Information Security Analyst II

Print (https://www.governmentjobs.com/careers/fairfaxcounty/jobs/newprint/4497754)

Apply



Information Security Analyst II

Salary

$76,117.81 - $126,862.32 Annually

Location

FAIRFAX (EJ32), VA

Job Type

FT Salary W BN

Job Number

24-01188

Department

Information Technology

Opening Date

05/11/2024

Closing Date

5/24/2024 11:59 PM Eastern

Pay Grade

S27

Posting Type

Open to General Public

• Description

• Benefits

• Questions

Job Announcement

Serves as an analyst in the field of cyber security and privacy with the Information Security Office, Security Architecture organizational unit, and maintains responsibility for assessing cyber threats, responding to cyber incidents, responding to agency inquiries, and implementing and administering cyber security tools and systems. The successful candidate will work closely with our cloud engineering and security teams to design, implement, and maintain cloud security solutions for our enterprise. The ideal candidate should have a background in network and cloud security, container and virtual network security, and SIEM technologies.

Duties may include:

• Implements, administers, and supports security systems to include host endpoint protection, data loss prevention, network-based intrusion detection and prevention systems, application layer firewalls, remote access platforms, vulnerability management, forensics utilities, and other infrastructure deployed and maintained by the ISO.

• Designs, implements, and maintains cloud security solutions and best practices.

• Participates in internal and third-party security assessments and audits requiring interaction with agencies to remediate discovered system vulnerabilities.

• Administers and uses a Security Information and Event Management (SIEM) system and other security dashboards to monitor, research, and respond to cyber security related events and incidents due to data loss or system breach, malicious code, system configuration, or other issues.

• Coordinates daily with other Department of Information Technology (DIT) divisions and Agency Information Security Coordinators and IT Analysts, and external entities.

• Participates in fulfilling data searches to include legal electronic files preservation, Freedom of Information Act (FOIA), other data requests, investigations, and forensics.

• Acts as a general technical and operational advisor for cyber security on behalf of the ISO.

• Stays abreast of current and evolving cyber security trends and seeks to acquire or maintain industry certifications.

• Supports and responds to emergency IT events and support county emergency operations center activations as needed.

• Performs other duties as assigned.

Position may be underfilled as a Information Security Analyst I; the Underfill Requirements are stated below in the Employment Standards section.

Illustrative Duties

(The illustrative duties listed in this specification are representative of the class but are not an all-inclusive list. A complete list of position duties and unique physical requirements can be found in the position job description.)

• Monitors, analyzes, and evaluates county IT systems, data, and environments and operations to ensure an appropriate level of information/cyber security compliance.

• Provides maintenance, problem resolution, and analysis of security exposures, events and opportunities on all County IT and communications environments, and IT/Cyber security systems and tools;

• Performs technical tasks for the implementation, operation, and maintenance of IT/cyber security systems and tools;

• Evaluates IT/cyber security functions and implements strategies for county systems and environments.

• Recommends changes and enhancements as needed to fulfill security compliance;

• Coordinates with DIT peers and IT analysts in agencies on the design, implementation, operation, and maintenance of county information and communications systems and infrastructure and controls;

• Advises and participates in the development, testing, implementation, and maintenance of IT applications, systems interfaces with other systems;

• Assists in the design, development, testing, implementation, and maintenance of IT/cyber security solutions and functions;

• Generates security management reports;

• Prepares and maintains technical documentation of cyber security solutions and prepares standards and procedures;

• Monitors software modifications and security controls throughout the system;

• Assists in the investigation of attempted or actual IT/cyber security violations, events, e-discovery, FOIA and other investigations;

• Trains and advises staff in the use of IT/cyber security platforms and solutions;

• Develops and conducts information/cyber security awareness training;

• Performs systems access controls and privileges for enterprise-systems as assigned;

• Provides guidance, training, and technical assistance to less experienced IT/cyber security analysts;

• Evaluates technical security products and recommends their acquisition and implementation.

Employment Standards

MINIMUM QUALIFICATIONS:

Any combination of education, experience, and training equivalent to the following: (https://www.fairfaxcounty.gov/hr/equivalencies-education-and-experience)

(Click on the aforementioned link to learn how Fairfax County interprets equivalencies for "Any combination, experience, and training equivalent to")

Graduation from an accredited four-year college or university with a bachelor's degree in a computer or information science discipline, IT/cyber security, network or IT systems administration, engineering; or a bachelor's degree in a business or related field that has been supplemented by at least 18 credit hours of intermediate computer science coursework; plus one year of experience in information security systems, network security, or cyber security.

UNDERFILL REQUIREMENTS:

This vacancy may be underfilled at the level of Information Security Analyst I (https://www.governmentjobs.com/careers/fairfaxcounty/classspecs/969630) (Grade S24, $66,103.86 - $110,173). The employment standards for the Information Security Analyst I are: Any combination of education, experience and training equivalent to the following: Graduation from an accredited four-year college or university with a bachelor's degree in a computer or information science discipline, IT/cyber security, network or IT systems administration, engineering; or a bachelor's degree in a business or related field that has been supplemented by at least 12 credit hours of intermediate computer science coursework. Click here to view the complete details and KSAs for the Information Security Analyst I (https://www.governmentjobs.com/careers/fairfaxcounty/classspecs/969630) . Upon completion of an underfill agreement (which will require that the employee meet the employment standards stated above in addition to obtaining competencies defined by the hiring agency) the employee will be elevated to the level of Information Security Analyst II.

NECESSARY SPECIAL REQUIREMENTS:

The appointee to this position will be required to complete a criminal background check to the satisfaction of the employer.

PREFERRED QUALIFICATIONS:

Knowledge and experience with implementing and assessing compliance with information technology and privacy protection regulation and standards such as HIPAA, PCI-DSS, CJIS, VA Code and Federal PII protections, and other institutional technology standards and best practices defined by NIST, ISO 27000 series, OWASP, and SANS Top 20 Security Controls. Understanding and experience with network and security architecture, multiple operating system platforms, databases, web applications, and other evolving mobile and cloud technologies, to include but not limited to the following: malware inspection, traditional and application layer firewalls, VPN, identity management systems, data loss prevention, and network and host-based intrusion detection/prevention systems. Experience with identity management and other access controls.

PHYSICAL REQUIREMENTS:

Work is generally sedentary performed in a normal work environment. All duties performed with or without reasonable accommodations.

SELECTION PROCEDURE:

Panel interview and may include exercise.

The population of Fairfax County is very diverse where 38.7% of residents speak a language other than English at home ( Spanish, Asian/Pacific Islander, Indo-European, and others (https://www.fairfaxcounty.gov/demographics/fairfax-county-general-overview) ) and we encourage candidates bilingual in English and a foreign language to apply to this opportunity.

Fairfax County Government prohibits discrimination on the basis of race, color, religion, national origin, sex, pregnancy, childbirth or related medical conditions, age, marital status, disability, sexual orientation, gender identity, genetics, political affiliation, or military status in the recruitment, selection, and hiring of its workforce.

Reasonable accommodations are available to persons with disabilities during application and/or interview processes per the Americans with Disabilities Act. Contact 703-324-4900 for assistance. TTY 703-222-7314. DHREmployment@fairfaxcounty.gov EEO/AA/TTY.

#LI-JT1