City of Phoenix

ABOUT THIS POSITION

Phoenix is the 5th largest city in the country. We are emerging in the new economy with strength in technology, manufacturing, bioscience research and advanced business services. Here at the City of Phoenix, we have more than 14,000 employees working across 35 departments. We strive to be an employer of choice by offering great benefits and opportunities for career growth and advancement. All we need is you!

The City of Phoenix currently has a vacancy for an onsite Operational Technology (OT) System Security Supervisor to lead the OT System Security team. In this role, you will report to the Process Control Technology Services (PCTS) Division Manager within the Water Services Department (WSD). This position involves senior-level technical leadership, which is responsible for overseeing the day-to-day operations of a high-performing OT System Security team supporting a large, complex, critical control system. OT system security refers to the practices and technologies used to protect OT systems, which control physical devices and processes in critical infrastructure and industrial settings to ensure the safe, reliable, and continuous operation of essential services. This includes supervising patching, backups, directory services, endpoint protection management, automation, the deployment of infrastructure technologies to support business operations, risk assessments, implementing security measures, developing and delivering training, ensuring compliance with standards, and staying updated on cyber security trends. They also supervise a team, projects, and budgets related to OT security.

This fully onsite, hands-on technical role requires significant OT infrastructure experience. The successful candidate must have a strong track record of resolving complex issues and serving as a senior escalation point. They will be expected to actively support their team by applying deep technical expertise while managing daily operations. The depth and relevance of this experience should be clearly demonstrated throughout the résumé, which will be reviewed and validated during the recruitment process.

What you will do:

• Assist in developing, implementing, and adhering to PCTS policies and procedures to enable strong performance, security, and risk-management capabilities in aliment with ISA/IEC 62443.
• Lead the planning, execution, and monitoring of projects related to OT security plan development and implementation.
• Oversee the establishment of Security Management Systems (SMS) in alignment with ISA/IEC 62443 guidelines, covering risk assessments, security plans, control implementation, and continuous monitoring.
• Conduct OT-specific cybersecurity risk assessments to identify vulnerabilities, threats, and potential impacts on industrial operations, aligning with ISA/IEC 62443 principles.
• Prioritize security risks and develop mitigation strategies based on assessment findings, leveraging the zone and conduit approach outlined in ISA/IEC 62443-3-2.
• Implement and manage a risk management framework for OT environments, ensuring regular reviews and updates.
• Guide the implementation of security controls within OT systems, including network segmentation, access control, and vulnerability management.
• Collaborate with Information Technology (IT), WSD Engineering, and operations to integrate cybersecurity measures into the design, development, and maintenance lifecycles of OT systems, following IEC 62443 guidelines.
• Oversee the deployment and management of security tools and technologies suitable for OT environments, such as Security Information and Event Management (SIEM) systems and Intrusion Detection/Prevention Systems (IDS/IPS).
• Develop and implement OT-focused incident response plans and procedures to effectively detect, respond to, and recover from cybersecurity incidents, minimizing operational disruption.
• Conduct regular incident response drills and simulations to test the effectiveness of plans and ensure a coordinated response across IT and OT teams.
• Develop leadership reports that include metrics, data, and dashboards as it relates to performance management, and system monitoring to measure and improve service delivery and team performance.
• Establish and manage staffing levels using internal and external resources to ensure adequate resources are available to meet service level objectives and business demands.
• Lead and manage technical staff, providing direction, mentorship, and performance feedback.
• Convey technical concepts to both technical and non-technical stakeholders.
• Align infrastructure strategies with organizational goals and business objectives.

IDEAL CANDIDATE

What you will bring to the team:

• Ability to troubleshoot complex issues, provide technical guidance, and lead a team of technical professionals while actively supporting operational needs and contributing to solutions.
• Deep understanding of Industrial Control Systems (ICS) and OT environments, including SCADA, DCS, PLCs, and associated protocols.
• Extensive knowledge of cybersecurity principles, frameworks (e.g., ISA/IEC 62443, NIST, MITRE ATT&CK for ICS), and best practices applicable to OT.
• Proficiency in network security, including segmentation, firewalls, and IDS/IPS.
• Familiarity with secure development lifecycle (SDL) principles and their application in OT system development and maintenance.
• Knowledge of vulnerability management and patch management in OT contexts, considering the unique challenges of industrial environments.
• Proven ability to lead and manage complex projects, including planning, budgeting, execution, and completion.
• Demonstrated knowledge of project management methodologies.
• Strong organizational and time management skills, capable of prioritizing and handling multiple initiatives concurrently.
• Excellent communication and interpersonal skills, with the ability to effectively communicate complex technical information to both technical and non-technical stakeholders.
• Strong analytical and problem-solving skills to identify, assess, and mitigate security risks and vulnerabilities.
• Leadership and mentoring skills to guide and develop junior team members.
• Ability to work collaboratively in a fast-paced and ambiguous environment.

SALARY

Pay Range: $93,121 to $131,040 annually.

Hiring Range: $93,121 to $118,872 annually.

Pay Range Explanation:

• Pay range is the entire compensation range for the position classification.
• Hiring range is an estimate of where you can receive an offer. The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience, education, licenses, training, and internal equity.

