Salary
$74,899.97 - $112,349.96 Annually
Job Type
Full-time
Job Number
24IT30100TV301
Closing Date
9/23/2024 11:59 PM Central
Description
The Information Technology (IT) department is seeking an IT Analyst III to join their ERM-Security Operations area. This position will provide technical leadership within the Security Operations Team and Security Operations Center (SOC), assisting other staff in their analyses, and respond to security alerts and incidents. IT Security Analysts are responsible for monitoring and maintaining the cybersecurity posture of Hennepin County, including 24-hour incident response. They collaborate with other technical and business staff to identify and remediate risks while supporting a robust, agile, and innovative technology environment.
Current Hennepin County employees who refer a candidate hired into an open competitive position may be eligible for a $500 referral bonus. For more information visit employee referral program.
Location and hours:
This position is remote. Remote workers may be required to come on-site 0 to 12 days a year for work meetings, trainings, or for any other reasons that their supervisor may deem necessary (may include additional days for onboarding and new employee training). Supervisors will provide as much advance notice as practicable. Work hours are Monday through Friday, 8 a.m. – 5 p.m. Based on business needs of this position, hires must live in or relocate to Minnesota.
New employees who are hired into remote or hybrid positions between January 2, 2022, to December 31, 2024, will receive $500 toward the cost of establishing consistent internet connectivity, payable upon completion of 6 months of employment.
About the position type:
This is a full-time, benefit earning position. This position is internally classified as an Information Technology (IT) Analyst III - Technical Analyst.Click here to view the job classification specification. At this time, employees may be eligible to receive an additional cash merit of up to $2,246.99 that can be earned annually based on performance.
In this position, you will:
· Serve as a member of the Information Technology Security Operations team.
· Support the Security Operations Center.
· Lead and participate in relevant information security projects.
· Train and support other information security staff in the identification, analysis, and mitigation of information security risks.
· Analyze data and alerts from Endpoint Data and Response (EDR) tools, Security Incident and Event Management (SIEM) tools, log correlation, and threat intelligence to identify, remediate risks to the Hennepin County cyber infrastructure.
· Interact directly with line of business staff (technical and business) to on-board information relevant to security incidents and communicate mitigation plans and status.
· Coordinate with and support the major incident manager to assist in incident response.
· Partner with the security engineering and architecture teams to improve tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities.
· Participate in on-call Security Operations Center duty rotations.
· Prepare and maintain security documentation.
Need to have:
· One of the following:
o Eight years or more of information technology experience.
o Associate's/vocational/technical degree in computer science, management information systems (MIS), information technology or an approved information technology field related to the position and six years or more of information technology experience.
o Completion of five college/vocational technical technology courses or completion of an approved IT Hennepin County internship and six years or more of information technology experience.
o Bachelor's degree in an information technology field and four years or more of information technology experience.
Nice to have:
· Experience:
o Working with network security in a SOC environment.
o Using PowerShell for data retrieval and manipulation.
o Working with and understanding of cross-platform environments, networks, etc.
o Using query languages like KQL, FQL, Splunk, etc.
· Ability to:
o Perform work under pressure.
o Work in an effective team environment.
o Plan and document complex work tasks.
· Possess current relevant information security certifications.
· Demonstrate problem-solving skills, effective decision-making skills, and strong verbal and written communication skills with the ability to influence business units.
· Solid understanding of industry best practices and standards including, National Institute of Standards and Technology (NIST) standards.
· Well-developed analytical and problem-solving mindset.
· A hunger for continuous learning and growth in the information security discipline.
If you have any questions, please contact:
Toufue Vue