THC - Security Analyst (Cybersecurity Analyst III) 25-85

***This position is an internal posting for current THC employees only***

JOB OBJECTIVE:   Performs highly complex cybersecurity analysis and information security work in support of the organization’s enterprise security posture. Responsibilities include the protection of information systems and data through the implementation of proactive security measures, incident detection and response, threat intelligence, vulnerability management, and risk assessment. This position also contributes to the agency’s information governance, awareness, and education initiatives.  Report directly to the Senior IT Systems Administrator as technical lead in developing strategic and tactical plans for systems security.  Work under minimal supervision, with considerable latitude for the use of initiative and independent judgment.

ESSENTIAL DUTIES:

1.      Regularly review user account permissions, group memberships, access controls, and data sharing configurations to ensure compliance with security policies and the principle of least privilege.

2.      Conduct or oversee security risk assessments, vulnerability scans, and penetration tests; provide recommendations for mitigation.

3.      Participate in threat intelligence gathering and apply cyber threat data to enhance organizational defenses.

4.      Lead or assist in cybersecurity incident response activities, including investigation, containment, recovery, and post-mortem forensic analysis and reporting.

5.      Implement and monitor tools, systems, and procedures to safeguard the organization’s digital assets.

6.      Support and guide internal teams on secure software development, configuration hardening, and data protection best practices.

7.      Assist in the development and delivery of cybersecurity training and awareness programs.

8.      Evaluate and recommend new security technologies, tools, and procedures.

9.      Evaluate organizational security practices against relevant regulations and frameworks and provide guidance on achieving or sustaining compliance (e.g., Internal THC Standards and Policies, TCF, NIST, HIPAA, CJIS, etc.).

10.  Produce and maintain documentation, reports, and dashboards related to security events, risks, and initiatives.

11.  Install, configure, and maintain network security and monitoring equipment and cabling (firewalls, SIEM, WAF, IDS/IPS, ASM, web and email filters, etc.)

12.  Install, configure, and maintain physical security and monitoring equipment (security camera systems, lock monitoring and logging systems, alert or notification systems, etc.).

13.  Assist the IRM/ISO in the development of security standards, policies, and procedures for information systems.

14.  Develop and implement a process to routinely review employees and contractors with access to critical infrastructure. This review will determine whether factors such as criminal history or ongoing connections to the government or political apparatus of a foreign adversary could impact their ability to maintain the security or integrity of the infrastructure.

15.  May supervise the work of others.

16.  Adhere to an established work schedule with regular attendance.

17.  Follow all THC safety guidelines/procedures and ethics requirements.

NON-ESSENTIAL DUTIES:

18.  Perform other duties as assigned.

QUALIFICATIONS/REQUIREMENTS (The application must specifically state how each of the following qualifications are met): 

·         Graduation from an accredited four-year college or university with a degree in computer science, computer information systems, management information systems, or a related field (Experience may substitute for education on a year for year basis);

·         Two years of relevant work experience related to the essential duties

·         Experience administering a Microsoft Active Directory environment;

·         Experience administering and maintaining Microsoft Office 365 and related tools;

·         Experience administering and maintaining network equipment (firewalls and switches);

·         Experience and advanced understanding of network protocols and their functions (DNS, DHCP, NTP, FTP, SSH, TLS, etc.);

·         Work experience and understanding of network and host security fundamentals;

·         Experience designing, configuring, and implementing monitoring tools and agents;

·         Must be able to maintain the security and integrity of critical infrastructure as a condition of hire and continued employment in this position;

·         Valid driver’s license, acceptable driving record, and ability to drive a state vehicle; and

·         Required to travel up to 20% of the work period.

Applicants must clearly state in their application how they meet these qualifications to be considered

PREFER:

·         Professional certifications (i.e. OSCP, CISSP, CISA, CCNA/P, ISC2 CC, CompTIA CySa+, CompTIA Pentest+);

·         Experience working with Microsoft Azure;

·         Experience working with Microsoft PowerShell;

·         Experience administering and maintaining Cisco IOS network equipment;

·         Experience with other scripting languages, such as Bash, Perl, and Python.

KNOWLEDGE, SKILLS, AND ABILITIES:

·         Effective verbal and written communication, human relations, and organizational skills;

·         Effective critical thinking skills;

·         Knowledge of one or more programming/scripting languages;

·         Knowledge of Windows server operating systems;

·         Knowledge of database management systems, preferably Microsoft SQL Server;

·         Knowledge of Email and Active Directory systems;

·         Knowledge of networking hardware, including firewalls, routers, and switches;

·         Skill in coordinating and solving problems; in scheduling, testing, installing, and implementing programs; and in troubleshooting computer systems;

·         Skill in providing customer service excellence to both internal and external customers;

·         Skill in operating a personal computer with word processing, database, and spreadsheet software;

·         Ability to troubleshoot problems with computer systems and computer networks;

·         Ability to work in a setting requiring self-motivation/cooperative decision-making and to work effectively with diverse groups of people;

·         Ability to work effectively under pressure and meet strict deadlines while maintaining extreme attention to detail;

·         Ability to multi-task in a fast-paced environment;

·         Ability to adapt successfully and quickly to change and deliver quality results in a timely manner;

·         Ability to plan, organize and work independently, as well as within a team environment;

·         Ability to exercise sound judgment and discretion; and

·         Ability to maintain the highest level of confidentiality.

REGISTRATION, CERTIFICATION, OR LICENSURE:
Must have or obtain a valid Driver’s License and Defensive Driving Course to be able to operate state vehicles.

ENVIRONMENT/PHYSICAL CONDITIONS:  Normal office work environment and may have exposure to dust and environmental allergens consistent with normal business activities and human contact. Mostly sedentary in nature but may involve walking; standing; pulling, and pushing; kneeling, stooping, and bending; performing tasks requiring fine motor skills and coordination; and safely lifting and carrying items weighing up to 30 pounds. Must be able work extended periods at a computer, and may require working extended hours and some evenings, weekends, and overnight, as needed.  Involves safely operating a state vehicle and driving for long distances and traveling by airplane.

REMARKS (Application procedures, Special requirements):  State of Texas application must be submitted through the CAPPS website. Only applicants interviewed will be notified of their selection or non-selection.  Resumes will NOT be accepted in place of a completed application.

The Texas Historical Commission is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, genetic information, age, or disability in recruitment, selection, appointment, training, promotion, retention, or any other personnel action or deny any benefits or participation in programs or activities which it sponsors. 

Section 651.005 of the Government Code requires males, ages 18 through 25, to provide proof of their Selective Service registration or of their exemption from the requirement as a condition of state employment.

As part of the employment process, THC will conduct a driving and criminal background check.  Unsatisfactory information relevant to the position may disqualify the applicant from employment.

Disability access for testing and interview accommodations can be provided upon reasonable notice by contacting Human Resources at 512-305-6729.

THC participates in E-Verify and will provide the Social Security Administration and, if necessary, the Department of Homeland Security with information from each new employee's Form I-9 to confirm work authorization.

Additional Military Crosswalk information can be accessed at:

https://hr.sao.texas.gov/Compensation/MilitaryCrosswalk/MOSC_InformationTechnology.pdf

Veterans: Go to www.texasskillstowork.com for assistance with translating your military work experience and training courses into civilian job terms, qualifications/requirements, and skill sets.

For New Hires/Rehires:  Health insurance is available the 1st of the following month after a 60-day waiting period.

AN EQUAL OPPORTUNITY

AFFIRMATIVE ACTION EMPLOYER