Cyber Security Analyst

Infojini Logo
Infojini
Tallahassee, FL, United States
  • Research
  • Applications have closed

Job Description

  • Assists with planning, implementing, and tuning the Department’s Managed Security Services, Security Information and Events Management (SIEM), and vulnerability management.
  • Supports NextGen Firewall security tools and maintains the site block list.
  • Supports and maintains endpoint detection and response and antivirus software functionality on servers and client systems.
  • Monitors Intrusion Detection/Prevention Systems (IDS/IPS) for information security threats and advises or participates in response actions.
  • Acts as a member of the Computer Security Incident Response Team (CSIRT).
  • Supports administration of secure messaging and second-factor authentication capabilities.
  • Develops and maintains technical specifications, standards, procedures, and systems documentation.
  • Analyzes, troubleshoots, and resolves antivirus software issues with minimal impact on users.
  • Researches and recommends appropriate technical solutions to meet functional requirements.
  • Provides recommendations for possible process improvements within the Department’s information security team.
  • Works independently or as a team member on multiple IT security projects and occasionally as a project leader.
  • Works on large, complex security issues or projects that require increased skill in multiple IT functional areas.

Qualifications:

  • A bachelor’s or master’s degree from an accredited college or university in Computer Science, Information Systems, or other related fields is required. Relevant experience may be substituted for education on a year-for-year basis when applicable.
  • Five (5) or more years of server or network administration experience.
  • Three (3) or more years of information security administration experience in an enterprise environment with 1,000 or more users.
  • Three (3) or more years of SIEM experience.
  • Three (3) or more years of vulnerability management experience.
  • Knowledge of security issues, techniques, and implications across all existing computer platforms;
  • Experience maintaining and supporting third-party antivirus applications.

Preferred Qualifications:

  • Three (3) or more years of experience administering Splunk or similar SIEM.
  • One (1) or more years of experience using Microsoft Defender products.
  • One (1) or more years of experience working with IDS/IPS.
  • One (1) or more years of experience using Office 365 Data Loss Prevention (DLP).
  • Preparing status reports and providing management briefings.
  • Knowledge of IT standards in a criminal justice environment.
  • Responding to security threats in a criminal justice environment.
Apply for job