IT Security Analyst
Company: City of Raleigh
Location: Raleigh
Posted on: March 19, 2023
Job Description:
Job Description
This position is being re-advertised. Candidates who have
previously submitted an application and were referred to the hiring
manager are still being considered and do not need to reapply.
Are you looking to take your cybersecurity career to the next level
and have fun doing it? Come join our Enterprise IT Security Team at
the City of Raleigh! The City of Raleigh is seeking an experienced
Security Analyst to join our world class team. We are seeking an
individual with good security acumen, an understanding of current
technology/processes, and a positive mindset for our Security
Analyst position.
This position provides centralized coordination, administration and
support for the many elements of a distributed security
infrastructure operated by the City of Raleigh. This position will
use and apply the knowledge of various technologies to help the
City meet its business requirements in a secure manner while
managing risk.
The position reports directly to the Chief Information Security
Officer and works closely with teams within the Information
Technology department as well as other departments throughout the
city. This position will be on the front lines of cybersecurity
working with a team of highly passionate and hard-working people
that provide critical security services for the City of
Raleigh.
The IT Department plays a major role in the City's recognition for
innovation. The department has recently won the following
awards:
- 2019 Drexel LeBow Analytics 50 Award for analytics
innovation
- 2019 IDC Smart Cities North America Award for Urban Planning
and Land Use Raleigh is recognized frequently in the national media
for a variety of measures of the health of our community. Some of
those accolades include:
- Third Best City to Work In (Fortune, 2019)
- Third Best State Capital in Which to Live (WalletHub,
2019)
- Second Place in Livability.com's 2019 Top 100 Best Places to
Live The City employs more than 4,100 staff across 20 departments
to support its nearly 490,000 residents and is consistently ranked
as one of the top locations in the nation to live, work and
play.
Duties and Responsibilities
- Engage in front line day-to-day security operations and support
of the customers, partners, and systems involved in various
organizational processes. Participate in the planning and design of
security architecture and security documents (policies, standards,
baselines, guidelines, and procedures).
- Work within our existing security technology portfolio to
report violations, implement security improvements, evaluate trends
and anticipate requirements.
- Responsible for monitoring networks and systems for suspicious
activity, to identify possible security threats, detect risks to
the organization, identify sources and methods of attack, and
locate and preserve electronic evidence as needed. Monitor cyber
information, events, alerts, and ensure timely communication and
resolution of support tickets and related project work.
- Participate in investigations into problematic activity and in
the design and execution of vulnerability assessments, penetration
tests, and security audits.
- Manage, maintain, operate, and analyze a comprehensive suite of
enterprise security tools to ensure the establishment and
maintenance of the desired security posture. Maintain operational
configurations of all in-place security solutions as per the
established baselines.
- Utilize a variety of systems and services for investigation,
analysis, containment, and remediation, including network and
vulnerability scanners, SIEM tools and IAM platforms.
- Analyze, recommend, develop, implement and maintain systems and
processes that protect the organizations data and operations.
- Review logs and reports to interpret the implications of that
activity and devise plans for appropriate resolution. Lead
investigations into problematic activity as a first responder to
security incidents.
- Develop, maintain, and ensure accuracy of documentation (i.e.,
SOPs) in support of the City's Information Security Program.
- Maintain up-to-date detailed knowledge of the IT security
industry including awareness of new or revised security solutions,
improved security processes, and the development of new attacks and
threat vectors.
Typical Qualifications
Education and Experience
Bachelor's degree in information technology or directly related
field and five years of professional experience in area related to
assignment.
OR
An equivalent combination of education and experience sufficient to
successfully perform the essential duties of the job such as those
listed above, unless otherwise subject to any other requirements
set forth in law or regulation.
Licensing/Certifications preferred:
- CompTIA Security+
- GIAC Information Security Fundamentals
- Microsoft Certified Systems Administrator: Security Technical
and Professional Expertise preferred:
- Two (2) years of IT security experience. At least 1 year of
experience working in a SOC environment or analyzing system and
network logs for security and configuration issues preferred.
- Experience utilizing enterprise security technologies such as
SIEM, EDR, DLP, IDS, eDiscovery, Threat & Vulnerability Detection,
Cyber Intelligence Platforms, IAM and other industry
technologies.
- Understanding of enterprise environments, specifically
cloud-based and hybrid cloud environments.
- Familiarity with common cyber intrusion frameworks such as
MITRE ATT&CK, Cyber Kill Chain, or Diamond Model.
- Hands-on troubleshooting, analysis, and technical expertise to
resolve incidents and/or service requests.
- Strong written communication skills and the ability to
articulate technical security analysis to a non-technical
audience.
Additional Information
Knowledge of:
- Principles and practices of information technology
management.
- Best practices, trends and emerging technologies.
- Principles and methods of qualitative and quantitative
research.
- Principles and applications of critical thinking and
analysis.
- Principles and practices of group facilitation and building
consensus.
- Applicable federal, state and local laws, codes, regulations
(based on assignment).
- Customer service principles.
- Specialized equipment relevant to area of assignment.
- Modern office technology. Skill In:
- Overseeing the implementation and adherence to quality
assurance and standards.
- Interpreting, monitoring and reporting financial information
and statistics.
- Providing consultation and serving as a department liaison and
subject matter expert.
- Monitoring compliance with applicable plans, standards,
regulations and contracts.
- Researching industry trends, solutions and best practices.
- Reading, analyzing, evaluating, interpreting and summarizing
written materials and statistical data.
- Exercising political acumen, tact and diplomacy.
- Managing and overseeing information technology projects,
processes and functional operations.
- Interpreting and applying applicable laws, codes, regulations
and standards (based on assignment).
- Providing excellent customer service.
- Utilizing a computer and relevant software applications.
- Utilizing communication and interpersonal skills as applied to
interaction with coworkers, supervisors, the general public and
others to sufficiently exchange or convey information and to
receive work direction. ADA and Other Requirements:
Positions in this class typically require fingering, grasping,
talking, hearing, seeing and repetitive motions.
Sedentary Work:
Exerting up to 10 pounds of force occasionally and/or a negligible
amount of force frequently or constantly to lift, carry, push, pull
or otherwise move objects including the human body. Sedentary work
involves sitting most of the time. Jobs are sedentary if walking
and standing are required only occasionally and all other sedentary
criteria are met.
Working Conditions:
Work is routinely performed in an indoor, office environment.
Note:
This job classification description is intended to be generic in
nature. It is not necessarily an exhaustive list of all duties and
responsibilities. The essential duties, functions and
responsibilities and Fair Labor Standards Act (FLSA) designation
may vary based on the specific tasks assigned to the position.
Keywords: City of Raleigh, Raleigh , IT Security Analyst, Professions , Raleigh, North Carolina
Didn't find what you're looking for? Search again!
Loading more jobs...