State of Ohio
Infrastructure Specialist 3 (Cyber Analyst & Incident Responder) (Hybrid Eligibl
State of Ohio, Columbus, Ohio, United States, 43224
Job Description - Infrastructure Specialist 3 (Cyber Analyst & Incident Responder)
(Hybrid Eligible) (Beightler Armory) - 20063126 (24000AYC)Organization
Agency Contact Name and Information: darryl.k.mcfarlane.nfg@army.milWork Location
Beightler Armory, 2825 W Dublin-Granville Road, Columbus, 43235-2789Compensation
$38.84 per hourSchedule
Full-timePrimary Job Skill
CybersecurityJob Duties
The Adjutant General's Department is looking for an experienced, detail-oriented & customer-focused
Infrastructure Specialist 3 (Cyber Analyst & Incident Responder) . Successful candidates will have knowledge & experience with the following:Under general supervision, stays abreast of the latest cyber threats, attack techniques, and vulnerabilitiesCollect, analyze, and disseminate actionable threat intelligence to enhance the organization's security postureCollaborate with threat intelligence sharing communities and industry partners to exchange information and stay ahead of emerging threatsMonitor various security systems and tools to detect potential cyber threats and security incidentsAnalyze security alerts and logs to determine the nature and severity of incidentsConduct in-depth investigations into security events to identify root causes and potential impactsUse network monitoring tools to capture and analyze network traffic associated with malicious activityCorrelate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediationProduce intelligence reports in collaboration with intelligence analysts for dissemination to customersLead or assist in responding to cybersecurity incidents, including but not limited to malware infections, data breaches, and network intrusionsDevelop and execute incident response plans and procedures to contain and eradicate security incidentsCoordinate with internal stakeholders and external partners (such as law enforcement or third-party incident responders) as necessary during incident response activitiesConduct malware analysis using static and dynamic methodologiesPerform live box and dead box forensics to identify compromise and attack vectorPreserve forensic evidence IAW NIST standardsMaintain a fly-away kitCommunicate & collaborate with various community organizations to achieve a mutually beneficial cybersecurity programDevelop relationships with critical infrastructure organizations to grow partnerships with the cyber center and OHSCollaborate with statewide cybersecurity partners to formulate & implement sophisticated &/or complex cybersecurity related policies & proceduresCreate synergy between the cyber center and its collaborative partners and stakeholdersDocument all aspects of incident response activities, including findings, actions taken, and lessons learnedPrepare clear and concise incident reports for management and other stakeholdersContribute to the development of incident response playbooks and standard operating proceduresParticipate in post-incident reviews and contribute to the identification of process improvements and security enhancementsAssist in the testing and validation of security controls and incident response plans through tabletop exercises and simulationsProactively identify gaps in security posture and recommend remediation actionsQualifications
The following are the preferred and minimum qualifications for this position:Preferred Qualifications
Any of the following certifications: GIAC GCIH Cert, CompTIA Cysa+, CompTIA Security+Degree in Cyber Security or related information technology fieldMinimum Qualifications
Option 1 : 60 mos. combined work experience in evaluating effectiveness and risk of IT processes, recommending changes in IT procedures, and evaluating and/or researching hardware and/or software solutions, including 12 mos. work experience in the primary technology specified by the agency.Option 2 : Completion of associate core program in computer science or information systems; 42 mos. combined work experience as above, including 12 mos. work experience in the primary technology specified by the agency.Option 3 : Completion of undergraduate core program in computer science or information systems; 36 mos. combined work experience as above, including 12 mos. work experience in the primary technology specified by the agency.Option 4 : Equivalent of minimum class qualifications for employment noted above.Pay Information
This position is in the State of Ohio’s OCSEA Bargaining Unit Pay Schedule, Pay Range 35. Starting salary will be the minimum salary of that pay range ($38.84 per hour). These ranges provide a standardized pathway for pay increases.Supplemental Information
This position is telework eligible and may require travel; therefore, the person occupying this position may be required to complete initial trainings prior to being approved to telework. All requests to telework are reviewed on a case-by-case basis and must be approved by ADJ’s State Human Resources Director.
