Information Security Analyst II

Salary : $81,382.29 - $135,637.01 Annually

Location : FAIRFAX (EJ32), VA

Job Type : FT Salary W BN

Job Number : 25-00149

Department : Information Technology

Opening Date : 01 / 18 / 2025

Closing Date : 1 / 31 / 2025 11 : 59 PM Eastern

Pay Grade : S28

Posting Type : Open to General Public

Job Announcement

Acts as a security analyst in the realm of cybersecurity and privacy within the Information Security Office (ISO). Responsibilities include assessing cyber threats, responding to cyber incidents, and addressing agency inquiries on security issues. Additionally, the role involves implementing and managing cybersecurity tools and systems to ensure secure, efficient, and resilient IT operations across the enterprise. This position directly supports the Policy and Compliance Organizational Unit within the ISO.

Responsibilities may include :

• Developing security policies, standards, and operating procedures to comply with federal and state regulations.
• Participating in internal and external security assessments and audits.
• Handling data preservation and collection requests related to legal matters, Virginia Freedom of Information Act (VFOIA) requests, internal investigations, forensic investigations, and other eDiscovery requests.
• Conducting agency outreach and security awareness training programs.
• Investigating security incidents and providing resolutions based on alerts and events from security dashboards, such as a Security Information and Event Management (SIEM) system, vulnerability scans, or penetration testing assessments.
• Implementing, administering, and supporting security systems, including host endpoint protection, data loss prevention, network-based intrusion detection and prevention systems, application layer firewalls, vulnerability management, forensic tools, and other infrastructure managed by the ISO.
• Coordinating daily with other divisions within the Department of Information Technology (DIT), Agency Information Security Coordinators, IT Analysts, and external entities on information security matters.
• Serving as a general technical and operational advisor on cybersecurity issues for the ISO.
• Keeping up to date with current and evolving cybersecurity trends and pursuing relevant industry certifications.
• Supporting and responding to emergency IT events and assisting with County Emergency Operations Center activations as needed.
• Performing other duties as assigned.

Employment Standards

MINIMUM QUALIFICATIONS :

Click on the aforementioned link to learn how Fairfax County interprets equivalencies for "Any combination, experience, and training equivalent to")

Graduation from an accredited four-year college or university with a bachelor's degree in a computer or information science discipline, IT / cyber security, network or IT systems administration, engineering; or a bachelor's degree in a business or related field that has been supplemented by at least 18 credit hours of intermediate computer science coursework; plus one year of experience in information security systems, network security, or cyber security.

NECESSARY SPECIAL REQUIREMENTS :

The appointee to this position will be required to complete a criminal background check to the satisfaction of the employer.

PREFERRED QUALIFICATIONS :

Knowledge and experience with implementing and assessing compliance with information technology and privacy protection regulation and standards such as HIPAA, PCI-DSS, CJIS, VA Code and Federal PII protections, and other institutional technology standards and best practices defined by NIST, ISO 27000 series, OWASP, and SANS Top 20 Security Controls. Understanding and experience with network and security architecture, multiple operating system platforms, identity management, access control, databases, web applications, and other evolving mobile and cloud technologies, to include but not limited to the following : malware inspection, traditional and application layer firewalls, VPN, identity management systems, data loss prevention, and network and host-based intrusion detection / prevention systems.

PHYSICAL REQUIREMENTS :

Work is generally sedentary performed in a normal work environment. All duties performed with or without reasonable accommodations.

SELECTION PROCEDURE : Panel interview and may include exercise.

The population of Fairfax County is very diverse where 38.7% of residents speak a language other than English at home (Spanish, Asian / Pacific Islander, Indo-European, and others) and we encourage candidates bilingual in English and a foreign language to apply to this opportunity.

Fairfax County Government prohibits discrimination on the basis of race, color, religion, national origin, sex, pregnancy, childbirth or related medical conditions, age, marital status, disability, sexual orientation, gender identity, genetics, political affiliation, or military status in the recruitment, selection, and hiring of its workforce.Reasonable accommodations are available to persons with disabilities during application and / or interview processes per the Americans with Disabilities Act. Contact 703-324-4900 for assistance. TTY 703-222-7314. DHREmployment@fairfaxcounty.gov EEO / AA / TTY.

LI-JT1

Merit Positions

Fairfax County is proud to offer employees an attractive and comprehensive benefits program, including the following :

NOTE : Fairfax County Government is a qualifying employer under the Public Service Loan Forgiveness program. For more information about the PSLF program :

For additional details please visit the

Non-Merit Positions

Medical / Vision / Dental Insurance Coverage

No benefits

What is the highest level of education that you have completed?

If you answered "Some college" for the highest level of education completed, please indicate the number of quarter or semester hours you have completed towards a related degree.

Please indicate all major(s) or minor(s) for your completed degree(s). Check all that apply.

If you answered "Other (related field)" or "Other (non-related field)" for the previous question, please list all of your completed majors and minors. If this question does not pertain to you, or you do not have a degree, enter "Not applicable."

If you responded that you possess a business or related degree, have you completed at least 18 credit hours of intermediate computer science coursework?

How many years of full-time equivalent professional experience in information security systems, network security, or cyber security do you possess?

How many years of direct work experience do you have working in an enterprise environment that has diverse compliance requirements for the privacy and security of data and systems (e.g., HIPAA, PCI-DSS, PII or other relevant regulation)?

How many years of direct experience do you have using technology that assists with ensuring compliance to IT Security Policy, IT Standards and Procedures of an enterprise?

How many years of direct work experience implementing and / or administering enterprise security devices such as endpoint protection and / or firewalls do you possess?

Required Question

Salary : $81,382 - $135,637