TDHCA - Cybersecurity Analyst

Job Description

Information Systems Division

GENERAL DESCRIPTION:

Performs information security and cybersecurity analysis work involving planning, implementing, and monitoring security measures for the protection of information systems and infrastructure. Work also includes protecting cybersecurity assets and delivering cybersecurity incident detection, incident response, threat assessment, cyber intelligence, software security, and vulnerability assessment services.

SPECIFIC JOB RESPONSIBILITIES:

• Performs technical risk assessments and reviews of account permissions, computer data access needs, security violations, programming changes, and new and existing applications and systems, including data center physical security and environment.
• Works with ISD leadership and the Information Security Officer in the continuous process of assessing and maintaining the security of TDHCA's information systems, especially server-based applications and operating systems, network hardware and software, and security software and appliances.
• Performs cybersecurity incident detection, analysis, and prevention.
• Performs vulnerability scans of networks and applications to assess effectiveness and identify weaknesses.
• Performs forensic analysis of information systems and portable devices and forensic recovery of data using assessment tools.
• Assists with the administration and maintenance of TDHCA's security awareness program, including the agency's information security plan, policies, and procedures and training program.
• Stays continuously informed of applicable state and federal information security laws and rules and ensures agency compliance.
• Assists with the completion and submission of required State of Texas information security reports.
• Monitors systems and procedures to protect data systems and databases from unauthorized access.
• Monitors and analyzes cybersecurity alerts from cybersecurity tools, network devices, and information systems.
• Supports the implementation of computer system security plans with agency personnel and outside vendors.
• Develops plans to safeguard computer configuration and data files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
• Modifies and monitors computer configuration and data files to incorporate new software and virus protection systems, correct errors, or change individual access status.
• Implements continuous automated security compliance capabilities.
• Researches and analyzes cybersecurity threat indicators and their behaviors for the prevention, detection, containment, and correction of data security breaches, and recommends threat mitigation strategies.
• Trains users and promotes security awareness to ensure system security and improve application, server, and network efficiency.
• Participate in the development of information technology disaster recovery and business continuity planning.
• Performs related work as assigned.

Qualifications:

EDUCATION/EXPERIENCE:

• Graduation from an accredited four-year college or university with major course work in computer science, computer information systems, or management information systems. Related work experience may be substituted for education on a year for year basis.

KNOWLEDGE, SKILLS, AND ABILITIES:

• Knowledge of the limitations and capabilities of computer systems and of the techniques used in the design of non-automated systems.
• Knowledge of the practices, principles, and techniques of computer operation; information systems; computer software and hardware; information security policies and procedures; and help desk environment.
• Knowledge of networking principles and protocols and information security standards and best practices.
• Skill in the use, administration, and functionality of various cybersecurity products including software, hardware, and cloud based.
• Skill in the use and architecture of Windows and Unix/Linux server operating systems; Windows desktop/laptop operating systems.
• Skill in scripting using various tools in the Windows and Unix/Linux environments to perform security assessments and reporting.
• Skill in solving problems; in scheduling, testing, installing, and implementing programs; and in troubleshooting computer systems.
• Strong communication skills, including the ability to communicate complex technical information and the ability to interact in a professional, courteous manner with agency staff.
• Ability to establish and maintain good, professional working relationships with co-workers, management, agency staff, and external contacts.
• Ability to analyze systems and procedures, to write and revise standards and procedures, to handle multiple projects, to communicate effectively, and to train others.
• Skill in planning, organizing, and coordinating work assignments to meet frequent and multiple deadlines, in handling multiple tasks simultaneously, and in managing conflicting priorities and demands.

PHYSICAL REQUIREMENTS:

• This classification functions in a standard office environment. Ability to drive and travel as needed. Will need to move about the office to access file cabinets, use office machinery, attend meetings in various offices and conference rooms, etc. Must be able to communicate and exchange accurate information via phone, computer, and in person. Must be able to observe and evaluate data in a variety of formats, including hard copy, electronic, and various media formats. Must be able to work non-standard hours including the ability to work beyond 40 hours per week as needed and in compliance with the FLSA.
• The employee must be able to lift and/or carry up to 50 pounds. Must be able to push and/or pull up to 50 lbs

OTHER:

• Must be willing to work in a non-smoking environment and adhere to all applicable Department policies and procedures. Must be willing to work overtime if necessary, which may include nights and weekends. Must attend work regularly and adhere to approved work schedule.

IMPORTANT INFORMATION FOR THE CANDIDATE:

• Official transcripts or other minimum requirement validations will be requested of final applicants.

• Criminal background checks will be conducted before an offer of employment is extended.

We fully recognize, honor and enforce the Uniformed Services Employment and Reemployment Rights Act (USERRA) and encourage opportunities to hire Veterans, Reservists and Guardsmen.

Males born on or after January 1, 1960, between the ages of 18-26, will be required to present proof of Selective Service System registration on the first day of employment or proof of exemption from Selective Service registration requirement.

The U.S. Immigration Reform and Control Act of 1986 requires new employees to present proof of identity and eligibility to work in the United States. Failure to provide this information within the required timeframe will result in the offer being rescinded.

Thank you for considering employment at the Texas Department of Housing and Community Affairs! The Texas Department of Housing and Community Affairs is an Equal Employment Opportunity employer.