Senior Cybersecurity Analyst (Senior Information Technologist)
Role details
Job location
Tech stack
Job description
The Orange County Information Technology (OCIT)-Enterprise Cybersecurity Operations Team is seeking an experienced and dynamic supervisor who will oversee and assist a team of cybersecurity analysts in the continuous monitoring of the County's enterprise environmental assets, analyzing threats, mitigating vulnerabilities, detecting compromises, and conducting incident response. The Senior Cybersecurity Analyst will be responsible for the design, configuration, implementation, and ongoing support of County Enterprise tools. This position requires strong analytical and comprehension skills with written and communication experience.
Responsibilities and duties for this position include, but are not limited to, the following:
- Overseeing daily operations of the SOC
- Ensuring the service ability and integrity of SOC equipment and tools
- Supporting SOC efforts in digital forensics and eDiscovery
- Serving as the subject matter expert on system security tools, including but not limited to SIEM, SOAR, EDR, IAM, PAM, IPS/IDS, Web Proxy Firewall, DLP, Email Security, and WAF, and providing technical leadership on toolset enhancements
- Leading and performing threat hunting activities such as analysis of threat intelligence, detection and evaluation of IOCs, and escalation of incidents
- Evaluating vendor solutions, making recommendations, and leading projects for deployment and/or enhancement of security systems
- Participating in the incident response team and executing the County Incident Response Plan and cyber incident playbooks
- Reviewing cybersecurity requests against normal operational security processes and providing approval or escalation, Structured Oral Interview | SOI (Weighted 100%) The Structured Oral Interview is a timed assessment. Applicants will provide answers to job-related questions, which will be rated by a panel of subject matter experts using standardized evaluation criteria. Only the most qualified candidates will move advance to the next step in the recruitment process or will be placed on the eligible list.
Eligible List Once the assessment has been completed, HRS will establish an eligible list of candidates. Candidates placed on the eligible list may be referred to a selection interview to be considered for present and future vacancies.
Based on the County's needs, the selection procedure listed above may be modified. All candidates will be notified of any changes in the selection procedure., Email is the primary form of notification during the recruitment process. Please ensure your correct email address is included in our application and use only one email account. NOTE: User accounts are established for one person only and should not be shared with another person. Multiple applications with multiple users may jeopardize your status in the recruitment process for any positions for which you apply. Candidates will be notified regarding their status as the recruitment proceeds via email through the GovernmentJobs.com site. Please check your email folders, including spam/junk folders, and/or accept emails ending with "governmentjobs.com" and "ocgov.com." If your email address should change, please update your profile at www.governmentjobs.com.
Requirements
In addition to the minimum qualifications, the ideal candidate will possess an Associate's or higher in Information Computer Sciences, Information Computer Technology, Information Systems, or a related field with at least three (3) years of security-related work experience in a cybersecurity, enterprise IT, or multidisciplinary IT environment.
A certification in one of the following is preferred but not required:
- CompTIA Security+
- CompTIA CySA+
- (ISC))² CISSP- Certified Information Systems Security Professional
- (ISC)² CISM - Certified Information Security Manager
- GCIL- GIAC Certified Incident Leader
- GEIR - GIAC Enterprise Incident Response
- GSOM- GIAC Security Operations Manager
- GSOC- GIAC Security Operations Certified
The ideal candidate will have experience in the following competencies:
Technical Knowledge | Technical Expertise
- Understanding of the NIST 800-53 framework and application of its controls in operational security
- Understanding network protocols, routing and switching, LAN/WAN, remote access, and encryption protocols
- Understanding and applying network security concepts and troubleshooting enterprise firewalls, IDS/IPS, DNS Security, and WAF (Web Application Firewall)
- Foundational knowledge of Microsoft Office365, Azure Cloud, and related security concepts
- Utilizing security tools such as SIEM, SOAR, EDR, DLP, and Web Filter/Proxy
- Proficiency in scripting languages and PowerShell
- Installing, configuring, and supporting all varieties of Microsoft Windows Services and platforms
- Implementing enterprise security best practices including encryption, implicit and explicit permissions, multi-factor authentication, auditing and digital forensics, and data retention
Leadership Skills
- Serving as a department liaison for operational security matters, requests, and issues
- Working collaboratively and establishing rapport with staff, managers, and people across County departments
- Leading and training cybersecurity analysts on best practices
- Building and maintaining positive forward focused customer-oriented work environments
Oral | Written Communication Skills
- Responding quickly, courteously, and proficiently to customer service requests
- Soliciting feedback and adjusting customer service requests to fit into business improvement
- Clearly conveying information technology concepts and terminology with both technical and non-technical staff at all levels within and outside the agency
- Preparing and maintaining technical documentation of department processes and procedures, Part of the selection process for positions within Orange County Information Technology (OCIT) requires that all candidates undergo an extensive background investigation process, to the satisfaction of the Department. Candidates must successfully clear prior to the start of their employment. All employment offers are contingent upon successful completion of a background investigation.
Benefits & conditions
Pulled from the full job description
- Health insurance
- Retirement plan
- Paid holidays, Salary may be negotiable within the applicable range of the classification and successful candidate's qualifications, subject to appropriate authorization., Non-Management Benefits In addition to the County's standard suite of benefits, such as a variety of health plan options, annual leave and paid holidays-we also offer an excellent array of benefits such as a Health Care Reimbursement Account, 457 Defined Contribution Plan and Annual Education and Professional Reimbursement. Employees are provided a Retirement Plan through the Orange County Employees Retirement System (OCERS).
Please go to the following link to find out more about Defined Benefit Pensions and OCERS Plan Types/Benefits.