#J-18808-Ljbffr
(Hybrid Eligible) (Beightler Armory) - 20063126 (24000AYC)Organization
Agency Contact Name and Information: darryl.k.mcfarlane.nfg@army.milWork Location
Beightler Armory, 2825 W Dublin-Granville Road, Columbus, 43235-2789Compensation
$38.84 per hourSchedule
Full-timePrimary Job Skill
CybersecurityJob Duties
The Adjutant General's Department is looking for an experienced, detail-oriented & customer-focused
Infrastructure Specialist 3 (Cyber Analyst & Incident Responder) . Successful candidates will have knowledge & experience with the following:Under general supervision, stays abreast of the latest cyber threats, attack techniques, and vulnerabilitiesCollect, analyze, and disseminate actionable threat intelligence to enhance the organization's security postureCollaborate with threat intelligence sharing communities and industry partners to exchange information and stay ahead of emerging threatsMonitor various security systems and tools to detect potential cyber threats and security incidentsAnalyze security alerts and logs to determine the nature and severity of incidentsConduct in-depth investigations into security events to identify root causes and potential impactsUse network monitoring tools to capture and analyze network traffic associated with malicious activityCorrelate incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediationProduce intelligence reports in collaboration with intelligence analysts for dissemination to customersLead or assist in responding to cybersecurity incidents, including but not limited to malware infections, data breaches, and network intrusionsDevelop and execute incident response plans and procedures to contain and eradicate security incidentsCoordinate with internal stakeholders and external partners (such as law enforcement or third-party incident responders) as necessary during incident response activitiesConduct malware analysis using static and dynamic methodologiesPerform live box and dead box forensics to identify compromise and attack vectorPreserve forensic evidence IAW NIST standardsMaintain a fly-away kitCommunicate & collaborate with various community organizations to achieve a mutually beneficial cybersecurity programDevelop relationships with critical infrastructure organizations to grow partnerships with the cyber center and OHSCollaborate with statewide cybersecurity partners to formulate & implement sophisticated &/or complex cybersecurity related policies & proceduresCreate synergy between the cyber center and its collaborative partners and stakeholdersDocument all aspects of incident response activities, including findings, actions taken, and lessons learnedPrepare clear and concise incident reports for management and other stakeholdersContribute to the development of incident response playbooks and standard operating proceduresParticipate in post-incident reviews and contribute to the identification of process improvements and security enhancementsAssist in the testing and validation of security controls and incident response plans through tabletop exercises and simulationsProactively identify gaps in security posture and recommend remediation actionsQualifications
The following are the preferred and minimum qualifications for this position:Preferred Qualifications
Any of the following certifications: GIAC GCIH Cert, CompTIA Cysa+, CompTIA Security+Degree in Cyber Security or related information technology fieldMinimum Qualifications
Option 1 : 60 mos. combined work experience in evaluating effectiveness and risk of IT processes, recommending changes in IT procedures, and evaluating and/or researching hardware and/or software solutions, including 12 mos. work experience in the primary technology specified by the agency.Option 2 : Completion of associate core program in computer science or information systems; 42 mos. combined work experience as above, including 12 mos. work experience in the primary technology specified by the agency.Option 3 : Completion of undergraduate core program in computer science or information systems; 36 mos. combined work experience as above, including 12 mos. work experience in the primary technology specified by the agency.Option 4 : Equivalent of minimum class qualifications for employment noted above.Pay Information
This position is in the State of Ohio’s OCSEA Bargaining Unit Pay Schedule, Pay Range 35. Starting salary will be the minimum salary of that pay range ($38.84 per hour). These ranges provide a standardized pathway for pay increases.Supplemental Information
This position is telework eligible and may require travel; therefore, the person occupying this position may be required to complete initial trainings prior to being approved to telework. All requests to telework are reviewed on a case-by-case basis and must be approved by ADJ’s State Human Resources Director.
#J-18808-Ljbffr