State of Utah logo

Information Security Analyst II

State of Utah
Full-time
On-site
Salt Lake County, Utah, United States
$30.64 - $48.59 USD hourly

Job Description



The Division of Technology Services (DTS) has one opening for a great candidate on our IT Security team, specifically within the Local Government Cybersecurity Outreach program. The chosen candidate will perform working level Information Security technology related duties in the areas of cybersecurity, information security policy, information security monitoring, information security compliance/audit, vulnerability and risk assessments, security education and training, incident response, and cybersecurity consulting/outreach. Positions assigned to this job title may perform a combination of tasks at the information security level.

Location: This position may be available for partial remote work with at least 2 days in the office. The office is located at Taylorsville State Office Building 4315 S 2700 West, Taylorsville, Utah. Please note, a position's eligibility for telework is established by agency management and is subject to change at their discretion at any time and for any reason. All remote work must be performed within Utah. Limited in-state travel is required.

Why join our team? 
We have great culture and team who wants to serve local governments and Utah citizens efficiently and effectively, while working within cybersecurity standards and federal and state requirements and guidelines. This is an opportunity to make a difference for local government and Utah citizens while being a pivotal part of an exciting IT team. You will receive great health and retirement benefits, such as, generous paid time off so you can spend more time with your family and have a positive work life balance. Click here to view a summary of all the benefits we offer.

What's in it for you?
You will receive great health and retirement benefits. In this position, you would enjoy the generous benefits package offered by the State of Utah. We have an extremely competitive total compensation package that you can learn about HERE!
  • Health Insurance - Public Employee Health Program (PEHP):
  • 3 medical plan options. Choose a Traditional or High Deductible Health Plan. (There is an Opt-Out Cash Benefit option for those that have other medical insurance coverage)
  • 5 dental plan options (There is an Opt-Out Cash Benefit option for those that have other dental insurance coverage)
  • 4 vision plan options under EyeMed or OptiCare
  • Retirement - Utah Retirement Systems (URS):
  • Employees hired on or after than 7/1/2011 and have never been in the URS retirement system have two options for retirement in the Tier II System. Employer contributions to your 401(k) are vested after four years.
  • Employees who have any service credit with an employer covered by the Utah Retirement Systems prior to 7/1/2011 are in Tier I Public Employees System.
  • Tier 2 Hybrid Retirement System. Employer contributes an amount equal to 10% of your salary between both plans (pension and 401(k))
  • Tier 2 Defined Contribution Plan. Employer contributes an amount equal to 10% of your salary to a 401(k) plan only.  
  • Employees who have any service credit with an employer covered by the Utah Retirement Systems prior to 7/1/2011 are in Tier I Public Employees System.
  • Paid Time Off:
  • Annual leave and sick leave are accrued at 4 hours per pay period each (4 hours annual, 4 hours sick).
  • Annual leave increases with years of service. 
  • There are also 12 paid holidays.

The Agency: To learn more about The Division of Technology Services check us out Click here. The State's environment is a highly optimized blend of systems responsible for collecting, processing, and distributing millions of data elements every day.;

Responsibilities

Primary Duties:

  • Conduct security consulting with local governments.
  • Conduct cybersecurity related outreach with local governments through briefs, meetings, presentations, service onboarding calls, information service/program calls, attending conferences/commissions, websites, etc.
  • Assist in tracking, administering, and pursing funding for cybersecurity programs for local governments.
  • Support, track, manage cybersecurity programs available to local governments.
  • Assist with the implementation of cybersecurity software available to local governments.
  • Assist with the development of cybersecurity best practice policies, procedures, templates, and documentation.
  • Monitors and reviews threat intelligence and performs threat hunting.
  • Communicates alerts regarding threats, intrusions and compromises to stakeholders, network infrastructure, applications, and operating systems, where applicable.
  • Assists with implementation of countermeasures or mitigating controls.
  • Monitor and assist with understanding compliance, such as, NIST Cybersecurity framework, PCI DSS Compliance, IRS FTI compliance, HIPAA Compliance, CJIS Compliance or any other regulatory compliance that is applicable to the local governments supported.
  • Perform / assist entities with risk and vulnerability assessments.
  • Perform and coordinate Security Incident Response activities with local government entities.
  • Assist with security assessments for local government systems/applications.

Qualifications

WHAT WE ARE LOOKING FOR:
To be successful in this role, the selected candidate will need proven intrinsic characteristics, professional working or educational experience with security operations and information technology, analytical experience, collaborative and communicative characteristics, a willingness to be responsive outside normal work hours, and possess some awareness and/or understanding of compliance requirements.

PREFERENCE MAY BE GIVEN FOR THE FOLLOWING:

  • Networking operations experience and/or certifications
  • Computer programming experience and/or skills 
  • Practical DevSecOps and agile experience and/or skills 
  • Law enforcement and/or compliance experience 
  • Experience supervising information technology/security operations
  • Relevant educational degrees, or equivalent work experience
  • Experience in Desktop Support Operations

NECESSARY SKILLS INCLUDE:

  • Knowledge in and application of cybersecurity practices and their implementation.
  • Knowledge in and application of security compliance, assessments, and audits.
  • Knowledge in and use of different types of cybersecurity software such as vulnerability management, patching, MFA, email security, endpoint protection, secure backups, and other similar types of systems.
  • Knowledge, training, certification, practical application and/or education in information technology such as, desktop support, security, networking, hosting, and other similar IT disciplines.

Supplemental Information

  • Employment contingent on passing a drug screening and a background check.
  • Risks found in the typical office setting, which is adequately lighted, heated and ventilated, e.g., safe use of office equipment, avoiding trips and falls, observing fire regulations, etc
  • Work requires physical exertion. May require the ability to stand; walk over rough surfaces; bend, crouch, stoop, stretch, reach, lift moderately heavy items (up to 50 lbs.).
  • This position is currently a grant funded position.

Apply now
Share this job
Twitter Facebook Linkedin Email