Minnesota Careers
SIEM Systems Administrator - ITS5
Minnesota Careers, Saint Paul, Minnesota, United States, 55130
Job Details
Working Title: SIEM Systems AdministratorJob Class: Information Technology Specialist 5Agency: Minnesota IT ServicesJob ID : 81430Location : St. PaulTelework Eligible : Yes - #LI-HybridFull/Part Time : Full-TimeRegular/Temporary : UnlimitedWho May Apply : Open to all qualified job seekersDate Posted : 10/31/2024Closing Date : 11/27/2024Hiring Agency/Seniority Unit : Minnesota IT ServicesDivision/Unit : Department of Public Safety/Bureau of Criminal ApprehensionWork Shift/Work Hours : Day ShiftDays of Work : Monday - FridayTravel Required : NoSalary Range:
$39.14 - $66.92 / hourly; $81,724 - $139,728 / annuallyJob Class Option : Systems SoftwareClassified Status : ClassifiedBargaining Unit/Union : 214 - MN Assoc of Professional Empl/MAPEFLSA Status : Exempt - ProfessionalDesignated in Connect 700 Program for Applicants with Disabilities : YesThe work you'll do is more than just a job.
At the State of Minnesota, employees play a critical role in developing policies, providing essential services, and working to improve the well-being and quality of life for all Minnesotans. The State of Minnesota is committed to equity and inclusion, and invests in employees by providing benefits, support resources, and training and development opportunities.
Join the 2,600+ professionals of Minnesota IT Services (MNIT) who connect Minnesotans to services that will improve their lives. This position serves our partners at the Bureau of Criminal Apprehension (BCA) within the Department of Public Safety (DPS). MNIT BCA provides comprehensive IT operations and support services, custom application development, and dedicated business-specific support functions for investigative and specialized law enforcement services. You will support an agency that partners with law enforcement, public safety, and criminal justice agencies to prevent and solve crimes.
Job Summary
As an SEIM System Administrator, you will be responsible for leading and participating in the architecture, design, implementation, configuration and maintenance of Security Information and Event Management (SIEM) in support of BCA and MNJIS systems and services. You will provide technical leadership and analysis in BCA's Enterprise software infrastructure and SIEM system and ensure the system effectively managed and utilized to protect the organization against system threats while supporting business objectives. You will promote the protection of BCA's data security and privacy. You will conduct system and procedural risk analysis, with a strong focus on implementation and CJIS compliance. Advise and configure SIEM Enterprise software infrastructure including indexers, web servers and forwarders. The operational duties include implementation and maintenance of SI M software, including patches and updates, adhere to system security and availability. In collaboration with the Infrastructure Security Engineer and Network Operations provide in depth investigations of specific incidents and analyzing and interpreting data trends to determine the root cause and impact and provide recommendations for remediation and prevention .
This position requires an employee to be onsite at the work location 2 days per week.
Telework for Minnesota IT Services allows an employee to perform work from a telework location and an employee may be required to be in the office based on business needs and other dependencies in St Paul, Minnesota.Only candidates located in Minnesota and bordering states (Iowa, North Dakota, South Dakota, or Wisconsin) are telework eligible .Qualifications
Minimum Qualifications
Candidates must clearly demonstrate all of the following qualifications in their resume.
Resume tips here.
:
This position requires a minimum of five (5) years experience with SIEM Information Systems.
Experience must include:
In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g., Splunk Enterprise, Elastic/Kibana).Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.Demonstrated hands-on experience analyzing high volumes of logs, network data (e.g., NetFlow, Full Packet Capture), and other attack artifacts in support of incident investigations.Ability to deliver effective verbal or written messages that facilitate a mutual understanding on both parties.Customer service skills that include active listening, empathy, and problem-solving.A master's degree in Information Technology or an IT related field substitutes for three (3) years of experience, OR an IT related bachelor's degree substitutes for two (2) years, OR an IT related associate's degree substitutes for one (1) year .
