Talent.com
IT Security Analyst

IT Security Analyst

City of HialeahHialeah, FL, USA
job_description.job_card.variable_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

CHARACTERISTICS OF WORK

Responsible for the day-to-day operations of the in-place security solutions while and the detection, analysis, containment, eradication, and recovery from security breaches detected by those systems. Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments. This skilled technical position is responsible for administering and maintaining security controls focused on network security across the City’s enterprise in accordance with existing policies, procedures, and security best practices. This skilled position will be responsible for safeguarding privileged information and prevention of unauthorized access to City-wide resources. The IT Security Analyst performs two core functions for the enterprise as follows : is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines and is responsible for articulating technical security requirements, monitoring the effectiveness of the IT security controls framework, and assisting in raising security awareness and policy compliance among workforce members.

ESSENTIAL EXAMPLES OF DUTIES

The following illustrates examples of some of the essential duties and responsibilities of the IT Security Analyst. There may be other essential functions, not listed below, in order to accomplish the tasks as presented by the Supervisor.

  • Contribute to the planning, design, and creation of enterprise security architecture, policies, incident response plans, business continuity, and disaster recovery plans.
  • Promote security awareness and cybersecurity goals with City staff.
  • Stay informed on IT security industry trends, emerging threats, and solutions.
  • Review, recommend, and implement security measures and enhancements.
  • Deploy, integrate, and configure new and existing security solutions.
  • Provide day-to-day support for the information security program, ensuring adherence to best practices across network, desktop, server, and mobile configurations.
  • Design and maintain security controls, and define role-based access and secure business processes.
  • Monitor security threats, systems, and network traffic, conducting vulnerability assessments and ensuring operational efficiency.
  • Respond to security incidents, collaborate across teams for resolution, and ensure CIA (Confidentiality, Integrity, Availability) of City information.
  • Administer and audit user access, defend against unauthorized access, and maintain effective malware protection.
  • Train employees in security awareness and respond to incidents with post-event analyses and remediation.
  • Perform other related duties as assigned.

KNOWLEDGE, SKILLS, AND ABILITIES

  • Extensive experience with and knowledge of Endpoint Protection, EDR, and MDR functionality.
  • Experience with firewalls and associated management tools.
  • Familiarity with Security, Education, Training, and Awareness (SETA) platforms.
  • Strong understanding of AD, IP, TCP / IP, and other network administration protocols.
  • Experience with the following access control schemes :
  • Role-based Access Control (RBAC)
  • Mandatory Access Control (MAC)
  • Discretionary Access Control (DAC)
  • Strong understanding of Microsoft Windows Server 2016, 2019, & 2022, and Windows 11 or higher.
  • Knowledge and experience in using automated tools for applying operating system, application, and firmware updates, hot fixes, and patches.
  • Possess a high degree of integrity and trust, along with the ability to work independently on complex technical issues.
  • Proven analytical and problem-solving abilities with keen attention to detail.
  • Ability to effectively prioritize and execute tasks in a high-pressure environment.
  • Good written, oral, and interpersonal communication skills.
  • Ability to conduct research into IT security issues and products as required.
  • Ability to present ideas in business-friendly and user-friendly language.
  • Highly self-motivated and directed.
  • Team-oriented and skilled in working within a collaborative environment.

    • PHYSICAL REQUIREMENTS

    The following are some of the physical requirements associated with this position. Reasonable accommodation may be made by the City to enable an individual to perform the essential duties / functions of the position.

  • Must have ability to effectively communicate and interact with other employees and the public through the use of telephone and personal contact as normally defined by the ability to see, read, talk, stand, hear, hands to finger dexterity, handle, feel or operate objects, read and write English.
  • Physical capability to effectively use and operate various items of office equipment. such as but not limited to a personal computer, calculator, copier and fax machines.
  • Work is performed indoors within a quiet to moderately noisy environment.
  • Must be able to lift, carry and or push articles weighing up to 20 lbs.

    • MINIMUM TRAINING AND EXPERIENCE

  • Bachelor’s degree from an accredited four (4) year college or university with major course work in computer science or related field, or equivalent work experience.
  • A minimum of four (4) years of relevant experience in IT Security, Audit, or Compliance inclusive of implementing security measures and deploying, configuring, maintaining, and integrating security solutions.
  • English & Spanish speaking preferred.
  • A combination of education and experience may be considered.
  • Maintain one or more of the following certifications in good standing, or be able to obtain this within nine (9) months of employment :
  • CompTia Security+
  • CISM - Certified Information Security Manager (CISM).
  • CISSP - Certified Information Systems Security Professional (CISSP).
  • CEH - Certified Ethical Hacker (CEH).
  • OSCP - Offensive Security Certified Professional (OSCP).
  • CCSP - Certified Cloud Security Professional (CCSP).
  • MTA / SF - Microsoft Technology Associate (MTA) Security Fundamentals.
  • CSX Cybersecurity Fundamentals Certificate.
  • CCNA – Security education, training, and experience.

    • When claiming veterans’ preference, you must provide a copy of your DD-214, Certificate of Release or Discharge from Active Duty, or other acceptable documentation.

    serp_jobs.job_alerts.create_a_job

    It Security Analyst • Hialeah, FL, USA