×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Information Security Officer

Job in San Francisco, San Francisco County, California, 94199, USA
Listing for: CPS HR Consulting (Client Recruitments)
Full Time position
Listed on 2026-02-21
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Salary/Wage Range or Industry Benchmark: 200000 - 250000 USD Yearly USD 200000.00 250000.00 YEAR
Job Description & How to Apply Below

San Francisco Fire Department – City and County of San Francisco, California Information Security Officer

The San Francisco Fire Department is seeking an Information Security Officer (ISO) to join its team. Reporting to the CIO, the ISO is responsible for maintaining an information risk management and cybersecurity program for the San Francisco Fire Department (SFFD). The ISO will work with all areas of the SFFD to develop a "best in class" information security and compliance program to assess appropriate technology platform risks, protect SFFD information assets, and ensure compliance with the City and County of San Francisco (CCSF) Information Security Policies.

The ideal candidate is a holistic, mission-driven information security leader who can assess cybersecurity risk across many dimensions of the organization and translate those insights into practical, department-specific solutions. They will work hand in hand with SFFD leadership and closely with the City and County’s Cybersecurity Officer—tailoring enterprise security requirements and policies to fit the unique operational realities of a fire department.

This individual brings strong experience protecting sensitive data, including PII and PHI, and developing policies for secure data handling, endpoint scrubbing, and system hygiene. Calm under pressure and hands-on in execution, the ideal candidate blends deep technical expertise with sound judgment and collaboration, helping build a “best in class” security program that safeguards critical public safety systems while enabling the department to operate effectively and securely.

Preferred Skills

  • Minimum of 6 years’ experience managing information security programs, developing and applying information security, risk management, and privacy practices in local, state, or federal government.
  • Minimum of 6 years’ practical experience designing and implementing IT security solutions, with a deep understanding of various security threats and preventative measures.
  • Familiarity with cybersecurity frameworks such as NIST, CIS Controls, PCI-DSS, CCM, etc.
  • Strong demonstrated knowledge of LAN/WAN, systems administration, Active Directory, Power Shell, group policy, virtualization, cloud, and IT security technologies.
  • Experience with systems access management, change management, security monitoring and intrusion detection, vulnerability management, endpoint security management, cloud security, data loss prevention, encryption, network security, disaster recovery, data management, physical security, and vendor management.
  • Experience with Crowd Strike, Splunk, Google Sec Ops, Cisco, Palo Alto Firewalls, Windows Server, Intune, Tenable, OCI, Microsoft Entra, Microsoft 365, Endpoint Security, and Enterprise Mobility in the cloud.
  • IT certifications (1 or more) such as Security+, CISSP, CISA, CISM, CySA+, CRISC, C-ISO, SSCP, CASP, CEH, GIAC
Your Day-To-Day

Duties and Responsibilities include, but are not limited to the following:

  • IT & CYBER SECURITY

    RISK MANAGEMENT:
    • Continuously identifying, updating, and maintaining information regarding potential security vulnerabilities, risks, and threats to the enterprise information technology infrastructure, and distributing technology security information to appropriate staff.
    • Provide instructions and coordination regarding software configuration standards for servers and desktop systems that are or may be attached to the enterprise network, where necessary to ensure information technology security.
    • Support corporate risk leadership to review enterprise IT and cyber risks, assess capabilities, prioritize security and risk strategies, and communicate risk intelligence in a way that drives business decision-making.
  • ISO PROGRAM GOVERNANCE & MANAGEMENT:
    • Develop policies, procedures, standards, and partner with agency employees and consultants to ensure understanding of and adherence to CCSF Information Security Policies.
    • Coordinates work activities, program functions with other CCSF agencies, and external business partners related to cyber/information security.
    • Work with the CCSF’s external IT auditors during the annual Cyber Security Assessment.
    • Support the development,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search