Damon Cone

Manage cybersecurity functions within the Department of IT, encompassing planning, implementing, and configuring security tools and systems to support city security measures, reduce risks, and ensure data protection. This role demands a comprehensive understanding of cybersecurity principles and practices to implement robust security measures across the organization, including experience with NIST CSF, NIST 800 Series, CIS, CJIS, and NERC CIP frameworks.

Key Responsibilities:

Security Systems Administration:

• Administer and monitor firewalls, intrusion detection systems and endpoint protections to detect risks.
• Participate in creation of device hardening techniques and protocols.
• Recommend improvements in security systems and procedures.
• Routine analysis of network security and current infrastructure, assessing areas in need of improvement.
• Manage SentinelOne Singularity platform for endpoint protection and response.

Threat Detection and Response:

• Enhanced network security with the implementation of proactive monitoring and threat detection solutions.
• Collect and monitor security data in real-time.
• Utilize and support Security Information and Event Management (SIEM) systems for real-time analysis of security alerts.
• Identify and respond promptly to security incidents.
• Implement and manage Security Orchestration, Automation, and Response (SOAR) tools to streamline and enhance incident response.
• Apply knowledge and experience with the MITRE ATT&CK framework to identify, classify, and respond to adversarial tactics, techniques, and procedures (TTPs).

Governance, Risk, and Compliance:

• Assist with development of compliance objectives and strategies.
• Create and implement IT security policies and procedures
• Conduct vulnerability assessments and report findings.
• Collaborate with IT team members to ensure seamless integration of new system components for improved functionality.
• Provide guidance on patch management processes to mitigate risks.
• Ensure compliance with NIST CSF, NIST 800 Series, CIS, CJIS, and NERC CIP frameworks.

Security Training and Awareness:

• Elevate cybersecurity awareness among employees through effective training campaigns.

Incident Response and Disaster Recovery:

• Champion continuous improvement initiatives within the IT Department, promoting a proactive approach to identifying potential areas for enhancement.
• Foster strong relationships across departments within the organization to promote a culture of shared responsibility for cybersecurity matters.
• Continuously monitor system logs to detect and respond to potential security breaches.
• Evaluate the effectiveness of existing security controls, recommending enhancements where necessary to bolster defenses against potential breaches.

Project and Service Management:

• Liaised with other departments to minimize network interruptions and possible downtimes.
• Lead technical upgrade projects for internal customers by working and coordinating with consultants and developers for integrations.
• Deliver projects and initiatives within deadlines and budgets.

General Duties:

• Participate in technical training and travel as needed.
• Perform duties to enhance department efficiency and foster continuous security posture improvements.
• Position is designated Mission Critical.

• Direct and manage multiple projects on a daily, weekly, and monthly basis
• Supplier and vendor management experience related to product procurement.
• Configure and install various network devices and services (e.g., routers, switches, firewalls,VPN, QoS)
• Responsible for identification, configuration and implementation of network perimeter / LAN security. Tasks include (not limited to) allowed/blocked data flow related to TCP/IP, TCP/UDP services, IPS, Web & Application Filtering, Email Security, Identity based firewall rules, NAT/DNAT/SNAT, IPsec and SSL VPN technologies. Responsible for design and implementation of endpoint antivirus strategy which may be cloud or on premise based.
• Design and deploy HP & Cisco network switching & routing solutions for Data / VoIP networks.
• Provide Level-2/3 support and troubleshooting to resolve issues
• Work within established configuration and change management policies to ensure awareness, approval and success of changes made to the network infrastructure
• Design and configure Sophos next generation firewall technologies such as SSL VPN, Email & Web Security,IPsec and Endpoint Security solutions.
• Liaise with vendors and other IT personnel for problem resolution
• Disaster Recovery planning and testing on an annual basis.
  

Knowledge and experience with Microsoft Windows servers (2003, 2008, 2012 & 2016) Build/Configuration/Maintenance.

• Knowledge and experience with Microsoft Active Directory, Group Policy Management, Remote Desktop/Terminal Services.
• Knowledge and experience with VMware solutions.
• Knowledge and experience with Microsoft Hyper-V solutions (2008, 2012 & 2016)
• Knowledge and experience with Windows Server (2003, 2008, 2012 & 2016) Domain and Exchange Server migrations.
• Configure, deploy, maintain, troubleshoot and support computer workstations, laptops, printers, mobile devices, phones and other computer and telecommunications equipment.
• Participate in hardware and software reviews and recommend purchases.
• Maintain inventory of installed software, manage software licensing and create policies and procedures for upgrades.
• Work with hardware and software vendors to verify timely product delivery and ensure that new equipment is installed and ready to operate on schedule.
• Configure, deploy, and provide continuous management of Sophos Endpoint Security solution.

• Research and identify solutions to software and hardware issues
• Diagnose and troubleshoot technical issues, including account setup and network configuration
• Ask customers targeted questions to quickly understand the root of the problem
• Track computer system issues through to resolution, within agreed time limits *
• Talk clients through a series of actions, either via phone, email or chat, until they’ve solved a technical issue
• Properly escalate unresolved issues to appropriate internal teams
• Provide prompt and accurate feedback to customers
• Refer to internal database or external resources to provide accurate tech solutions
• Ensure all issues are properly logged
• Prioritize and manage several open issues at one time
• Follow up with clients to ensure their IT systems are fully functional after troubleshooting
• Collaborate with colleagues on projects to assist with designing Windows Server migrations and Network Infrastructure upgrades
• Document technical knowledge in the form of notes and manuals
• Maintain jovial relationships with internal and external stakeholders.