IT security analyst

Experience

• Minimum of four (4) years of relevant work experience required.

Primary Job Duties/Tasks

1. Serve on the Computer Security Incident Response Team (CSIRT):

2. Research incidents

3. Identify corrective actions

4. Document status

5. Coordinate responses

6. Monitor endpoint software viruses:

7. Enforce endpoint security policies

8. Administer and monitor security profiles

9. Review and investigate security violations

10. Maintain and document security controls

11. Collaborate with Patch Management and Configuration Team:

12. Identify secure configurations for FDOT standard products

13. Support implementation of secure baselines via package rollout/group policy

14. Use tools to verify compliance with baselines

15. Administer and maintain endpoint vulnerability products:

16. Produce vulnerability risk reports

17. Conduct routine endpoint vulnerability scanning

Job-Specific Knowledge, Skills, and Abilities (KSAs)

1. Appropriate security controls to ensure confidentiality, integrity, and availability of IT resources

2. Computing technologies (e.g., Windows, Windows Server, TCP/IP)

3. Vulnerability management tools

4. Security practices and standards (NIST, CIS CSC, Florida Cybersecurity Standards - 74-2 / 60GG-2)

5. Microsoft tools: SCCM, Group Policy, PowerShell

6. Operating system security settings (e.g., registry manipulation)

7. Security Information and Event Management (SIEM) tools

8. SPLUNK preferred but not required

9. Malware and vulnerability scanning tools (e.g., Malwarebytes, Windows Defender)