BENEFITS

A comprehensive benefits package is offered which includes:

• Traditional pension with employer and employee contributions, click here for more details: Pension Information
• 401(a) and 457 plans with employer contributions
• Choice of generous medical HMO, PPO, or HSA/HDHP plans
• Medical enrollment includes a monthly $150 City contribution to a Post-Employment Health Plan
• Wellness incentive of up to $720 annually
• Dental, vision, and life insurance options
• Employer paid long-term disability
• Free Bus/light rail pass
• Tuition reimbursement program up to $6,500 per year
• Paid time off includes 13.5 paid holidays, 12 vacation days, and 15 sick days and personal leave days
• Paid Parental Leave for eligible employees up to 480 hours (12 weeks) of paid leave for the birth, adoption, or foster care placement of a child during a 12-month period
• Federal Student Loan Forgiveness offered through Savi

For more details, visit: Unit 007 Benefits

MINIMUM QUALIFICATIONS

• Two years of experience in Information Technology, Operational Technology and Industrial Control Systems involving the practical knowledge of the ISA/IEC 62443 with emphasis on security applications in an OT environment.
• Bachelor's degree in computer science, math, or a related field.
• Other combinations of experience and education that meet the minimum requirements may be substituted
• All finalists for positions are subject to a criminal background check applicable to the department or position.
• These positions require the use of personal or City vehicles on City business. Individuals must be physically capable of operating the vehicles safely, possess a valid driver's license and have an acceptable driving record. Use of a personal vehicle for City business will be prohibited if the employee is not authorized to drive a City vehicle or if the employee does not have personal insurance coverage.
• For information regarding pre-screening and driving positions, click here.
• The City job description can be found here.

PREFERRED QUALIFICATIONS

The minimum qualifications listed above, plus:

Experience in a technical supervisory role maintaining industrial control systems security, with hands-on expertise serving as an escalation point for technical staff.

• Risk Assessments: Identify vulnerabilities and develop mitigation plans to protect OT assets.
• System Architecture: Collaborate with engineering and product development teams to integrate security measures into OT processes and technologies.
• Compliance: Ensure adherence to industry standards and regulations (ISA/IEC 62443, NIST 800).
• Policy and Procedures: Develop and enforce security policies and procedures for OT systems.
• Incident Response: Develop and enforce security policies and procedures for OT systems.
• Threat Monitoring: Monitor OT systems for threats and vulnerabilities, working with IT and WSD Engineering teams to address them.
• Security Awareness Training: Develop and deliver training programs for OT personnel.

Experience in/with:

• Managing enterprise systems with role-based access controls (RBAC) and security models.
• Implementing and managing IT/OT security strategies within enterprise infrastructure environments. This includes direct responsibility for activities such as configuring and maintaining firewalls, securing on-premises servers, leading vulnerability remediation and patching efforts, implementing identity and access management controls, and guiding compliance with security frameworks (e.g., ISA/IEC62443, NIST, CIS, or ISO 27001).
• Leading technical teams in delivering infrastructure or operational technology solutions aligning with organizational or business outcomes. This includes direct involvement in solution planning, resource coordination, stakeholder communication, and measurable delivery of systems for improved efficiency, reliability, or service performance.
• Hands-on leading and executing large-scale IT/OT infrastructure projects, including the planning, deployment, and performance tuning of physical and virtual servers (e.g., Cisco UCS, VMware), enterprise network architecture, and storage solutions. Experience includes using tools such as SolarWinds, vCenter, or similar for monitoring uptime, availability, throughput, and system performance.
• Administering desktops, laptops, and mobile devices in a large enterprise environment. Responsibilities include configuring user access and remote connectivity, managing device security, deploying and troubleshooting software, applying system patches, and joining/removing devices from Active Directory.
• Maintaining a large enterprise environment with deep understanding of security models, including role-based access control (RBAC), Active Directory permission management, group policy inheritance, and identity management across platforms.

Certifications (Highly Desired):

• ISA/IEC 62443 Cybersecurity Expert certification
• Global Industrial Cyber Security Professional (GICSP)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• GCIA, GCIH, GCFE, CCNA Cyber Operations

RECRUITMENT DATES

Recruitment closes August 6, 2025. All materials must be received by 11:59 p.m. on this date.

This is a position-based recruitment and will not result in any ongoing eligibility list. This recruitment and any selection processes resulting from this recruitment may be used to fill other related vacancies within the organization now or in the near future.

HOW TO APPLY

Apply online by completing the required information and attaching, as one document, your cover letter and resume. Please include your experience as it relates to the qualifications stated above. Only the highest qualified may be posted to the eligible to hire list. The results of the resume screening process will be sent to your primary email address.

WE ARE HERE TO HELP

• Job interviews may be held by video or audio conference.
• If you are in need of computer resources, click here for free options.
• Arizona at Work has frequent classes to help with resume writing, interviewing skills, and general career guidance. Click here for more information.
• Explore other Employment Opportunities with the City of Phoenix.
• Subscribe to receive e-mail notifications about new employment opportunities.
• If you require assistance at any stage of the application process due to an accessibility issue, please contact the Human Resources Department by phone at (602) 495-5700 or by text at (800) 367-8939. You may also fill out and submit a Reasonable Accommodation Request Form.

REFERENCE

Senior Info Tech Systems Spec, JC:09570, ID# 58805, 07/23/2025, USM, JG, Benefits:007

Building the Phoenix of tomorrow.

#DoWorkThatMakesPhoenixWork

City of Phoenix is an equal opportunity employer. AmeriCorps, Peace Corps, and other national service alumni who meet the required qualifications are encouraged to apply.

Read Full Description