Information Security Analyst

About The Position

Requirements

• Bachelor's Degree or higher in information technology, management information systems, computer science, accounting, finance, economics, business administration or a related field.
• Four (4) years of information technology and/or Physical Security experience.
• At least 2 years of experience in network/server management or physical access systems.
• Valid Texas Class "C" Driver's license or equivalent issued by another state.
• Must pass a Criminal Justice Information Systems (CJIS) finger-print based background check and maintain CJIS eligibility.
• Must not have Felony Convictions, Felony Deferred Adjudication, Class A & B Misdemeanor Deferred Adjudication, Class B Misdemeanor Convictions, an Open Arrest for Any Criminal Offense (Felony or Misdemeanor), and Family Violence Convictions.

Nice To Haves

• GSEC, GCIH, or GCIA industry certification (required within twelve (12) months from date of appointment).

Responsibilities

• Analyze information security processes and coordinate solutions with Department of Information Technology Services and City departments.
• Identify unique system configurations and interview key organizational personnel.
• Develop standard information security documentation (security categorizations, risk assessments, contingency plans, security test & evaluation reports, vulnerability assessment reports, etc.).
• Adjust capabilities to prescribed information security controls and countermeasures to mitigate risk to acceptable levels.
• Develop, document, and enforce security policies, standards, guidelines, processes, and procedures.
• Update, maintain, and document security controls.
• Assist in hardening operating systems, devices, and access systems builds.
• Assist in the development of data systems, network security architecture, security risk analysis scenarios, and response procedures.
• Administer security tools, security event monitoring, alerting, and reporting.
• Implement a Business Continuity and Disaster Recovery Plan for the organization.
• Monitor and report on the status of the information security processes.
• Evaluate, design, monitor, implement, and administer information security systems.
• Process requests to design, modify, and grant security accesses, and other security requests.
• Perform troubleshooting and end-to-end support on a variety of information security systems software.
• Prepare status reports on security matters and review security violation reports and investigate possible security exceptions.
• Represent the security needs of the organization.