Apply on Employer Site

Capps Plumbing and Sewer, Inc. · 1 month ago

Cybersecurity Analyst II (Threat Researcher)

WP Clements (313-00001)300 W 15TH ST STE 1300

Full-time

Onsite

Mid Level

$7,833.34/mo - $8,025/mo

3+ years exp

Capps Plumbing and Sewer, Inc. is part of the Department of Information Resources in Texas, focusing on cybersecurity protection and incident response. The Cybersecurity Analyst II will engage with various stakeholders to identify and respond to cybersecurity threats, maintaining the security posture of Texas.

CommercialCustomer ServiceProperty ManagementResidential

No H1B

Responsibilities

Engage with industry partners, government agencies, and intelligence communities to gather and disseminate threat intelligence—such as credential leaks, data exposures, and adversary activity from the dark web—to maintain real-time awareness of threats impacting Texas entities

Coordinate with industry partners, government agencies (including law enforcement and intelligence agencies) and other specialists to establish and maintain situational awareness of current and emerging risks and threats to the state

Use open source and commercial intelligence providers to gain insight into adversary tactics, techniques and procedures, as well as planned activities and emerging motivations

Advise the Department leadership and state cybersecurity community of significant emerging threats, and provide both strategic and tactical steps to counteract these threats

Develop and potentially deliver tabletop preparedness exercises for both technical and non-technical stakeholders, providing educational and awareness presentations on sound security practices to improve the security maturity of the state

Conduct proactive threat research and dark web monitoring to identify compromised accounts, exposed data, vulnerabilities, and emerging adversary tactics affecting Texas governmental entities

Support cyber incident response and recovery services for any eligible governmental entity across the State of Texas, integrating intelligence from threat research and dark web monitoring into response efforts

Perform other work-related duties as assigned

Qualification

Cybersecurity incident responseThreat intelligence analysisVulnerability assessmentCertified Ethical Hacker (CEH)Certified Information Systems Security Professional (CISSP)Project managementDocumentation skillsInterpersonal skillsCommunication skillsTeam collaboration

Required

Graduation from an accredited four-year college or university with major coursework in information technology security, computer information systems, computer science, management information systems, or a related field

Three (3) years of progressively responsible experience in the IT industry

Three (3) years of progressively responsible experience in information technology security or project management work

One (1) year of experience in responding to security incidents

Knowledge of applied 'sound security' concepts, such as the principal of least privilege, the use of multi-factor authentication, and identity and access management

Knowledge of generally accepted information technology standards and practices; of information technology practices; and of information technology management practices

Knowledge of the security limitations and capabilities of computer systems and of information security practices, procedures, and regulations

Knowledge of security architecture and security program requirements

Knowledge of relevant DIR IT Security Services and regulations including Texas Government Code Chapter 2063, Texas Administrative Code § 202, and other related security codes, documentation, standards, and best practices

Demonstrated documentation skills

Ability to communicate effectively using interpersonal skills and appropriate supporting technology

Ability to promote and support the overall mission, goals, and efforts of the team

Ability to learn and adapt quickly in a dynamic environment

Ability to manage projects to resolve complex issues in diverse and decentralized environments

Ability to establish and maintain effective and cordial working relationships at all organizational levels, including agency management, direct supervisors, co-workers, internal and external customers

Ability to understand, follow and convey brief oral and/or written instructions

Ability to communicate both verbally and in writing, in a clear and concise manner

Ability to work independently and as part of a team, and to support and contribute to a cohesive team environment

Ability to work under pressure and exacting schedules to complete assigned tasks

Ability to occasional work beyond scheduled hours and/or a flexible schedule as needed to meet required deadlines

Ability to travel as necessary

Ability to comply with all agency policy and applicable laws

Ability to comply with all applicable safety rules, regulations, and standards

Ability to maintain the security and integrity of any critical infrastructure researched, worked on, or accessed for work purposes

Proficiency in the use of a computer and applicable software necessary to perform work assignments e.g., word processing, spreadsheets (Microsoft Office preferred)

Regular and punctual attendance at the workplace

Criminal background check

Preferred

Experience and training in analyzing, recommending, developing, and implementing enterprise-wide policies, standards, and guidelines

Experience in researching and documenting findings on information technology issues, processes, or programs

Experience in adult learning techniques, including curriculum development and delivery of technical and non-technical training

Experience in creating and editing documentation, related processes public presentations, and other written communication

Have or work towards obtaining Certified Ethical Hacker (CEH) GAIC Certified Incident Handler (GCIH), GCFE Certified Forensic Examiner (GAIC), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), GIAC Security Essentials Certification (GSEC), Certified Incident Handler (GCIH) and/or CyberSec First Responder (CFR) or similar certification, or serve as a SME on a certification creation committee or equivalent