US Government, Administration
- Full Time
Classification Review Notice
This position is open to All Applicants.
The Alaska Department of Administration, Office of Information Technology is recruiting for a Systems Programmer 2/3 (Security Analysis Alert and Response Lead)!
Pay is based on the location of the selected applicant; salary will be discussed at the time of the interview.
What you will be doing:
Under the direction and oversight of the SSO Security Operations Manager, this Cybersecurity Analyst and Alert Response Lead position will be expected to act as the technical lead within the State Security Office’s Operations Team for cybersecurity event/alert/incident response and investigation tasks by acting as the primary technical resource as well as providing technical leadership and guidance to a team of Cybersecurity Analyst1 and Cybersecurity Analyst2 positions that respond to security events/alerts/incidents and/or complete cyber investigations within the SSO Operations Team. As a technical team lead, this Cybersecurity Analyst and Alert Response Lead position will be expected to have the skills necessary to identify, examine, and understand various forms of malware and malware delivery methods as well as perform proactive threat hunting and advanced-level analysis on cybersecurity alerts, intrusion attempts, and forensic investigations using tools such as Burp Suite, Kali Linux, REMnux, Forensic Toolkit, Microsoft Log Analytics, and Microsoft Sentinel.
This Cybersecurity Analyst and Alert Response Lead position will also act as a high-level information security technical expert on the Security Operations team and will be expected to be a lead administrator and technical expert of enterprise-level security tools and systems.
Our organization, mission, and culture:
Focus on listening to our customers, making life simpler for them and helping them serve Alaskans more efficiently.
Provide services that are available when and where customers need them.
Protect the information that Alaskans entrust to us and encourage their trust through disciplined adherence to sound security practices.
State Security Office Mission:
The mission of the State Security Office (SSO) is to reduce risks to the information assets of the State of Alaska and its citizens. The SSO is authorized and empowered to create, train, and enforce security policies and standards that protect Alaska’s information and technology resources. The SSO strives to prevent security incidents, assist with the recovery from adverse events, and improve compliance with State and Federal laws as well as State policies, standards, regulations, and procedures.
Benefits of joining our team:
Work on the Security Operations Team is exciting and presents team members with new challenges on a daily basis as well as a variety of training and professional advancement opportunities.
The working conditions you can expect:
This position is located in Juneau, 5th floor State Office Building or the Anchorage Ship Creek Offices but can currently be performed remotely if all job duties and expectations are able to be met. This position will perform advanced cybersecurity systems administration and threat analysis and response duties as part of the State Security Office’s Operations Team.
Who we are looking for:
We are looking for someone with previous cybersecurity experience that has the ability to proactively hunt for cybersecurity threats, effectively respond to alerts and incidents, accurately identify the difference between an alert and an incident, analyze user and device behavior and detect malicious or suspicious behaviors, analyze malware, analyze malicious URLs, and who can provide technical guidance and training to a team of Cybersecurity Analyst I and Cybersecurity Analyst II positions in effective alert and incident response duties. We are also looking for someone that has the ability to effectively analyze large data sets and use query languages such as KQL to build custom detection rules and cybersecurity reports.
Prior information/cybersecurity and project management experience is preferred, and excellent written and verbal communication skills are highly preferred. We are looking for someone who is self-motivated, proactive, and able to work remotely without the regular need for direct supervision or instruction. The ability to effectively work remotely and use communication and collaboration tools such as Microsoft Teams for timely and concise communications is a must.
- Employment with the Office of Information Technology is contingent upon successfully completing and maintaining a background check and security clearance conducted by the Department of Public Safety. Fingerprinting is required.
To view the general description and example of duties for the position please go to the following link: https://www.governmentjobs.com/careers/Alaska/classspecs