IT PROFESSIONAL - SECURITY (CYBER SECURITY ANALYST)

Company: City of Houston
Location: Houston
Posted on: August 8, 2022

Job Description:

Applications accepted from: ALL PERSONSJob Classification: IT Professional -- Security (Cyber Security Analyst) - - - - - - - - - - - - - - - -Posting Number: -28419 - - - - - - - -Division: Cyber Security - - - - - - - - - - - - - - - - - - - - - -Reporting Location: 611 Walker - - - - - - - - - -Workdays & Hours: Monday - Friday 8:00 a.m. - 5:00 p.m.* *Subject to Change - -***THIS IS NOT A REMOTE POSITION*** - - - - - - - - - - - - - - - - - - - - - - - - - - - -DESCRIPTION OF DUTIES / ESSENTIAL FUNCTIONSDuties, functions and responsibilities of this position include:

• Supports cyber security initiatives through both predictive and reactive analysis
• Performs threat and vulnerability assessments and provides subject matter expertise on appropriate threat mitigation approaches
• Identifies intrusion activity by leveraging alert data from multiple sensors and systems and determines priority for response
• Monitors, evaluates, and assist with the maintenance of assigned security systems in accordance with industry best practices to safeguard internal information systems and databases
• Uses attack signatures and tactics, techniques and procedures (TTPs) to aid in threat detection and discovery
• Conducts basic malware analysis of attacker tools and identifies indicators of compromise (IOC)s
• Collaborates with other Cyber Division and IT team members to develop and implement innovative strategies for monitoring and preventing attacks
• Conducts research on emerging security threats
• Proposes additional components and techniques that could be used to proactively detect and prevent malicious activity
• Manage the SOC mailbox, and monitor and analyze the emails for threats including phishing and malware, and escalates per procedures
• Participates in the investigations of information security incidents and may prepare reports on intrusions as required
• Maintains an understanding of the current threats, vulnerabilities, response and mitigation strategies used to support cyber security operations
• Logs and records all security incidents to internal ticketing system
• Collects malware artifacts safely for analysis and incident investigations
• Examines suspicious emails for malicious content and provide recommendations on remediation actions
• Performs URL/domain analysis to identify and report any malicious indicators associated with the resource and evaluates associated risks
• Provides other services as a key member of the Cyber Division including but not limited to:
  • Information security review and approval of changes to COH networks, servers and end devices in collaboration with the Infrastructure Division
  • Security sensor policies for IDS/IPS, Firewalls, web security gateways and logging
  • Continuous control monitoring including baseline security configuration monitoring
  • Investigations and forensicsWORKING CONDITIONSThere are no major sources of discomfort, i.e., essentially normal office environment with acceptable lighting, temperature and air conditions. Significant time spent using computer display, keyboard, and mouse.Job Requirements:EDUCATION REQUIREMENTSAssociate's degree in Computer Science, Management and Information Systems (MIS), Business or a related field. - System-specific technical certifications may be considered a substitution for Associate's degree. -Experience in IT security, infrastructure or applications may be substituted for the education requirement on a year-for-year basis. -EXPERIENCE REQUIREMENTSAt least 18 months of technology experience in IT security, or supporting security aspects of IT infrastructure or applications teams. -LICENSE REQUIREMENTSMust be able to pass a criminal background check, obtain and maintain federally mandated security clearances where required.The candidate must have the following knowledge, skills and abilities: -
    • Knowledgeable of Cyber Kill Chain and Diamond Model of Intrusion Analysis
    • Knowledge of SIEM, IDS, anti-virus/anti-malware and firewall technologies
    • Understanding of networking and TCP/IP
    • Experience with a wide variety of operating systems: Windows Server, Windows 10, Windows 7, Linux etc.
    • Ability to troubleshoot technical and security related issues
    • Experience working in a rapidly changing, high intensity environment
    • Avid, proactive learner and ability to work well in a team based environment
    • Strong interpersonal and writing skills
    • Candidate required to obtain Security+ certification during first year of employment -**Preference shall be given to eligible veteran applicants provided such persons possess the qualifications necessary for competent discharge of the duties involved in the position applied for, such persons are among the most qualified candidates for the position, and all other factors in accordance with Executive Order 1-6.**SELECTION / SKILLS TESTS REQUIREDDepartment may administer skills assessment test. -SAFETY IMPACT POSITION - - NOIf yes, this position is subject to random drug testing and if a promotional position, candidate must pass an assignment drug test. -SALARY INFORMATIONFactors used in determining the salary offered include the candidate's qualifications as well as the pay rates of other employees in this classification.PAY GRADE: 27 -APPLICATION PROCEDURESOnly online applications will be accepted for this City of Houston job and must be received by the Human Resources Department during active posting period. Applications must be submitted online at: .To view your detailed application status, please log-in to your online profile by visiting: or call (832/393-0204).If you need special services or accommodations, call (832/393-0204). (TTY 7-1-1)If you need login assistance or technical support call 855-524-5627.Due to the high volume of applications received, the Hiring Department will contact you directly, should you be selected to advance in our recruitment process.All new and rehires must pass a pre-employment drug test and are subject to a physical examination and verification of information provided.EOE - Equal Opportunity Employer -The City of Houston is committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, genetic information, veteran status, gender identity, or pregnancy.

Keywords: City of Houston, Houston , IT PROFESSIONAL - SECURITY (CYBER SECURITY ANALYST), Professions , Houston, Texas