Cybersecurity Analyst Iii

Cybersecurity Analyst III (Statewide Security Services Program Manager)

0321/B27

Army-17C, 25B; Navy-IT, 682X; Coast Guard-IT; Marine Corps-0631, 0679, 0681, 8055; Air Force-3D0X3

Exempt

1

Office of the Chief Information Security Office/Security Services

$6,682- $8,750/ monthly

Regular

40

This position may be eligible for flexible work hours and/or a hybrid work schedule if certain program guidelines are met; working arrangements may change at any time at the sole discretion of the agency.

Occasional

300 West 15th Street, #1300 / Austin, Texas 78701

https://dir.texas.gov/

People and Culture Office

(512) 475-4957 or (512) 463-5920

• Select “Apply Online” to apply for the job at https://capps.taleo.net/careersection/ex/jobsearch.ftl?lang=en

• You must create a CAPPS Career Section candidate profile or be logged in to apply.

• Update your profile and apply for the job by navigating through the pages and steps.

• Once ready, select “Submit” on the “Review and Submit” page.

• If you have problems accessing the CAPPS Career Section, please email the CAPPS Recruiting Help Desk at capps.recruiting@cpa.texas.gov

• Applicants must provide in-depth information in the EXPERIENCE & CREDENTIALS section to demonstrate how they meet the position qualifications. Incomplete applications may result in disqualification.

• Resumes may be uploaded as an attachment but are not accepted in lieu of the information required in the EXPERIENCE & CREDENTIALS section of the application.

Candidates will be notified for appointments as determined by the selection committee.

Section 651.005 of the Government Code requires males, ages 18 through 25 years, to provide proof of their Selective Service registration or proof of their exemption from the requirement as a condition of state employment.

We are unable to sponsor or take over sponsorship of an employment Visa at this time.

The Department of Information Resources does not exclude anyone from consideration for recruitment, selection, appointment, training, promotion, retention, or any other personnel action, or deny any benefits or participation in programs or activities, which it sponsors on the grounds of race, color, national origin, sex, religion, age, or disability. Please call 512-463-5920 to request reasonable accommodation.

Office of the Chief Information Security Office/Security Services

0321/B27

Cybersecurity Analyst III (Statewide Security Services Program Manager)

Exempt

The Texas Department of Information Resources is the state agency charged with protecting the state’s data and critical technology infrastructure, managing a multi-million-dollar cooperative contracts program, and providing strategic technology leadership, solutions, and innovation to all levels of Texas government. DIR is a fast-paced and collaborative environment with highly motivated and engaged employees dedicated to achieving the best value for the state.

Performs highly complex (senior-level) information security and cybersecurity analysis functions that include planning, implementing, and monitoring security program elements and services that support government organizations throughout the state of Texas in the protection of information resources. Will interact frequently with state agency and other governmental agency personnel using a variety of communication mechanisms to convey service delivery information and program implementation details with the purpose of engaging organizations with the statewide security program. Reporting to the State Deputy Chief Information Security Officer for Security Services, works under minimal supervision, with extensive latitude for the use of initiative and independent judgment.

The ideal candidate will have the ability to highlight their strengths in the following functions:

• Serve as the program manager for services offered through the Office of the State Chief Information Security Office; provides program development, implementation, management, and delivery support for Office of the State Chief Information Security Officer enterprise security program.

• Assist in the development and implementation of enterprise security strategies and plans, as well as the formulation and dissemination of standards and guidelines to manage statewide information and information asset related risks, threats, and vulnerabilities.

• Provide security outreach to customers, including developing conferences, webinars, meetings to disseminate information and educate the workforce and customers about cybersecurity matters.

• Monitor and report on the maturity, effectiveness and customer engagement of security services and provides reports/metrics to management on these activities.

• Procure services and ensure customers receive the products and services included in agency contracts.

• Prepare security advisement for state agencies, higher education, and city/county/local organizations. Researches and evaluates new and emerging security services and can develop the supporting business case for the introduction of offered services.

• Assist in development and creation of statewide information security program services and offerings.

• Performs other related duties as assigned.

• Graduation from an accredited four-year college or university with major course work in information technology security, computer information systems, computer science, management information systems, or a related field

• Additional work-related experience may be substituted for education on a year-for-year basis.

• Three (3) to five (5) years of experience conducting analysis of threat and vulnerabilities, control maturity and gap analysis, and the analysis of cybersecurity incidents and events with the ability to demonstrate the preparation and delivery of both oral and written presentations of related information.

• One (1) to three (3) years of experience in design, development, and delivery of information security education, training, and awareness programs.

• One of the following certifications: If not already certified, must obtain within one year of employment a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA) or Certified Information Systems Manager (CISM).

• Project management certification and training.

• Experience with Texas Security regulations including Texas Administrative Code § 202.

• Experience with Federal Information Security Management Act (FISMA) and National Institute of Standards (NIST) 800 Series Special Publications

• Experience collaborating with outsourced IT service delivery organizations.

• Knowledge of data communications, networking, computer programming and systems analysis.

• Knowledge of information security operations and services processes.

• Knowledge of principles, practices, and techniques of management controls and information security protections as applied to state government.

• Knowledge of Texas State government and related information technology processes

• Knowledge of security metrics, benchmarking activities and expectations, and security operational monitoring processes.

• Skill in the use of applicable software and the configuring, deploying, monitoring, and automating of security applications and infrastructure.

• Ability to resolve complex security issues in diverse and decentralized environments; to plan, develop, monitor, and maintain cybersecurity and information technology security processes and controls; and to communicate effectively.

• Ability to handle multiple projects and initiatives.

• Ability to prepare technical issues papers and research reports, and effectively deliver oral presentations and written reports to IT and non-IT management.

• Ability to advise technical staff from customer agencies.

• Ability to establish and maintain effective and cordial working relationships at all organizational levels, including agency management, direct supervisors, co-workers, internal and external customers.

• Ability to understand, follow and convey brief oral and/or written instructions.

• Ability to communicate both verbally and in writing, in a clear and concise manner.

• Ability to work independently and as part of a team, and to support and contribute to a cohesive team environment.

• Ability to work a flexible schedule to meet required deadlines.

• Ability to work under pressure and exacting schedules to complete assigned tasks.

• Ability to travel as necessary to support agency requirements.

• Ability to comply with all agency policy and applicable laws.

• Ability to comply with all applicable safety rules, regulations, and standards.

• Proficiency in the use of a personal computer and applicable software necessary to perform work assignments e.g., word processing, spreadsheets, presentation software (Microsoft Office preferred) and data analysis/reporting software.

• Regular and punctual attendance at the workplace.

• Criminal background check.

• Frequent use of computers, copiers, printers, and telephones.

• Frequent standing, walking, sitting, listening, and talking.

• Frequent work under stress, as a team member, and in direct contact with others.

• Occasional bending, stooping, lifting, and climbing.