Preferred Qualifications
SPLUNK SIEM SME Certification: Splunk Core Certified Power User or more advanced certification.Experience and proficiency with any of the following: Anti-Virus, HIPS/HBSS, IDS/IPS, Full Packet Capture, Network Forensics.Strong analytical, oral and written communications, problem solving, and human relations skills.Advanced certifications involving operation, maintenance, administration of at least one enterprise SIEM platform (e.g., Splunk, Elastic/Kibana).Windows and Linux command line experience.Advanced understanding of the life cycle of system threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques, and procedures (TTPs).Additional Requirements
It is the policy of Minnesota IT Services that a successful candidate must pass all legally required checks prior to employment which may consist of the following:
SEMA4 Records Check (applies to current and past state employees only)Criminal History CheckReference CheckSocial Security and Address VerificationEducation VerificationCJIS Background CheckDrug screenOther legally required checksMinnesota IT Services does not participate in E-Verify. Minnesota IT Services will not sponsor applicant for work visas, including F-1 STEM OPT extensions. All applicants must be legally authorized to work in the United States.
Application Details
How to Apply
Select "Apply for Job" at the top of this page. If you have questions about applying for jobs, contact the Careers Help Desk at 651-259-3637 or email careers@state.mn.us . For additional information about the application process, go to http://www.mn.gov/careers .
Contact
If you have questions about this position, contact Jolene Blaser at jolene.e.blaser@state.mn.us
Connect 700 Program
To receive consideration as a Connect 700 Program applicant, apply online, email the Job ID#, the Working Title and your valid Proof of Eligibility Certificate by the closing date to Jolene Blaser at jolene.e.blaser@state.mn.us .
Veterans
To be considered for any
Veteran's Status
, you MUST indicate this on your application.
RECENTLY SEPARATED VETERANS (RSV) : Effective July 1, 2009, legislation provides that the top five RSV applicants who apply and meet the qualifications for a vacancy shall be granted an interview. You must:
Meet all Minimum Qualifications identified in this posting.Meet all of the RSV criteria.Submit a copy of your DD-214 form by the closing date to: MNIT.Recruitment@state.mn.us .CERTAIN DISABLED VETERANS : Effective August 1, 2012, legislation provides state agencies with the option to appoint certain disabled veterans on a noncompetitive basis if you:
Meet service requirements and have a verified service-connected disability rating of at least 30%.Provide qualifying documentation verifying the disability.Meet all Minimum Qualifications identified in this posting.You must submit all documentation by the closing date to: MNIT.Recruitment@state.mn.us .Current State Employees
Bidders: This vacancy is open for bids and all qualified applicants simultaneously. This vacancy will be filled in accordance with applicable union contract provisions. Current employees of Minnesota IT Services who are currently in an Information
Technology Specialist 5/Systems Software
position and who are eligible to bid and apply within the seven (7) day bidding period will be considered prior to filling the position via other means.Current State Employees: Please note that employment provisions (including but not limited to seniority and leave accrual) vary among the three branches of Minnesota State government. When considering a job with another branch of state government, you are highly encouraged to explore these differences. For assistance, please direct questions to your current or anticipated Human Resources office.About Minnesota IT Services
Minnesota IT Services is the information technology agency for the State of Minnesota. MNIT partners with agencies, boards, councils, and commissions to deliver secure, reliable technology solutions as we set IT strategy, direction, policies, and standards statewide. Work for MNIT and be part of a nation-leading IT organization that helps to create an innovative government that works for everyone. Our culture promotes collaboration, demands agility, and encourages us to embrace change. Be a part of something bigger than yourself, something to be inspired by; come to work for MNIT.
Working together to improve the state we love.
What do Minnesota's State employees have in common?
A sense of purpose in their workConnection with their coworkers and communitiesOpportunities for personal and professional growthBenefits
As an employee, you'll have access to one of the most affordable health insurance plans in Minnesota, along with other benefits to help you and your family be well.
