SR INFO TECH BUSINESS CONSULTANT - 80080143 1 1

About The Position

Requirements

• Hands-on experience with cybersecurity tools (e.g., SIEM, EDR, IDS/IPS, vulnerability scanners).
• Knowledge of network security, system hardening, and secure architecture principles.
• Familiarity with security frameworks such as CJIS, NIST, and MITRE ATT&CK.
• Strong analytical and problem-solving skills; able to triage and investigate complex security incidents.
• Proficient in interpreting and responding to log data, alerts, and threat intelligence.
• Effective communication skills—able to document findings and explain technical issues to non-technical stakeholders.
• Ability to manage multiple priorities in a fast-paced environment.
• Self-motivated with a proactive approach to identifying risks and improving security processes.
• Knowledge of firewalls, VPNs, routers, and networking protocols (TCP/IP, DNS, HTTP/S).
• Deep familiarity with Windows, Linux, and macOS security configurations and vulnerabilities.
• Awareness of malware types, attack vectors, indicators of compromise (IOCs), and threat intelligence sources.
• Knowledge of SIEM, EDR, IDS/IPS, antivirus, vulnerability scanners.
• Ability to manage or support security-related projects and cross-functional initiatives.
• Capable of explaining technical issues to both technical and non-technical audiences.

Nice To Haves

• Experience with scripting or automation (e.g., Python, PowerShell) is a plus.
• Strong understanding of cloud security best practices (e.g., AWS, Azure) is preferred.

Responsibilities

• Coordinate deployment of new security tools.
• Support security risk assessments and compliance audits.
• Document security controls and evidence for auditors.
• Develop dashboards or reports on security posture, threat activity, and risk metrices.
• Coordinate regular review meetings to analyze trends and adjust strategies.
• Assist in the development and test recovery plans for disasters (i.e., large-scale loss of information technology resources and data), including events such as power outages and small data losses.
• Ensure preparation and maintenance of procedures to provide a 'Continuity of Operations Plan' for information systems that support the operations and assets of the Department.
• Periodically perform risk analysis and security audits to test and evaluate the overall effectiveness of the Department's information security program and policies.