDiscovery requests and will help shape the City’s data governance program. 

Primary Duties & Responsibilities:

  • Evaluate and consult on security and privacy risks for departmental technology and business processes.  
  • Develop and maintain strong business relationships to support adoption of secure practices. 
  • Create and deliver security awareness training and educational content.  
  • Develop reporting, metrics, and quarterly business reviews in partnership with the City Attorney Office’s (CAO) leadership and the CISO.  
  • Coordinate and support responses to open records requests and eDiscovery holds involving information technology systems and records. 
  • Develop risk mitigation recommendations, security control requirements, and implementation strategies to address identified information security and privacy risks. 
  • Perform risk assessments on infrastructure, software, and business operations and track remediation activities.  
  • Collaborate with Security Operations, Program Management, Infrastructure, and Applications teams to support secure technology decisions.  
  • Translate legal and regulatory technical requirements into business language.  
  • Support deployment and governance of ISO platforms and co-manage the IT Risk Management platform.  
  • Conduct research on emerging technologies and evaluate associated risks.  
  • Evaluate CAO policies, systems, and processes for security and privacy compliance.  
  • Assist in emergency response and incident investigations.  
  • Support development of CAO technology strategies using security-by-design principles.  
  • Participate in data governance program development including data discovery, labeling, and controls.  
  • Perform other duties as assigned to support IT and ISO program maturation. 
  • Performs other duties as assigned. 

MINIMUM QUALIFICATIONS & WORKING CONDITIONS

Minimum Qualifications:

Education:

Bachelor's degree in Information Security, Cybersecurity, Information Technology, Computer Science, Public Administration, Business Administration, Legal Studies, or a related field; OR an equivalent combination of education, training, and experience that provides the required knowledge, skills, and abilities. 

Experience:

  • 2+ years of experience supporting information security, privacy, data governance, risk management, legal compliance, or related functions. 
  • Experience with regulatory compliance or legal practice.  

Preferred Qualifications:

  • Experience supporting public-sector or municipal organizations. 
  • Experience with Colorado Open Records Act (CORA) requests or eDiscovery processes. 
  • Experience using governance, risk, and compliance (GRC) platforms. 
  • Relevant professional certifications such as Security+, CISSP, CISM, CRISC, CIPP, CIPM, or similar credentials. 

Knowledge:

  • Knowledge of information security, privacy, and technology risk management principles.  
  • Knowledge of legal and regulatory requirements related to cybersecurity, CORA, and eDiscovery.  
  • Understanding of data governance frameworks including data classification and lifecycle management.  
  • Knowledge of municipal legal systems and CAO operations.  
  • Knowledge of security-by-design concepts and secure architecture principles.
  • Familiarity with Microsoft Purview and IT governance tools.  
  • Awareness of industry standards, legislation, and best practices. 

Skills:   

  • Skill in developing and delivering training and awareness programs.  
  • Skill in preparing business reviews, metrics dashboards, and performance reporting.  
  • Skill in technical writing, documentation, and report creation.  
  • Skill in stakeholder engagement and facilitating collaboration across departments.  
  • Skill in using governance, risk, and compliance platforms.  
  • Skill in conducting research and analyzing emerging technology risks. 

Abilities:   

  • Ability to translate complex legal and technical requirements into business-friendly language.  
  • Ability to perform comprehensive security and privacy risk assessments.  
  • Ability to establish and maintain effective working relationships with internal departments, external agencies, business owners, and the public. 
  • Ability to work independently, exercise sound judgment, and adapt to evolving priorities and technologies. 
  • Ability to manage sensitive information with tact and discretion.  
  • Ability to support incident response activities and adapt to changing operational priorities. 
  • Ability to champion secure practices and drive organizational change.  
  • Ability to manage competing priorities effectively. 

WORKING CONDITIONS:

Essential Personnel:  

When a local announcement of emergency or disaster is declared by the city, all City of Aurora employees may be required to work as essential personnel. 

Physical Demands: 

  • Light physical work requiring the ability to lift up to 20 pounds at a time with or without assistance  
  • Occasional lifting or carrying of objects, walking, and standing. 
  • Ability to operate standard office equipment and computers with or without reasonable accommodation. 
  • Ability to review and interpret written materials and communicate effectively with others with or without reasonable accommodation. 

Work Environment:

  • Normally works in a clean, comfortable environment.
  • Will be a hybrid work environment split between CAO facilities and home office.
  • Requires occasional travel to physically attend ISO, CAO, and IT meetings.

Equipment Used:

  • Uses standard office equipment including personal computer and common office software such as email, internet, Word, Excel and menu driven databases as a part of computer-based systems. 
  • This job may require the incumbent to use personal equipment (e.g. vehicle, cell phone, tools, etc.) in the course of their employment. 

The city of Aurora will implement furlough days (unpaid days off) for most employees in 2026. The scheduled furlough dates are January 16, April 10, July 2, and December 24.

For Veterans preference:  Please show all of your employment history, including military service and related documentation (DD214) on the application.
           
The City of Aurora is an equal opportunity employer.  We are required by state and federal agencies to keep certain statistical records on applicants.  It will not be used in any way to discriminate against you because of your sex, race, age, sexual orientation, creed, national origin, disability or military status, gender identity, unless related to a bona fide occupational qualification as defined by the Colorado Civil Rights Commission and the Equal Opportunity Commission.
                                         
Despite the changes in Colorado law, the City of Aurora maintains a drug-free workplace.  A positive test of marijuana is grounds for disqualification and ineligibility for employment with the city for one year or termination once hired.
 

Drug Testing, Thorough Criminal Background Check, and Employment References:
As a condition of employment, all applicants selected for employment with the City of Aurora must undergo a thorough criminal background check. 

Applicants selected for safety-sensitive positions are required to complete and pass a drug screening as a condition of employment. Safety sensitive positions include Civil Service positions within Police and Fire Departments and positions where their job responsibilities have direct and substantial responsibility that would impact the health and safety of others.  


Employment references will be conducted on finalists for City of Aurora vacancies.