Your benefits may include:
Paid vacation and sick leave12 paid holidays each yearLow-cost medical, dental, vision, and prescription drug plans
Fertility care, including IVFDiabetes careDental and orthodontic care for adults and children
6 weeks paid leave for parents of newborn or newly adopted childrenPension plan that provides income when you retire (after working at least three years)Employer paid life insurance to provide support for your family in the event of deathShort-term and long-term disability insurance that can provide income if you are unable to work due to illness or injuryTax-free expense accounts for health, dental, and dependent careResources that provide support and promote physical, emotional, social, and financial well-beingSupport to help you reach your career goals:
Training, classes, and professional developmentTuition reimbursementFederal Public Service Loan Forgiveness Program (Some positions may qualify for the Public Service Loan Forgiveness Program). For more information, visit the Federal Student Aid website at studentaid.gov )Employee Assistance Program (EAP) for work/life support:
A voluntary confidential program that helps employees and their families with life challenges that may impact overall health, personal well-being, or job performanceCommon sources of stress can be addressed through the EAP: mental health, relationship challenges (personal and work), grief and loss, finances, and legal issuesDaily Living/Convenience Services: Chore services, home repair, trip planning, child/elder care
Programs, resources and benefits eligibility varies
based on type of employment, agency, funding availability, union/collective bargaining agreement, location, and length of service with the State of Minnesota.
EQUAL OPPORTUNITY EMPLOYERS
Minnesota state agencies are equal opportunity, affirmative action, and veteran-friendly employers. State agencies are committed to creating a workforce that reflects the diversity of the state and strongly encourages persons of color and Indigenous communities, members of the LGBTQIA2S+ community, individuals with disabilities, women, and veterans to apply. The varied experiences and perspectives of employees strengthen the work we do together and our ability to best serve Minnesotans.
All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, national origin, sex (including pregnancy, childbirth, and disabilities related to pregnancy or childbirth), gender identity, gender expression, marital status, familial status, age, sexual orientation, status regarding public assistance, disability, veteran status or activity in a local Human Rights Commission or any other characteristic protected by law.
APPLICANTS WITH DISABILITIES
Minnesota state agencies make reasonable accommodations to their employees and applicants with disabilities. If you have a disability and need assistance in searching or applying for jobs with the State of Minnesota, call the Careers Help Desk at 651-259-3637 or email careers@state.mn.us and let us know the support you need.
Working Title: SIEM Systems AdministratorJob Class: Information Technology Specialist 5Agency: Minnesota IT ServicesJob ID : 81430Location : St. PaulTelework Eligible : Yes - #LI-HybridFull/Part Time : Full-TimeRegular/Temporary : UnlimitedWho May Apply : Open to all qualified job seekersDate Posted : 10/31/2024Closing Date : 11/27/2024Hiring Agency/Seniority Unit : Minnesota IT ServicesDivision/Unit : Department of Public Safety/Bureau of Criminal ApprehensionWork Shift/Work Hours : Day ShiftDays of Work : Monday - FridayTravel Required : NoSalary Range:
$39.14 - $66.92 / hourly; $81,724 - $139,728 / annuallyJob Class Option : Systems SoftwareClassified Status : ClassifiedBargaining Unit/Union : 214 - MN Assoc of Professional Empl/MAPEFLSA Status : Exempt - ProfessionalDesignated in Connect 700 Program for Applicants with Disabilities : YesThe work you'll do is more than just a job.
At the State of Minnesota, employees play a critical role in developing policies, providing essential services, and working to improve the well-being and quality of life for all Minnesotans. The State of Minnesota is committed to equity and inclusion, and invests in employees by providing benefits, support resources, and training and development opportunities.
Join the 2,600+ professionals of Minnesota IT Services (MNIT) who connect Minnesotans to services that will improve their lives. This position serves our partners at the Bureau of Criminal Apprehension (BCA) within the Department of Public Safety (DPS). MNIT BCA provides comprehensive IT operations and support services, custom application development, and dedicated business-specific support functions for investigative and specialized law enforcement services. You will support an agency that partners with law enforcement, public safety, and criminal justice agencies to prevent and solve crimes.
