Cyber Security Analyst - Identity and Automation

About The Position

Requirements

• Knowledge of cybersecurity principles, defense-in-depth concepts, and current threat landscape
• Understanding of operating systems, networking, and common attack techniques
• Familiarity with SIEM, IDS/IPS, vulnerability management, and endpoint protection tools
• Analytical mindset with strong problem-solving and technical writing skills
• Ability to communicate security findings clearly to technical and non-technical audiences
• Working knowledge of security frameworks and standards (e.g., NIST CSF, CIS controls, ISO 27001)
• Understanding of security governance and compliance requirements, including CJIS
• Advanced knowledge of IAM principles, technologies, and best practices (e.g., Entra ID, Active Directory, SSO, MFA, RBAC, PAM)
• Proficiency in Python and PowerShell scripting
• Experience integrating security tools via APIs and automating workflows across platforms
• Ability to design and implement automated solutions that enhance security and operational efficiency
• Skill in monitoring and responding to identity-related threats and anomalies
• Strong analytical, critical thinking, and communication skills for collaboration and strategic planning
• Associate's degree in cybersecurity, networking, information technology, or a related discipline
• One of the following industry certifications: CompTIA Security+, Network+, ISC2 SSCP, or obtain within six (6) months of employment.
• Equivalent/more advanced certifications (e.g. CISSP, CySA+, CASP+ / SecurityX, GSEC, SSAP, SSCP, GCIH) will satisfy this requirement.
• Must possess, or be able to obtain within one (1) year of employment, a valid Florida Class B Commercial Driver's License, as required by state statute and Florida Senate Bill 658
• A comparable combination of related training and experience may be substituted for the minimum qualifications, except where licensure is required
• Must have a home telephone (or primary cell phone) within thirty (30) days of employment in this classification as employee is subject to call out.
• This position is subject to being placed on 'Stand By'/ 'On Call' for scheduled nights and/or weekends.
• Must possess a smartphone compatible with modern applications; must be willing to install and utilize authenticator applications for multi-factor authentication (MFA) to ensure secure access to systems and data.
• This full-time position is based in Polk County; FL. Flexibility may be required to support emergency repairs outside of regular business hours
• All employees will be required to work before, during, or after an emergency. During an emergency, employees may temporarily be assigned to work and perform duties outside the normal scope of their position, location and work schedule to fit the needs of the county and its residents.

Responsibilities

• Monitors and analyzes security events, logs, and alerts from Security Information and Event Management (SIEM) platform and related tools to identify anomalies or potential threats
• Conducts vulnerability assessments and coordinates remediation with IT teams
• Investigates security incidents and assists in incident response, documentation, and root cause analysis
• Supports threat intelligence gathering and correlation to current events and risks
• Reviews and assesses security baselines, hardening standards, and configuration guidelines (e.g., CIS benchmarks)
• Participates in security audits, risk assessments, and compliance reviews
• Prepares reports on findings, trends, and recommendations for improvement
• Contributes to security procedures, playbooks, and awareness initiatives
• Collaborates with IT, compliance, and business teams to maintain secure system configurations and access controls
• Performs other related duties as assigned
• Consults on IAM program design and management (Entra ID, Active Directory), focusing on lifecycle management, access provisioning/de-provisioning, and privileged access management
• Leads strategic planning for identity management and modern identity defense practices
• Provides subject matter expertise and consultative support for IAM and automation during audits, assessments, and incident response
• Ensures compliance with NIST CSF, CIS controls, CJIS, and other relevant frameworks, standards, and regulations
• Develops, implements, and maintains automated security workflows using Python, PowerShell, and other relevant tools
• Integrates security tools and platforms to enable automated monitoring and response
• Develops and maintains automation scripts to streamline recurring processes across the Information Security and IT teams
• Monitors and maintains automation dashboards, investigates anomalies, and optimizes automated responses
• Generates and reports key performance indicators (KPIs) for IAM and automation performance
• Reduces reliance on external services by developing in-house automation capabilities

Benefits

• Direct Deposit, Bi-Weekly Pay Checks
• Medical, Dental, Vision
• Life Insurance
• FRS Retirement
• 10 Paid Holidays
• Paid Time Off
• Tuition Reimbursement
• Education Incentives
• Deferred Compensation Plan
• Wellness Incentives
• Employee Assistance Program (EAP)
• Free Employee Gym
• Free Employee Health Clinic