Job Announcement

Serves as an analyst in the field of cyber security and privacy with the Information Security Office, Security Architecture organizational unit, and maintains responsibility for assessing cyber threats, responding to cyber incidents, responding to agency inquiries, and implementing and administering cyber security tools and systems. The successful candidate will work closely with our cloud engineering and security teams to design, implement, and maintain cloud security solutions for our enterprise. The ideal candidate should have a background in network and cloud security, container and virtual network security, and SIEM technologies.
Duties may include:

• Implements, administers, and supports security systems to include host endpoint protection, data loss prevention, network-based intrusion detection and prevention systems, application layer firewalls, remote access platforms, vulnerability management, forensics utilities, and other infrastructure deployed and maintained by the ISO.
• Designs, implements, and maintains cloud security solutions and best practices.
• Participates in internal and third-party security assessments and audits requiring interaction with agencies to remediate discovered system vulnerabilities.
• Administers and uses a Security Information and Event Management (SIEM) system and other security dashboards to monitor, research, and respond to cyber security related events and incidents due to data loss or system breach, malicious code, system configuration, or other issues.
• Coordinates daily with other Department of Information Technology (DIT) divisions and Agency Information Security Coordinators and IT Analysts, and external entities.
• Participates in fulfilling data searches to include legal electronic files preservation, Freedom of Information Act (FOIA), other data requests, investigations, and forensics.
• Acts as a general technical and operational advisor for cyber security on behalf of the ISO.
• Stays abreast of current and evolving cyber security trends and seeks to acquire or maintain industry certifications.
• Supports and responds to emergency IT events and support county emergency operations center activations as needed.
• Performs other duties as assigned.

Illustrative Duties

(The illustrative duties listed in this specification are representative of the class but are not an all-inclusive list. A complete list of position duties and unique physical requirements can be found in the position job description.)

• Monitors, analyzes, and evaluates county IT systems, data, and environments and operations to ensure an appropriate level of information/cyber security compliance.
• Provides maintenance, problem resolution, and analysis of security exposures, events and opportunities on all County IT and communications environments, and IT/Cyber security systems and tools;
• Performs technical tasks for the implementation, operation, and maintenance of IT/cyber security systems and tools;
• Evaluates IT/cyber security functions and implements strategies for county systems and environments.
• Recommends changes and enhancements as needed to fulfill security compliance;
• Coordinates with DIT peers and IT analysts in agencies on the design, implementation, operation, and maintenance of county information and communications systems and infrastructure and controls;
• Advises and participates in the development, testing, implementation, and maintenance of IT applications, systems interfaces with other systems;
• Assists in the design, development, testing, implementation, and maintenance of IT/cyber security solutions and functions;
• Generates security management reports;
• Prepares and maintains technical documentation of cyber security solutions and prepares standards and procedures;
• Monitors software modifications and security controls throughout the system;
• Assists in the investigation of attempted or actual IT/cyber security violations, events, e-discovery, FOIA and other investigations;
• Trains and advises staff in the use of IT/cyber security platforms and solutions;
• Develops and conducts information/cyber security awareness training;
• Performs systems access controls and privileges for enterprise-systems as assigned;
• Provides guidance, training, and technical assistance to less experienced IT/cyber security analysts;
• Evaluates technical security products and recommends their acquisition and implementation.

Employment Standards