Security Analyst (FL) #2192 – Tallahassee, Florida
This is a contract 4+months plus extension position.
Job Description
The primary function of this position is to provide technical expertise and analysis to assist the Information Security Management Office in their work to establish, implement and monitor the security strategy of the Department. This candidate must have a working knowledge of supporting, monitoring and maintaining an enterprise-level Microsoft environment. This understanding of networked environments will allow the candidate to review, implement and support security-related functions such as vulnerability management, compliance monitoring, and continuous security monitoring.
REQUIRED: Selected candidate must submit to a Level 2 background check, including fingerprinting.
A work sample/test may be required as a part of the interview process. The candidate will be notified if this is a requirement at the time interviews are scheduled.
Primary Job Duties/Tasks
- Serve as a member of the Computer Security Incident Response Team. Duties includes researching incidents, identifying corrective actions, documenting status and coordinating responses to Computer Security Incidents.
2. Complete research and analysis into the security impacts of a variety of technologies, applications (COTS and custom developed) and processes. Provide recommendation that will be used by the Information Security Manager to support purchasing decisions, standards development and risk assessment.
3. Review and evaluate System Security Plans developed for Information Technology Systems within the Department. Assess compliance with existing standards and provide recommendations that will be used by the Information Security Manager to support approval of the plans.
4. Work with the Information Security Manager and Enterprise Architect to identify technologies, processes and tools that can be implemented to support the security architecture.
5. Work in conjunction with the Department’s Patch Management and Configuration Team in identifying secure configurations for standard products. Provide support/information as needed for implementation of secure baselines through package roll out and/or group policy. After implementation of secure baselines, use tools to review and ensure compliance with established baselines.
Knowledge & Experience
- Four years of experience in the work related to the position.
Knowledge, Skills & Abilities
- Submitted candidate must be able to apply common knowledge, skills, and abilities in the following areas:
1. Knowledge in the use of appropriate security controls to protect the confidentiality, integrity and availability of information technology resources.
2. Knowledge of, and experience with, various computing technologies such as, but not limited to: Windows, Windows Server, proxies, firewalls, switches, routers, Transmission Control Protocol/Internet Protocol (TCP/IP)
3. Knowledge of perimeter technologies (firewalls, proxies, intrusion detection/prevention systems (IDS/IPS) and vulnerability management tools.
4. Knowledge in the use of information security practices and standards such as NIST, CIS Critical Security Controls and the Florida Cybersecurity Standards (74-2 Florida Administrative Code). Ability to review, assess and document compliance with standards.
5. Knowledge of Microsoft Systems Center Configuration Manager (SCCM) and other Microsoft support tools/technologies such as Group Policy and PowerShell.
6. Knowledge of the application of operating system security settings through direct manipulation of the registry.
7. Knowledge of Security Information and Event Management (SEIM) tools. Ability to utilize, configure and manage SPLUNK preferred but not required.
8. Skills in applying, analyzing and assessing information systems and security controls.
9. Skilled in the detection of software and hardware security problems.
10. Ability to analyze complex technical architecture for security issues.
11. Ability to be self-motivated, detail-oriented with excellent follow through.
12. Ability to assess and analyze risk and provide recommendations to successfully manage risk.
13. Ability to author documented analysis of systems to verify compliance with security controls.
14. Ability to effectively communicate orally and in writing to a variety of audiences. This includes the ability to communicate professionally with management, to communicate technical issues and concepts to non-technical staff, and to effectively explain security concepts and their benefit.
15. Ability to solve problems independently and with teams and exhibit sound judgement and decision making skills.
Education & Experience Required
- Bachelor’s Degree in Computer Science, Information Systems, Business Administration, Information Security or another related field; or equivalent work experience.
Duties & Responsibilities
Primary Job Duties/Tasks:
- Serve as a member of the Computer Security Incident Response Team. Duties includes researching incidents, identifying corrective actions, documenting status and coordinating responses to Computer Security Incidents.
- Complete research and analysis into the security impacts of a variety of technologies, applications (COTS and custom developed) and processes. Provide recommendation that will be used by the Information Security Manager to support purchasing decisions, standards development and risk assessment.
- Review and evaluate System Security Plans developed for Information Technology Systems within the Department. Assess compliance with existing standards and provide recommendations that will be used by the Information Security Manager to support approval of the plans.
- Work with the Information Security Manager and Enterprise Architect to identify technologies, processes and tools that can be implemented to support the security architecture.
- Work in conjunction with the Department’s Patch Management and Configuration Team in identifying secure configurations for standard products. Provide support/information as needed for implementation of secure baselines through package roll out and/or group policy. After implementation of secure baselines, use tools to review and ensure compliance with established baselines.