What are the responsibilities and job description for the IT Security Analyst (ERB #10105307) position at State of New Mexico?
Posting Details
THIS POSITION REPORTS TO THE SANTA FE OFFICE AND IS NOT ELIGIBLE FOR TELEWORK.
THIS POSTING WILL BE USED FOR ONGOING RECRUITMENT AND MAY CLOSE AT ANY TIME. APPLICANT LISTS MAY BE SCREENED MORE THAN ONCE.
Why does the job exist?
This position will assist and provide back up to the IT Compliance and Security Analyst. The position will be responsible for following the agency's security posture, helping to share the many tasks related to keeping NMERB Environment patched, working to move our security tool set forward. Some of the position duties are as follows:
The key responsibilities of the position are as follows:
NMERB Staff.
Ideal Candidate
NMERB Staff.
Minimum Qualification
Bachelor's degree in Computer Science, Management Information Systems (MIS), Information Technology, Engineering, or similar technical degree and two (2) years of experience in IT security or compliance validation (e.g., HIPAA, PCI). Any combination of education from an accredited college or university in a related field and/or direct experience in this occupation totaling six (6) years may substitute for the required education and experience. A certificate in IT security/forensics (e.g., CISSP, CEH, CCFP, CCSP, HCISPP, SSCP) or regulated compliance (e.g., PCIP, ASV, ISA, QSA) can be used to substitute one (1) year of experience.
Employment Requirements
Must possess and maintain a valid Driver's License. Must possess and maintain a current Defensive Driving Certificate from the State of New Mexico or must pass and receive Defensive Driving Course Certification as a condition of continued employment. Pre-employment background investigation is required and is conditional pending results.
Working Conditions
Work is performed in an office setting with exposure to Visual/Video Display Terminal (VDT) and extensive phone and personal computer usage. Direct client interaction and some travel may be required.
Supplemental Information
Do you know what Total Compensation is? Click here
Agency Contact Information: Melinda Garcia. Email
For information on Statutory Requirements for this position, click the Classification Description link on the job advertisement.
Bargaining Unit Position
This position is not covered by a collective bargaining agreement.
THIS POSITION REPORTS TO THE SANTA FE OFFICE AND IS NOT ELIGIBLE FOR TELEWORK.
THIS POSTING WILL BE USED FOR ONGOING RECRUITMENT AND MAY CLOSE AT ANY TIME. APPLICANT LISTS MAY BE SCREENED MORE THAN ONCE.
Why does the job exist?
This position will assist and provide back up to the IT Compliance and Security Analyst. The position will be responsible for following the agency's security posture, helping to share the many tasks related to keeping NMERB Environment patched, working to move our security tool set forward. Some of the position duties are as follows:
- Assist in educating staff on best security practices and procedures.
- Assist with the monitoring all ERB servers and endpoints daily using security tools and Indicators of Compromise (IOCs) to quickly detect and prevent potential threats from escalating across the network.
- Conduct regular patching and testing of Windows and third-party system patches to ensure system security.
- Respond to and triage lower-level security incidents, escalating, as necessary.
- Contribute to security policy reviews and identify weaknesses in existing policies.
- Support data classification efforts and audit user accounts, permissions, and identify weak passwords.
- Assist in recommending CIS Benchmarks for new systems to ensure compliance with security standards.
- Participate in monthly security meetings and audits to review security posture and identify areas for improvement.
- Contribute to the development and recommendation of security policies and procedures.
The key responsibilities of the position are as follows:
- Assist in educating staff on best security practices and procedures.
- Assist with the monitoring all ERB servers and endpoints daily using security tools and Indicators of Compromise (IOCs) to quickly detect and prevent potential threats from escalating across the network.
- Conduct regular patching and testing of Windows and third-party system patches to ensure system security.
- Respond to and triage lower-level security incidents, escalating, as necessary.
- Contribute to security policy reviews and identify weaknesses in existing policies.
- Support data classification efforts and audit user accounts, permissions, and identify weak passwords.
- Assist in recommending CIS Benchmarks for new systems to ensure compliance with security standards.
- Participate in monthly security meetings and audits to review security posture and identify areas for improvement.
- Contribute to the development and recommendation of security policy and procedures.
- Participate in DBA Wind-down activities, running SQL Statements, refreshing non-prod environments, rebooting database.
NMERB Staff.
Ideal Candidate
NMERB Staff.
Minimum Qualification
Bachelor's degree in Computer Science, Management Information Systems (MIS), Information Technology, Engineering, or similar technical degree and two (2) years of experience in IT security or compliance validation (e.g., HIPAA, PCI). Any combination of education from an accredited college or university in a related field and/or direct experience in this occupation totaling six (6) years may substitute for the required education and experience. A certificate in IT security/forensics (e.g., CISSP, CEH, CCFP, CCSP, HCISPP, SSCP) or regulated compliance (e.g., PCIP, ASV, ISA, QSA) can be used to substitute one (1) year of experience.
Employment Requirements
Must possess and maintain a valid Driver's License. Must possess and maintain a current Defensive Driving Certificate from the State of New Mexico or must pass and receive Defensive Driving Course Certification as a condition of continued employment. Pre-employment background investigation is required and is conditional pending results.
Working Conditions
Work is performed in an office setting with exposure to Visual/Video Display Terminal (VDT) and extensive phone and personal computer usage. Direct client interaction and some travel may be required.
Supplemental Information
Do you know what Total Compensation is? Click here
Agency Contact Information: Melinda Garcia. Email
For information on Statutory Requirements for this position, click the Classification Description link on the job advertisement.
Bargaining Unit Position
This position is not covered by a collective bargaining agreement.