Address
Form of workJob Description
We have an opportunity for a Security Analyst for the Florida Department of Transportation in Boca Raton, Florida, 33434 for a long-term project. I am forwarding the JD for your reference. Kindly review it and let me know if you would be interested in this opportunity.
LOCAL CANDIDATES ONLY.
JD:
Job #: 6810
Location: Tolls Data Center, 7941 Glades Rd., Boca Raton, FL 33434
Rate/Salary: The W2 hourly rate is $90 without benefits or $99 on 1099/C2C or compensation of USD 160,600 plus benefits.
Interviews:
In the event an interview is requested, in-person interviews will be conducted at the Tolls Data Center, 7941 Glades Rd., Boca Raton, Florida, 33434. At the discretion of the manager, first-round interviews may be conducted remotely via Microsoft Teams.
Telecommuting:
Telecommuting is not an option for this position. This is not a remote position. This position will be located at the Tolls Data Center, 7941 Glades Rd., Boca Raton, FL 33434.
Background Check:
Please remember, if your candidate is selected for the position, we require a Level 1 background check prior to their start date. More details about this requirement may be found in your contract with the State of Florida, Exhibit C, Section 13, “Background Screening and Security.”
Description
The Security Analyst is responsible for assisting with the day-to-day operations of securing the departments various information systems. Reporting to the Security Risk and Compliance Office Security Manager, the Security Analyst is tasked with providing technical expertise in all areas of network, system, and application security. The Security Analyst works closely with the various teams in the infrastructure department to ensure that systems and networks are always designed, developed, deployed, and managed with an emphasis on strong, effective security and risk management controls. The Security Analyst is responsible for departments vulnerability management program, administers the annual cybersecurity assessments and penetration tests, and researches and reports on emerging threats to help the department take pre-emptive risk mitigation steps. The Security Analyst effectively correlates and analyzes security events to proactively detect threats and mitigate attacks before they occur.
Responsibilities
• Proactively monitor the environment to detect and implement steps to mitigate cyber-attacks before they occur.
• Provide technical expertise regarding security-related concepts to operational teams within the department and the business.
• Review, investigate, and respond to real-time alerts within the environment.
• Review real-time and historical reports for security and/or compliance violations.
• Monitor online security-related resources for new and emerging cyber threats.
• Assesses new security technologies to determine potential value for the enterprise. Conducts vulnerability assessments of department systems and networks.
• Manage systems owned by the Security Risk and Compliance Office (SRCO)
• Liaise with the departments trusted security manage services, infrastructure technical resources, and 3rd party business vendors.
Demonstrable Requirements
• A four-year college degree or equivalent industry training and certifications.
• Three to five years of experience in a security analyst or related position.
• Technical knowledge of enterprise-class technologies such as firewalls, routers, switches, wireless access points, VPNs, and desktop and server operating systems.
• Thorough understanding of Microsoft’s enterprise technology platform, including Azure, Active Directory, SQL, and the Windows server and desktop operating systems.
• Thorough understanding of Redhat and Oracle database operating systems.
• Working experience with the following technology vendors and products: Splunk, Tripwire, Rapid7 Nexpose Vulnerability Scanner, Metasploit, Qualys Vulnerability Scanner (Cloud), Delinea Secret Server, Carbon Black Application Protection, Veracode SAST & DAST Technologies.
• Strong writing skills, as well as the ability to articulate security-related concepts to a broad range of technical and non-technical staff.
• Demonstrated experience implementing and/or enforcing security and compliance frameworks such as NIST, PCI DSS, and ISO.
• Ability to demonstrate self-sufficient working capacity and proficient problem-solving skills.
