IT SECURITY ANALYST SENIOR - South Florida Water Management District
West Palm Beach, FL
About the Job
The S.F.W.M.D. is looking for a Senior IT Security Analyst for its IT Security Unit. This non-supervisory role will have the candidate leverage their skill-set and experience to provide expertise in Information Security within the agency’s information security architecture as well as participate in development, administration, & successful delivery of IT security services & solutions to support the District’s strategic programs. Additionally, this role will also provide operational tasks in support of the day-to-day IT security administration duties.
The selected candidate must have experience coordinating, administering, monitoring, and maintaining enterprise and mission critical security infrastructure. We are interested in candidates that are interested in working on systems such as network security systems, application delivery controllers, endpoints, VPN/IPSec remote access solutions, identity, and access management (IDAM) solutions, AAA services, security information and event monitoring (SIEM) system logging and analysis, application security, threat intelligence, forensics, anti-malware and vulnerability assessment programs.
This role requires a strong positive ability to lead team members through the strategy directed by senior management. In addition to technical skills, the senior security administrator is process and results oriented and demonstrates effective problem-solving and communication skills.
• The candidate will work with the IT Security team using established IT Security process and procedures in support of day-to-day activities and assignments.
• Often serves as a subject matter expert for colleagues and line-of-business managers, and experience with multiple technologies to perform problem identification, systems architecture recommendations, and developing firewall security specifications and requirements.
• Administer and maintain security systems, including firewalls, network, and host intrusion prevention/detection systems (IPS/IDS), virtual private networks (VPNs), SIEM systems, threat intelligence platforms, endpoint protection, email security, forensic tools, public/private/hybrid cloud infrastructure and IDAM systems.
• Responsible for operational upkeep of a Web Application Firewall (WAF/WAAP), to include providing WAF/WAAP design, configuration, and advanced troubleshooting.
• Rigorously maintain security systems and administer security configurations that reduce risk to enterprise systems.
• Perform and audit vulnerability management standards across all operating systems, software applications and hardware configurations.
• Improve efficiencies using automation and orchestration solutions to reduce manual work that can be done programmatically.
• Serve as a team lead and point of contact for incident response analysts, security operations center (SOC) analysts, application engineers and security management.
• Influence tactical and strategic decisions.
• Lead the creation and maintenance of security documentation and configuration practices.
• Attend and engage in all change control and project management meetings.
• Liaison with auditors, both internal and external, to maintain and implement controls for compliance and privacy laws.
• Remain current with new security threats and assessing systems to ensure they can defend the business.
• Act as a primary point of contact for disaster recovery and business continuity.
• Perform tasks assigned by Supervisor and IT Managers.
Qualifications:
• Minimum of 5-8 years’ experience in cybersecurity, including compliance and risk management with a system and network security engineering background.
• Highly technical and analytical expertise, with a proven deep background in technology design, implementation, and delivery.
• Extensive knowledge of traditional security controls and technologies, such as SIEM systems, IDS/IPS, public key infrastructure (PKI), IDAM systems, antivirus and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), Zero Trust Network Access (ZTNA), threat intelligence platforms, security automation and orchestration, deception technologies and application controls.
• Proficient and experienced in designing, configuring, and maintaining Web Application Firewalls, Next Generation Firewalls, VPN’s, Vulnerability Management Applications and Identity Management Enforcement and Controls.
• Experience administering SIEM systems, threat intelligence platforms, threat intelligence, security automation and orchestration solutions, IDS/IPS, file integrity monitoring (FIM), data loss prevention (DLP) and other network and system monitoring tools.
This position may also be filled at the lower level.
Employment Guidelines:
The Candidate possesses a Bachelor's Degree in Computer Science, Information Systems / Security, or related work experience of 5+ years, and able to keep current with relevant technological change and information security best practices.
Salary is commensurate with experience.
Licenses / Certifications:
Valid State of Florida Driver's License is required.
Physical Requirements / Working Environment:
Due to the District's response role and in the total scope of emergency management, this position may at times, be required to provide support before, during and after major storm events and emergency situations, such as hurricanes or other declared emergencies, depending on assigned emergency response role.
