Cybersecurity Analyst III

$10,750 - $80,174/Yr

Texas Health and Human Services - Austin, TX

posted 4 months ago

Full-time - Mid Level
Austin, TX
Social Assistance

About the position

The Cybersecurity Analyst III position at the Health and Human Services Commission (HHSC) involves performing advanced cybersecurity analysis work at a senior level. This role is critical in providing guidance for strategic and tactical cybersecurity operations planning and implementation within the HHSC Information Security Office and the Enterprise Information Security Office. The analyst will oversee IT cybersecurity operations, delivery, engineering, and architecture for the enterprise, ensuring the protection of cybersecurity assets and the delivery of essential services such as incident detection, incident response, threat assessment, cyber intelligence, software security, and vulnerability assessment services. In this role, the analyst will manage the Cybersecurity Operations Center (CSOC), which encompasses the people, processes, and technologies necessary for providing situational awareness through the detection, containment, and remediation of cybersecurity threats. The position requires working under limited supervision, allowing for considerable initiative and independent judgment. The analyst may also assign and supervise the work of others, contributing to the development of the cybersecurity team. Key responsibilities include monitoring and analyzing cybersecurity alerts from various tools and systems, evaluating network and system security configurations, and developing reporting metrics from security toolsets. The analyst will also provide direction in cybersecurity operations planning, maintain cybersecurity infrastructure, and develop incident response workflows. Additionally, the role involves conducting vulnerability scans, managing CSOC processes, and providing leadership to other cybersecurity analysts. The position requires a strong understanding of cybersecurity legislation, regulations, and best practices, as well as the ability to communicate effectively with various stakeholders.

Responsibilities

  • Monitors and analyzes cybersecurity alerts from cybersecurity tools, network devices, and information systems.
  • Evaluates network and system security configuration for best practices and risk-based access controls.
  • Performs direct analysis and configuration of security tools and operational systems to ensure successful integration within the enterprise environments.
  • Assesses established security policy criteria against actual operational functions to ensure success criteria of data security controls and processes.
  • Develops repeatable reporting metrics and data presentations from numerous security toolsets, including SIEM logs and Packet Capture Analysis.
  • Conducts breach readiness assessments and designs, tests, and practices breach management response.
  • Provides direction and guidance in strategic and tactical cybersecurity operations planning and implementation for the HHSC Information Security Office and the Enterprise Information Security Office.
  • Monitors and maintains cybersecurity infrastructure and policies to protect information systems from unauthorized use.
  • Develops incident response and discovery workflows to speed breach detection timeframes.
  • Oversees breach management processes and policies, information controls, secure communications, and post-breach remediation and security.
  • Enhances and improves the CSOC Program while providing technical expertise to cybersecurity staff.
  • Leads the establishment and implementation of the CSOC strategic plan to mitigate risks while complying with legal, statutory, contractual, and internally developed requirements.
  • Serves as the technical liaison between the cybersecurity operations function and other IT departments and agency business units.
  • Engages key business and IT stakeholders as needed and represents the agency at various meetings and conferences.
  • Identifies and analyzes possible data loss or malicious breach using cybersecurity tools and processes.
  • Performs proactive research approaches to plan for new cybersecurity risks and provides security guidance to IT Operations initiatives.
  • Monitors the IT cybersecurity operations, delivery, engineering, and architecture for the enterprise.
  • Performs vulnerability scans of networks and applications to assess effectiveness and identify weaknesses.
  • Consults with end users to discuss issues such as computer data access needs and security violations.
  • Reviews, develops, and delivers cybersecurity awareness training and promotes security awareness.
  • Manages the CSOC processes and technologies to provide awareness through the detection, containment, and remediation of cybersecurity threats.
  • Develops a state-of-the-art situational watch room, combining analysts, management, and executive-level dashboards.
  • Maintains security surveillance of network traffic and system events for all critical infrastructure components.
  • Provides leadership to other cybersecurity analysts in the performance of their duties and tactically develops staff for operational tasks.

Requirements

  • Minimum of 4-plus years of combined experience in information technology, security, risk, compliance management, assessment, research and/or consulting.
  • Experience working with technologies such as IDS/IPS, SIEM, HIDS, HIPS, Antivirus, and Vulnerability Scanning.
  • Graduation from an accredited four-year college or university with major coursework in information technology security, computer information systems, computer science, management information systems, or a related field is strongly preferred.
  • Certifications like Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or similar certifications are preferred.

Nice-to-haves

  • Knowledge of Texas state government and its information systems.
  • Knowledge of laws, rules, and regulations relevant to information technology in Texas.
  • Knowledge of industry accepted software engineering practices and life cycle methods.
  • Skill in analyzing complex data and synthesizing large amounts of information.
  • Skill in preparing, interpreting, and presenting complex statistical and information analysis reports.

Benefits

  • Full-time position with a competitive salary range of $6,681.16 - $10,750.00 a month.
  • Opportunity for professional development and growth within the organization.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service