0000006861.Cybersecurity Analyst.Info Tech - Security

About The Position

Requirements

• Bachelor’s degree from an accredited college or university in Information Systems, Cybersecurity, Computer Science, or in a job related field of study.
• Five (5) years of work related experience in a cybersecurity role such as Security Analyst, Security Engineer, SOC Analyst, or IT Security Administrator.
• Ability to effectively communicate both verbally and in writing across teams and stakeholders for collaboration and reporting and have strong technical and analytical skills.
• Ability to work independently and effectively in a team-oriented environment.
• Ability to create and maintain technical documentation, including SOPs, runbooks, and knowledgebase articles.
• Knowledge of security operations functions, including monitoring, triage, ticket handling, and incident documentation.
• Ability to analyze logs and alerts from a variety of sources, including firewalls, IDS/IPS, proxies, EDR, and authentication systems.
• Ability to monitor and secure cloud-based environments such as Microsoft Azure, AWS, or M365.
• Knowledge of security frameworks and regulatory compliance standards such as CJIS, HIPAA, PCI-DSS, NIST 800-53, and CIS Controls.
• Knowledge of security monitoring, threat monitoring, SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) technologies.
• Knowledge of regulatory compliance standards such as CJIS, HIPAA, NIST, or similar frameworks.
• Ability to work with 3rd party security vendors, and managed security service providers.
• Ability to analyze security alerts, investigate incidents, and document findings clearly.
• Ability to participate in an on-call rotation for after-hours security incident escalation.
• Must have a valid Texas Driver's License and good driving record.
• Will be required to provide a copy of 10-year driving history.
• Must maintain a good driving record and remain in compliance with Article II, Subdivision II of Chapter 90 of the Dallas County Code.
• “Individuals holding or considered for a position which has, or may have, access to criminal justice databases including the FBI Criminal Justice Information Systems, NCIC/TCIC and similar databases, must pass a national fingerprint-based records check prior to placement in such position and may be denied placement in such positions and/or access to such systems.
• Incumbents must also maintain the ability to pass the records check while in the position or until such time that the Commissioners Court and the County Civil Service Commission deem this position no longer has this requirement.”
• Ability to lift and carry up to 25 lbs. unassisted.
• Work a 40-hour hybrid work week with on-call availability for two (2) days per month.
• Sitting for extended periods of time

Nice To Haves

• Security certifications such as Security+, CySA+, or related security or IT credentials are preferred.

Responsibilities

• Triages and manages security tickets, requests, and alerts, and ensure escalation according to potential risk and organizational impact.
• Performs analysis of threats, malware, and potential indicators of compromise; provides detailed summaries for further investigation.
• Assists in the coordination of incident response activities, including evidence gathering, documentation, and status tracking.
• Assists Security Engineering and GRC (Governance, Risk and Compliance) teams to ensure security controls are properly configured and aligned with applicable policies, standards, and regulatory requirements
• Maintains security documentation, updates runbooks, SOPs, and incident tracking documentation to ensure operational accuracy and readiness.
• Participates in IT and security-related projects by providing technical guidance.
• Performs other duties as assigned.