IT Security Analyst

Company: City of Raleigh
Location: Raleigh
Posted on: March 19, 2023

Job Description:

Job Description

This position is being re-advertised. Candidates who have previously submitted an application and were referred to the hiring manager are still being considered and do not need to reapply.

Are you looking to take your cybersecurity career to the next level and have fun doing it? Come join our Enterprise IT Security Team at the City of Raleigh! The City of Raleigh is seeking an experienced Security Analyst to join our world class team. We are seeking an individual with good security acumen, an understanding of current technology/processes, and a positive mindset for our Security Analyst position.

This position provides centralized coordination, administration and support for the many elements of a distributed security infrastructure operated by the City of Raleigh. This position will use and apply the knowledge of various technologies to help the City meet its business requirements in a secure manner while managing risk.

The position reports directly to the Chief Information Security Officer and works closely with teams within the Information Technology department as well as other departments throughout the city. This position will be on the front lines of cybersecurity working with a team of highly passionate and hard-working people that provide critical security services for the City of Raleigh.

The IT Department plays a major role in the City's recognition for innovation. The department has recently won the following awards:

• 2019 Drexel LeBow Analytics 50 Award for analytics innovation
• 2019 IDC Smart Cities North America Award for Urban Planning and Land Use Raleigh is recognized frequently in the national media for a variety of measures of the health of our community. Some of those accolades include:
  • Third Best City to Work In (Fortune, 2019)
  • Third Best State Capital in Which to Live (WalletHub, 2019)
  • Second Place in Livability.com's 2019 Top 100 Best Places to Live The City employs more than 4,100 staff across 20 departments to support its nearly 490,000 residents and is consistently ranked as one of the top locations in the nation to live, work and play.
    Duties and Responsibilities
    
    • Engage in front line day-to-day security operations and support of the customers, partners, and systems involved in various organizational processes. Participate in the planning and design of security architecture and security documents (policies, standards, baselines, guidelines, and procedures).
    • Work within our existing security technology portfolio to report violations, implement security improvements, evaluate trends and anticipate requirements.
    • Responsible for monitoring networks and systems for suspicious activity, to identify possible security threats, detect risks to the organization, identify sources and methods of attack, and locate and preserve electronic evidence as needed. Monitor cyber information, events, alerts, and ensure timely communication and resolution of support tickets and related project work.
    • Participate in investigations into problematic activity and in the design and execution of vulnerability assessments, penetration tests, and security audits.
    • Manage, maintain, operate, and analyze a comprehensive suite of enterprise security tools to ensure the establishment and maintenance of the desired security posture. Maintain operational configurations of all in-place security solutions as per the established baselines.
    • Utilize a variety of systems and services for investigation, analysis, containment, and remediation, including network and vulnerability scanners, SIEM tools and IAM platforms.
    • Analyze, recommend, develop, implement and maintain systems and processes that protect the organizations data and operations.
    • Review logs and reports to interpret the implications of that activity and devise plans for appropriate resolution. Lead investigations into problematic activity as a first responder to security incidents.
    • Develop, maintain, and ensure accuracy of documentation (i.e., SOPs) in support of the City's Information Security Program.
    • Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
      Typical Qualifications
      Education and Experience
      Bachelor's degree in information technology or directly related field and five years of professional experience in area related to assignment.
      
      OR
      
      An equivalent combination of education and experience sufficient to successfully perform the essential duties of the job such as those listed above, unless otherwise subject to any other requirements set forth in law or regulation.
      
      Licensing/Certifications preferred:
      • CompTIA Security+
      • GIAC Information Security Fundamentals
      • Microsoft Certified Systems Administrator: Security Technical and Professional Expertise preferred:
        • Two (2) years of IT security experience. At least 1 year of experience working in a SOC environment or analyzing system and network logs for security and configuration issues preferred.
        • Experience utilizing enterprise security technologies such as SIEM, EDR, DLP, IDS, eDiscovery, Threat & Vulnerability Detection, Cyber Intelligence Platforms, IAM and other industry technologies.
        • Understanding of enterprise environments, specifically cloud-based and hybrid cloud environments.
        • Familiarity with common cyber intrusion frameworks such as MITRE ATT&CK, Cyber Kill Chain, or Diamond Model.
        • Hands-on troubleshooting, analysis, and technical expertise to resolve incidents and/or service requests.
        • Strong written communication skills and the ability to articulate technical security analysis to a non-technical audience.
          Additional Information
          Knowledge of:
          • Principles and practices of information technology management.
          • Best practices, trends and emerging technologies.
          • Principles and methods of qualitative and quantitative research.
          • Principles and applications of critical thinking and analysis.
          • Principles and practices of group facilitation and building consensus.
          • Applicable federal, state and local laws, codes, regulations (based on assignment).
          • Customer service principles.
          • Specialized equipment relevant to area of assignment.
          • Modern office technology. Skill In:
            • Overseeing the implementation and adherence to quality assurance and standards.
            • Interpreting, monitoring and reporting financial information and statistics.
            • Providing consultation and serving as a department liaison and subject matter expert.
            • Monitoring compliance with applicable plans, standards, regulations and contracts.
            • Researching industry trends, solutions and best practices.
            • Reading, analyzing, evaluating, interpreting and summarizing written materials and statistical data.
            • Exercising political acumen, tact and diplomacy.
            • Managing and overseeing information technology projects, processes and functional operations.
            • Interpreting and applying applicable laws, codes, regulations and standards (based on assignment).
            • Providing excellent customer service.
            • Utilizing a computer and relevant software applications.
            • Utilizing communication and interpersonal skills as applied to interaction with coworkers, supervisors, the general public and others to sufficiently exchange or convey information and to receive work direction. ADA and Other Requirements:
              Positions in this class typically require fingering, grasping, talking, hearing, seeing and repetitive motions.
              
              Sedentary Work:
              Exerting up to 10 pounds of force occasionally and/or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects including the human body. Sedentary work involves sitting most of the time. Jobs are sedentary if walking and standing are required only occasionally and all other sedentary criteria are met.
              
              Working Conditions:
              Work is routinely performed in an indoor, office environment.
              
              Note:
              This job classification description is intended to be generic in nature. It is not necessarily an exhaustive list of all duties and responsibilities. The essential duties, functions and responsibilities and Fair Labor Standards Act (FLSA) designation may vary based on the specific tasks assigned to the position.

Keywords: City of Raleigh, Raleigh , IT Security Analyst, Professions , Raleigh, North Carolina