Cybersecurity Analyst I - Information Security - Information Technology Division - Huntsville (020130) -EXTENDED

Performs complex cybersecurity analysis work. Work involves protecting cybersecurity assets and delivering cybersecurity incident detection, incident response, threat assessment, cyber intelligence, software security, and vulnerability assessment services; and providing guidance to others. Works under general supervision with moderate latitude for the use of initiative and independent judgment., A. Assists in planning, implementing, and monitoring the agency information cybersecurity program; and ensures compliance with laws, industry standards, and state cybersecurity and risk management policies, standards, and guidelines.

B. Assists in advising management of violations, deficiencies, and potential cybersecurity risks; researches systems and procedures for the prevention, detection, containment, and correction of data security breaches; and ensures no unauthorized modification, destruction, or disclosure of information occurs.

C. Assists in the development of information technology disaster recovery and business continuity planning; and confers with users regarding computer data access needs, security violations, and programming changes.

D. Trains users and promotes cybersecurity awareness to ensure systems security and to improve server and network efficiency. * Performs a variety of marginal duties not listed, to be determined and assigned as needed.

A. Education, Experience, and Training

1. Bachelor's degree from a college or university accredited by an organization recognized by the Council for Higher Education Accreditation (CHEA) or by the United States Department of Education (USDE). Major course work in a Computer Information Systems, Computer Science, Management Information Systems, or a related field preferred. Each year of experience as described below in excess of the required four years may be substituted for thirty semester hours from an accredited college or university on a year-for-year basis.

2. Four years full-time, wage-earning program administration experience to include information technology experience or administration of technical programs.

3. Three years full-time, wage-earning analysis experience to include development of policies and procedures.

4. Governmental program experience preferred.

5. Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or Certified Information Systems Manager (CISM) preferred.

B. Knowledge and Skills

1. Knowledge of principles, practices, and procedures of information technology services and security.

2. Knowledge of applicable state and federal laws, rules, regulations, and statutes.

3. Knowledge of the principles and practices of public administration and management.

4. Knowledge of the limitations and capabilities of computer systems.

5. Knowledge of technical aspects of all network layers and computer platforms.

6. Knowledge of operational support of networking, operating systems, Internet technologies, databases, and security application support.

7. Knowledge of agency and departmental organizational structure, policies, procedures, rules, and regulations preferred.

8. Skill to communicate ideas and instructions clearly and concisely.

9. Skill to coordinate with other staff, departments, officials, agencies, organizations, and the public.

10. Skill in configuring, deploying, and monitoring security infrastructure.

11. Skill to resolve complex security issues.

12. Skill to review technical data and prepare technical reports.

13. Skill in the use of Microsoft Office Suite or equivalent to include word processing, spreadsheet, database, or presentation software programs.

14. Skill to review the work of others.

IV. ADDITIONAL REQUIREMENTS WITH OR WITHOUT REASONABLE ACCOMMODATION

A. Ability to walk, stand, sit, kneel, push, stoop, reach above the shoulder, grasp, pull, bend repeatedly, climb stairs, identify colors, hear with aid, see, write, count, read, speak, analyze, alphabetize, lift and carry under 15 lbs., perceive depth, operate a motor vehicle, and operate motor equipment.

B. Conditions include working inside, working around machines with moving parts and moving objects, radiant and electrical energy, working closely with others, working alone, working protracted or irregular hours, and traveling by car, van, bus, and airplane.