Sr. Cybersecurity Analyst

Overview

Technical Recruiter at Ledgent Technology

Reporting to the Manager, Information Security Office, the Senior Cybersecurity Analyst actively works as a cybersecurity resource on multiple complex projects to initiate and drive security activities to ensure networks, systems, and data are protected and available to support the organization's mission to serve the California educational community. Working as part of the core security team, the analyst will collaborate with members of the Security Advisory Committee, peer staff throughout the organization, and external solution partners to establish and enhance security tools, resources, and processes. This includes data protection, incident response, vulnerability management, email gateway security, identity and access management security architecture, network security monitoring, malware defense, and security awareness training. This position also functions as a point of cybersecurity expertise to internal staff and may serve as an official representative of in technical forums, panel discussions, and conference presentations.

Base pay range

$115,000.00 / yr - $140,000.00 / yr

Responsibilities

• Work under limited supervision with members of the Information Security Office (ISO) and extended teams on security solutions and implementations
• Serve as a core member of the Information Security Office (ISO), performing varying security duties including threat awareness, proactive network traffic analysis, incident response, forensic analysis, and resolution of security incidents
• Collaborate with the Security Advisory Committee, segment leaders, and other security experts around the state to develop plans for a Security Operations Center
• Integrate knowledge of network protocols, services, threats, vulnerabilities, mitigation strategies, hardware capabilities, and other information to build a security environment that reduces and mitigates risk
• Evaluate data such as Zeek (Bro) logs, email security logs, netflow data, centralized syslog, authentication logs, and others to detect security incidents; take timely action as appropriate
• Maintain ISO documentation and perform updates as needed
• Lead and complete new ISO projects and initiatives with internal and external stakeholders
• Identify and integrate available threat intelligence feeds with network security monitoring and SIEM services
• Design and implement secure email gateway services and secure identity and access management services
• Perform threat hunting of anomalous activity and monitor / respond to security alerts
• Maintain the vulnerability management asset inventory and produce weekly vulnerability reports and monthly risk status reports
• Identify and partake in approved online training periodically
• Lead incident response efforts with internal and external security personnel and system administrators
• Respond to internal / external notifications (e.g., scanning, hacking, spamming)
• Promote a strong security culture across the organization
• Be on call outside regular business hours on a regular and recurring basis

Key Success Factors

Qualifications

Note : The original description did not list formal qualifications; insert applicable requirements as needed.

Employment details

All qualified applicants will receive consideration for employment without regard to race, color, national origin, age, ancestry, religion, sex, sexual orientation, gender identity, gender expression, marital status, disability, medical condition, genetic information, pregnancy, or military or veteran status. We consider all qualified applicants, including those with criminal histories, in a manner consistent with state and local laws, including the California Fair Chance Act and related ordinances.

J-18808-Ljbffr