Job Summary
As an SEIM System Administrator, you will be responsible for leading and participating in the architecture, design, implementation, configuration and maintenance of Security Information and Event Management (SIEM) in support of BCA and MNJIS systems and services. You will provide technical leadership and analysis in BCA's Enterprise software infrastructure and SIEM system and ensure the system effectively managed and utilized to protect the organization against system threats while supporting business objectives. You will promote the protection of BCA's data security and privacy. You will conduct system and procedural risk analysis, with a strong focus on implementation and CJIS compliance. Advise and configure SIEM Enterprise software infrastructure including indexers, web servers and forwarders. The operational duties include implementation and maintenance of SI M software, including patches and updates, adhere to system security and availability. In collaboration with the Infrastructure Security Engineer and Network Operations provide in depth investigations of specific incidents and analyzing and interpreting data trends to determine the root cause and impact and provide recommendations for remediation and prevention .
This position requires an employee to be onsite at the work location 2 days per week.
Telework for Minnesota IT Services allows an employee to perform work from a telework location and an employee may be required to be in the office based on business needs and other dependencies in St Paul, Minnesota.Only candidates located in Minnesota and bordering states (Iowa, North Dakota, South Dakota, or Wisconsin) are telework eligible .Qualifications
Minimum Qualifications
Candidates must clearly demonstrate all of the following qualifications in their resume.
Resume tips here.
:
This position requires a minimum of five (5) years experience with SIEM Information Systems.
Experience must include:
In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g., Splunk Enterprise, Elastic/Kibana).Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth, and common security elements.Demonstrated hands-on experience analyzing high volumes of logs, network data (e.g., NetFlow, Full Packet Capture), and other attack artifacts in support of incident investigations.Ability to deliver effective verbal or written messages that facilitate a mutual understanding on both parties.Customer service skills that include active listening, empathy, and problem-solving.A master's degree in Information Technology or an IT related field substitutes for three (3) years of experience, OR an IT related bachelor's degree substitutes for two (2) years, OR an IT related associate's degree substitutes for one (1) year .
Preferred Qualifications
SPLUNK SIEM SME Certification: Splunk Core Certified Power User or more advanced certification.Experience and proficiency with any of the following: Anti-Virus, HIPS/HBSS, IDS/IPS, Full Packet Capture, Network Forensics.Strong analytical, oral and written communications, problem solving, and human relations skills.Advanced certifications involving operation, maintenance, administration of at least one enterprise SIEM platform (e.g., Splunk, Elastic/Kibana).Windows and Linux command line experience.Advanced understanding of the life cycle of system threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques, and procedures (TTPs).Additional Requirements
It is the policy of Minnesota IT Services that a successful candidate must pass all legally required checks prior to employment which may consist of the following:
SEMA4 Records Check (applies to current and past state employees only)Criminal History CheckReference CheckSocial Security and Address VerificationEducation VerificationCJIS Background CheckDrug screenOther legally required checksMinnesota IT Services does not participate in E-Verify. Minnesota IT Services will not sponsor applicant for work visas, including F-1 STEM OPT extensions. All applicants must be legally authorized to work in the United States.
Application Details
How to Apply
Select "Apply for Job" at the top of this page. If you have questions about applying for jobs, contact the Careers Help Desk at 651-259-3637 or email careers@state.mn.us . For additional information about the application process, go to http://www.mn.gov/careers .
Contact
If you have questions about this position, contact Jolene Blaser at jolene.e.blaser@state.mn.us
Connect 700 Program
To receive consideration as a Connect 700 Program applicant, apply online, email the Job ID#, the Working Title and your valid Proof of Eligibility Certificate by the closing date to Jolene Blaser at jolene.e.blaser@state.mn.us .
Veterans
To be considered for any
Veteran's Status
, you MUST indicate this on your application.