Veterans’ Preference:
Pursuant to Chapter 295, Florida Statutes, candidates eligible for Veterans’ Preference will receive preference in employment for vacancies and are encouraged to apply. Candidates claiming Veterans’ Preference must attach supporting documentation with each submission that includes character of service (for example, DD Form 214 Member Copy #4) along with any other documentation as required by Rule 55A-7, Florida Administrative Code. All documentation is due by the close of the job posting.
The selected candidate must have experience coordinating, administering, monitoring, and maintaining enterprise and mission critical security infrastructure. We are interested in candidates that are interested in working on systems such as network security systems, application delivery controllers, endpoints, VPN/IPSec remote access solutions, identity, and access management (IDAM) solutions, AAA services, security information and event monitoring (SIEM) system logging and analysis, application security, threat intelligence, forensics, anti-malware and vulnerability assessment programs.
This role requires a strong positive ability to lead team members through the strategy directed by senior management. In addition to technical skills, the senior security administrator is process and results oriented and demonstrates effective problem-solving and communication skills.
• The candidate will work with the IT Security team using established IT Security process and procedures in support of day-to-day activities and assignments.
• Often serves as a subject matter expert for colleagues and line-of-business managers, and experience with multiple technologies to perform problem identification, systems architecture recommendations, and developing firewall security specifications and requirements.
• Administer and maintain security systems, including firewalls, network, and host intrusion prevention/detection systems (IPS/IDS), virtual private networks (VPNs), SIEM systems, threat intelligence platforms, endpoint protection, email security, forensic tools, public/private/hybrid cloud infrastructure and IDAM systems.
• Responsible for operational upkeep of a Web Application Firewall (WAF/WAAP), to include providing WAF/WAAP design, configuration, and advanced troubleshooting.
• Rigorously maintain security systems and administer security configurations that reduce risk to enterprise systems.
• Perform and audit vulnerability management standards across all operating systems, software applications and hardware configurations.
• Improve efficiencies using automation and orchestration solutions to reduce manual work that can be done programmatically.
• Serve as a team lead and point of contact for incident response analysts, security operations center (SOC) analysts, application engineers and security management.
• Influence tactical and strategic decisions.
• Lead the creation and maintenance of security documentation and configuration practices.
• Attend and engage in all change control and project management meetings.
• Liaison with auditors, both internal and external, to maintain and implement controls for compliance and privacy laws.
• Remain current with new security threats and assessing systems to ensure they can defend the business.
• Act as a primary point of contact for disaster recovery and business continuity.
• Perform tasks assigned by Supervisor and IT Managers.
Qualifications:
• Minimum of 5-8 years’ experience in cybersecurity, including compliance and risk management with a system and network security engineering background.
• Highly technical and analytical expertise, with a proven deep background in technology design, implementation, and delivery.
• Extensive knowledge of traditional security controls and technologies, such as SIEM systems, IDS/IPS, public key infrastructure (PKI), IDAM systems, antivirus and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), Zero Trust Network Access (ZTNA), threat intelligence platforms, security automation and orchestration, deception technologies and application controls.
• Proficient and experienced in designing, configuring, and maintaining Web Application Firewalls, Next Generation Firewalls, VPN’s, Vulnerability Management Applications and Identity Management Enforcement and Controls.
• Experience administering SIEM systems, threat intelligence platforms, threat intelligence, security automation and orchestration solutions, IDS/IPS, file integrity monitoring (FIM), data loss prevention (DLP) and other network and system monitoring tools.
This position may also be filled at the lower level.
Employment Guidelines:
The Candidate possesses a Bachelor's Degree in Computer Science, Information Systems / Security, or related work experience of 5+ years, and able to keep current with relevant technological change and information security best practices.
Salary is commensurate with experience.
Licenses / Certifications:
Valid State of Florida Driver's License is required.
Physical Requirements / Working Environment:
Due to the District's response role and in the total scope of emergency management, this position may at times, be required to provide support before, during and after major storm events and emergency situations, such as hurricanes or other declared emergencies, depending on assigned emergency response role.
Veterans’ Preference:
Pursuant to Chapter 295, Florida Statutes, candidates eligible for Veterans’ Preference will receive preference in employment for vacancies and are encouraged to apply. Candidates claiming Veterans’ Preference must attach supporting documentation with each submission that includes character of service (for example, DD Form 214 Member Copy #4) along with any other documentation as required by Rule 55A-7, Florida Administrative Code. All documentation is due by the close of the job posting.
Source : South Florida Water Management District
