Cyber Security Analyst III - Alamo Regional Security Operations Center (ARSOC)

Under general direction, is responsible for leading the Cyber Security Program processes and systems security assessment programs. Oversees the investigation, analysis, and development of system security integration, testing, operations, and maintenance. Exercises functional supervision over assigned staff.

Work Location
Alamo Regional Security Operations Center (ARSOC) - 638 Davy Crockett, San Antonio, TX 78226

• Leads the Cyber Security Program and the Systems Security Risk Assessment Program processes, which includes the investigation, analysis, and development of the integration, testing, operations, and maintenance of systems security.
• Manages the Vulnerability Assessment Program by analyzing and scanning enterprise systems and mitigating and resolving vulnerability gaps, while ensuring timely patching of COSA systems.
• Guides solution options and decision making based on evaluations and audits of IT project, program, environment, or its individual components to determine compliance with published standards.
• Maintains COSA cyber security missions and goals by overseeing threat hunting and cyber security activities and assessments, and developing plans, measures, and metrics of performance effectiveness.
• Oversees customer support relating to cyber security products and systems.
• Assesses, leads, and mentors subordinate Cyber Security Analysts in their duties and professional development.
• Serves as primary point of contact for the collaborative efforts and products in service of various organizations in the cyber defense of the Alamo Region Security Operations Center.
• Sets standards for data and data collection and gathers data to support recommendations to address problems with appropriate contingency plans.
• Evaluates system designs and identifies system weaknesses and vulnerabilities.
• Performs related duties and fulfills responsibilities as required.

• Bachelor's degree from an accredited college or university.
• Seven (7) years of relevant technical, cyber security, and business work experience.
• CompTIA Security .
• GIAC: GPEN, or GWAPT, or Certified Ethical Hacker.
• Applicants for this position must pass a Criminal Justice Information Systems (CJIS) fingerprint-based background check and maintain CJIS eligibility. Due to CJIS requirements related to system access, the following will result in being disqualified for this position: Felony Convictions, Felony Deferred Adjudication, Class A & B Misdemeanor Deferred Adjudication, Class B Misdemeanor Convictions, an Open Arrest for Any Criminal Offense (Felony or Misdemeanor), and Family Violence Convictions.

• Experience leading agile efforts.
• Experience in coaching and mentoring team members.
• Scrum Master, Agile, and Lean Six Sigma Certifications.
• Certified Information Systems Security Professional.
• PCI: ISA, QSA
  
  

Applicant Information

• Unless otherwise stated, applicants are permitted to substitute two years of related full-time experience for one year of higher education or one year of related higher education for two years of experience in order to meet the minimum requirements of the job. One year of full-time experience is defined as 30 or more hours worked per week for 12 months. One year of higher education is defined as 30 credit hours completed at an accredited college or university.
• Applicants selected for employment with the City of San Antonio in this position must receive satisfactory results from pre-employment drug testing and background checks.  If required for the position, a physical, motor vehicle record evaluation, and additional background checks may be conducted.
• Please be advised that if selected for this position, information regarding employment history as it relates to the qualifications of the position will be needed for employment verification. Applicants claiming military service to meet the experience requirement for this position may attach a DD214 to the application.
• If selected for this position, official transcripts, diplomas, certifications, and licenses must be submitted at the time of processing. Unofficial transcripts and copies of other relevant documents may be attached to the application for consideration in advance.

• Knowledge of 7 NICE Framework Workforce Categories.
• Knowledge of business operations, systems requirements and IT processes and technologies.
• Knowledge of information and data analysis and reporting.
• Knowledge of system design and programming principles.
• Knowledge of processes, tools, and Cyber Security frameworks.
• Knowledge of strategic planning and change management.
• Knowledge conducting Risk Assessments of HIPAA, CJIS, and PCI.
• Skill in interpersonal communications and analytical thinking.
• Skill in technical writing.
• Skill in coordinating work projects.
• Ability to perform all the essential functions of the position, with or without accommodations.
• Ability to work in an office environment.

Salary : $94,701 - $144,525