RECENTLY SEPARATED VETERANS (RSV) : Effective July 1, 2009, legislation provides that the top five RSV applicants who apply and meet the qualifications for a vacancy shall be granted an interview. You must:
Meet all Minimum Qualifications identified in this posting.Meet all of the RSV criteria.Submit a copy of your DD-214 form by the closing date to: MNIT.Recruitment@state.mn.us .CERTAIN DISABLED VETERANS : Effective August 1, 2012, legislation provides state agencies with the option to appoint certain disabled veterans on a noncompetitive basis if you:
Meet service requirements and have a verified service-connected disability rating of at least 30%.Provide qualifying documentation verifying the disability.Meet all Minimum Qualifications identified in this posting.You must submit all documentation by the closing date to: MNIT.Recruitment@state.mn.us .Current State Employees
Bidders: This vacancy is open for bids and all qualified applicants simultaneously. This vacancy will be filled in accordance with applicable union contract provisions. Current employees of Minnesota IT Services who are currently in an Information
Technology Specialist 5/Systems Software
position and who are eligible to bid and apply within the seven (7) day bidding period will be considered prior to filling the position via other means.Current State Employees: Please note that employment provisions (including but not limited to seniority and leave accrual) vary among the three branches of Minnesota State government. When considering a job with another branch of state government, you are highly encouraged to explore these differences. For assistance, please direct questions to your current or anticipated Human Resources office.About Minnesota IT Services
Minnesota IT Services is the information technology agency for the State of Minnesota. MNIT partners with agencies, boards, councils, and commissions to deliver secure, reliable technology solutions as we set IT strategy, direction, policies, and standards statewide. Work for MNIT and be part of a nation-leading IT organization that helps to create an innovative government that works for everyone. Our culture promotes collaboration, demands agility, and encourages us to embrace change. Be a part of something bigger than yourself, something to be inspired by; come to work for MNIT.
Working together to improve the state we love.
What do Minnesota's State employees have in common?
A sense of purpose in their workConnection with their coworkers and communitiesOpportunities for personal and professional growthBenefits
As an employee, you'll have access to one of the most affordable health insurance plans in Minnesota, along with other benefits to help you and your family be well.
Your benefits may include:
Paid vacation and sick leave12 paid holidays each yearLow-cost medical, dental, vision, and prescription drug plans
Fertility care, including IVFDiabetes careDental and orthodontic care for adults and children
6 weeks paid leave for parents of newborn or newly adopted childrenPension plan that provides income when you retire (after working at least three years)Employer paid life insurance to provide support for your family in the event of deathShort-term and long-term disability insurance that can provide income if you are unable to work due to illness or injuryTax-free expense accounts for health, dental, and dependent careResources that provide support and promote physical, emotional, social, and financial well-beingSupport to help you reach your career goals:
Training, classes, and professional developmentTuition reimbursementFederal Public Service Loan Forgiveness Program (Some positions may qualify for the Public Service Loan Forgiveness Program). For more information, visit the Federal Student Aid website at studentaid.gov )Employee Assistance Program (EAP) for work/life support:
A voluntary confidential program that helps employees and their families with life challenges that may impact overall health, personal well-being, or job performanceCommon sources of stress can be addressed through the EAP: mental health, relationship challenges (personal and work), grief and loss, finances, and legal issuesDaily Living/Convenience Services: Chore services, home repair, trip planning, child/elder care
Programs, resources and benefits eligibility varies
based on type of employment, agency, funding availability, union/collective bargaining agreement, location, and length of service with the State of Minnesota.
EQUAL OPPORTUNITY EMPLOYERS
Minnesota state agencies are equal opportunity, affirmative action, and veteran-friendly employers. State agencies are committed to creating a workforce that reflects the diversity of the state and strongly encourages persons of color and Indigenous communities, members of the LGBTQIA2S+ community, individuals with disabilities, women, and veterans to apply. The varied experiences and perspectives of employees strengthen the work we do together and our ability to best serve Minnesotans.
All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, national origin, sex (including pregnancy, childbirth, and disabilities related to pregnancy or childbirth), gender identity, gender expression, marital status, familial status, age, sexual orientation, status regarding public assistance, disability, veteran status or activity in a local Human Rights Commission or any other characteristic protected by law.
APPLICANTS WITH DISABILITIES
Minnesota state agencies make reasonable accommodations to their employees and applicants with disabilities. If you have a disability and need assistance in searching or applying for jobs with the State of Minnesota, call the Careers Help Desk at 651-259-3637 or email careers@state.mn.us and let us know the support you need.