Skip to Main Content
← Back to Jobs

Information Security Analyst

Frederick County Government Frederick, MD
  • Expired: December 09, 2019. Applications are no longer accepted.

Exempt; full-time; 40 hours per week; Monday - Friday; 8:00 a.m. - 5:00 p.m.; full-benefits

Staff Information Security Analyst = $58,548 - $70,257
Senior Information Security Analyst = $62,697 - $75,236


NOTE: Above base salary pay will be considered on a case by case basis and will be determined upon the qualifications of the successful candidate.


This professional position is a member of the team responsible for the design, administration, controls, analysis, response, and management of all aspects of Frederick County's information security environment. This includes, but is not limited to, policies, access, and controls for enterprise applications, data, firewalls, wired and wireless networks.  Direction may be given to contractors, technical and clerical support staff; and supervision is received from the IIT Information Security Functional Lead.

Staff Information Security Analyst
 
  • Provide routine management of information security technical controls
  • Provide security analysis and best practice configuration of enterprise applications
  • Research and recommend IT security technologies and process improvements
  • Assist with policy and technology exception requests
  • Assist with daily work orders associated with information security technical controls
  • Review security logs sources and escalate events when needed
  • Provide updates on areas of operational risk
  • Assist with security reviews and mitigations of new and existing systems
  • Work with contractors as needed for security projects
  • Assist with security awareness training and outreach when needed
  • Review Change Management request and identify areas of risk
  • Assist with incident response analysis
  • Perform others duties as assigned
 
Senior Information Security Analyst
 
  • Perform duties of Staff Information Security Analyst
  • Assist in the implementation of new security controls
  • Assist in developing information security policies, plans and procedures
  • Assist in cross division security projects
  • Assist with the risk management framework and mitigation methods
  • Contribute to security roadmap planning and budget forecasting
  • Provide security analysis as it relates to RFPs and RFI, other system purchases
  • Assist with drafting official responses to information security requests and audits
  • Assist with technical automation for security controls
  • Assist other teams with security mitigation efforts
  • Perform other duties as assigned


To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Any single position may not be assigned all duties listed above, nor do the examples cover all duties that may be assigned.

The qualifications / requirements, knowledge/skills/abilities and physical demands or working conditions described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.


Staff Information Security Analyst
 
  • Bachelor's degree in Information Technologies or a related field
  • Minimum 3 years current IT security related work experience
  • NOTE: Possession of current technology certifications may substitute for a portion of the education and work experience
 
Senior Information Security Analyst
 
  • Bachelor's degree in Information Technologies or a related field
  • Minimum 5 years current IT security related work experience
  • NOTE: Possession of current technology certifications may substitute for a portion of the education and work experience

KNOWLEDGE, SKILLS AND ABILITIES:
  • Strong information security troubleshooting skills, including the ability to review and analyze log files, identify trends and patterns, and use security software and tools to identify, detect and mitigate potential risks in a thorough and timely manner
  • Ability to analyze existing security environments, services, and offer improvements
  • Ability to stay current with technologies, security threats and vulnerabilities
  • Knowledge developing and implementing strategies to improve information security services and/or reduce costs and risks
  • Ability to work independently or with a team to manage priorities and schedules
  • Ability to organize, prepare, and communicate clear, concise and accurate assessment, remediation and incident reports
  • Ability to effectively plan and organize work with minimal supervision
  • Ability to develop and maintain effective working relationships with co-workers, customers, management, vendors, government agencies and the general public
  • Ability to organize, prepare and communicate clear, concise and accurate assessment, audit, remediation and incident reports and notifications
  • Strong and effective spoken and written (English) communication skills


PREFERENCE MAY BE GIVEN FOR:

  • Possession of current industry security certifications CISSP, CEH, CISM or CISA
  • Experience with Next Generation Firewall protections
  • Experience with endpoint protection products (Encryption, AV, etc.)
  • Experience with Remote Access Technologies
  • Experience with Dual Factor Authentication Technologies
  • Experience with SIEM platforms and log correlation scripting
  • Experience with Network Admittance Control Technologies
  • Experience with vulnerability scanning and application security technologies
 
PHYSICAL REQUIREMENTS / WORKING CONDITIONS:
  • While working in this position, the employee is required to constantly sitting; frequently performing repetitive motions; occasionally walking and stooping; and rarely lifting up to 50 pounds, pushing up to 40 pounds and pulling up to 40 pounds
  • While working in this position, the employee is required to constantly work indoors; occasionally work in a noisy environment and rarely with in a dirty and dusty environment; in confined spaces and near chemicals or fumes
  • Provide own transportation as needed for meetings and other departmental priorities
  • Available for off hours support coverage and occasional evening/weekend work required for special projects and/or emergency situations

KIND OF EXAMINATION (may include):
 
1) An evaluation of training and experience
2) One or more interviews
3) Pre-employment Security Sensitive background investigation
3) Pre-employment physical examination and drug test Employment Type: Full-time Regular

Frederick County Government

Address

Frederick, MD
21701 USA