Job Description
Cyber Security Regional Analyst - Western Region
The Secretary of the Commonwealth (SEC) is the principal public information officer for the
Commonwealth of Massachusetts. The Secretary's Information Technology Division has an
opening for a regional Cyber Security Analyst with a comprehensive understanding of network
security operations, Cyber Security tools, intrusion detection, and secured networks. This
customer facing, consulting role requires assisting in analyzing the environment, coordinating
data gathering and helping to generate solutions on a day-to-day basis.
Role:
The Cyber Security Analyst will be a representative of the Cyber Security Team from IT Division
of the Secretary's Office and will act as a liaison to the local city and town clerks and IT
departments. He/she will help plan, implement, and support security solutions at multiple
locations around the state.
Under the direction of the Program Team Leader and the Cyber Security Manager, the Cyber
Security Analyst will assess security and related risks to the city and town election office locations,
assets, and employees, and make recommendations for mitigation strategies that will decrease
risk. They will assist in maintaining the confidentiality, integrity, and availability of computer
workstations, servers, and local area networks.
They will conduct frequent training and tabletop exercises with various groups regionally.
Primary Responsibilities:
The Cyber Security Analyst will be responsible for dissemination of security information to city
and town Clerk offices and act as a conduit back to the Secretary's Office to complete the
communication loop.
• Travel daily to regionally designated municipal offices to work directly with election
clerks and IT resources
• Conduct regular assessments to ensure authorized systems are operating securely
and are in compliance with security policies and procedures
• Analyze vulnerability results, and assist with the remediation as necessary
• Provide and deliver Cyber Security training to small and medium size groups
• Conduct and lead Cyber Security tabletop exercises with small and medium size groups
Technical Qualifications:
Education and Experience
• Bachelor's degree or higher and at least 4 years IT experience with a minimum of 2
years Cyber Security Information experience
• Completion or working on a professional certification is a plus:
• Certified Information Systems Security Professional (CISSP)
• CISA - Certified Information Systems Auditor (CISA)
• CompTIA Security +
• Experience with security in a Windows environment
• Familiarity with basic networking technologies
• Experience in threat management and assessment as it relates to physical security
• Experience with corporate security risk assessment, analysis, and mitigating controls
• Experience with endpoint security solutions, including file integrity monitoring, white listing,
and data loss prevention
Personal Attributes:
• Must have valid Massachusetts driver's license, and reliable personal vehicle for
regional transportation
• Ability to attend meetings in Boston as required
• Ability to work and complete assignments remotely as needed between municipal location
visits
• Strong oral and written communication skills
• Highly self-motivated and self-directed, with keen attention to detail
• Excellent analytical and problem solving skills
o Uses problem solving techniques such as root cause analysis to resolve issues
• Ability to work independently and on multiple projects simultaneously
• Ability to explain network and security concepts to both fellow technical staff, and to
non-technical staff
• Comfortable with presenting policies and training on security best practices
• Strong organizational and documentation skills
• Demonstrates an interest in working hard in a fast-paced environment, enjoys
challenges, and has fun while doing it
• Collaborates and assumes a technical leadership role when required