Advanced Information Security Analyst

Advanced Information Security Analyst

Tallahassee, FL Onsite from Day 1 No Remote Local Candidates only In Person Interview.

Must have valid LinkedIn

Need DL and DOB(MM / DD) and SSN Last 4

All candidates will need to have a LEVEL 2 background check (finger printing).

Candidate will have to sign the Self Resume Certification and fill Skill Matrix.

General Experience Expectations : Typically has five (5) years of security work experience with a broad range of exposure to systems analysis, applications development, database

design, and administration.

Description / Deliverables

The Client is seeking an experienced Security Analyst under the working title of Advanced

Information Security Analyst. The Advanced Information Security Analyst position entails the following :

Lead the technical implementation of security projects, focusing on system hardening, network

security, and identity management while collaborating with teams to meet law enforcement-specific

security standards;

Expertise in firewalls, Intrusion Detection Systems / Intrusion Prevention Systems (IDS / IPS),

encryption, secure Microsoft configurations, conducting vulnerability assessments, and developing

remediation strategies;

Manage security tools, support threat detection and incident response, and ensure integration of

security platforms;

Compliance with Criminal Justice Information Services (CJIS) and State of Florida (State)

regulations is critical, as is working with Governance, Risk, and Compliance (GRC) teams to ensure

adherence and address audit gaps;

Documenting and training on cybersecurity solutions and processes, focusing on CJIS and State

regulations;

Reengineer security processes for efficiency and compliance; and

Provide support for cybersecurity issues and stay informed on emerging threats and technologies.

The selected Candidate will report directly to the Information Security team's Information Security

Operations Manager and will be required to complete tasks related to the Scope of Work.

Scope of Work / Job Characteristics

The Advanced Information Security Analyst will serve as the principal line of communication for the

project team. The duties and responsibilities of this position are as follows :

Lead the technical implementation of security projects, focusing on system hardening, network

security, encryption tools, vulnerability management, security monitoring, and Identity and Access

Management (IAM) systems within a Microsoft and Azure environment;

Collaborate with cross-functional teams to deploy security solutions that meet project requirements,

focusing on law enforcement-specific security standards;

Ensure timely delivery of security projects aligned with the organization's requirements, maintaining

adherence to scope, timeline, and budget;

Provide hands-on expertise in areas such as firewalls, IDS / IPS, encryption, endpoint protection, and

secure configuration of Microsoft environments;

Implement secure system architecture and networking solutions within Microsoft Azure or other

related cloud computing platforms;

Conduct vulnerability assessments and develop remediation strategies, ensuring continuous

improvement in security posture;

Configure, deploy, and manage security tools such as Security Information and Event Management

SIEM) systems, Microsoft Azure Security Center, and endpoint security solutions tailored for a

Microsoft environment;

Ensure proper integration of security platforms across IT systems and support threat detection,

prevention, and incident response;

Design and maintain incident response procedures tailored to law enforcement settings;

Conduct root cause analysis and develop and implement appropriate remediation measures;

Ensure adherence to CJIS, State regulations, and other relevant security compliance standards;

Work closely with GRC teams to ensure the organization remains in compliance with State and

federal security regulations;

Assist with security audits, including CJIS compliance reviews, and address any identified gaps to

maintain compliance in Microsoft and Azure systems;

Develop and maintain up-to-date documentation of new and existing cybersecurity solutions and

processes specific to law enforcement and CJIS requirements;

Provide training to IT staff on security protocols and contribute to security awareness initiatives for

the organization, with a focus on compliance with CJIS and state regulations;

Experience designing, implementing, and optimizing security processes to enhance operational

efficiency, align with compliance requirements (e.g., CJIS), and mitigate risks across IT and

organizational functions;

Proven ability to reengineer existing security processes to improve system integrity, streamline

workflows, and ensure alignment with evolving technology and regulatory standards, particularly

within Microsoft and Azure environments;

Work with IT operations and development teams to ensure security is integrated into systems and

processes;

Provide troubleshooting and support for cybersecurity-related issues, with an emphasis on Microsoft

and Azure environments; and

Stay current on emerging cybersecurity threats and technologies, particularly those affecting law

enforcement and compliance with CJIS and State cybersecurity standards.

NOTE : This position is designated as "essential staff" and is expected to report for duty when instructed to do so in times of emergency or potential emergency as required by rule 33-208.002 (4), Florida Administrative Code (F.A.C.)

Requirements / Qualifications

NOTE : Any successful Candidate with access to the Department's network is required to complete the Department's Security Awareness Training within 30 calendar days of hire.

Required Qualifications

A bachelor's degree or master's degree from an accredited college or university in Computer Science,

Information Systems, or a related field is required. Alternatively, equivalent work experience can be

substituted for the educational requirement on a year-for-year basis, when applicable.

The Department requires the following experience, skills, and / or knowledge for this position :

Five (5) years or more of server or network administration experience;

Three (3) years or more of information security administration experience in an enterprise

environment with 1,000 or more users;

Two (2) years or more experience managing technical implementations;

Three (3) years or more of SIEM experience;

Three (3) years or more of vulnerability management experience;

Knowledge of security issues, techniques, and implications across all existing computer platforms;

Experience maintaining and supporting third-party antivirus applications.

NOTE : In addition to the above list, the selected Candidates must successfully complete a Level II

Background Check and CJIS security awareness training.

Preferred Qualifications

The Department prefers the Candidates to have the following experience, skills, and / or knowledge for

this position :

Experience working with IDS / IPS systems;

Experience using Office 365 Data Loss Prevention (DLP);

Preparing status reports and providing management briefings;

Knowledge of IT standards in a criminal justice environment;

Experience with Microsoft security technologies such as Azure Security Center, Microsoft Defender,

and Active Directory; and

Familiarity with law enforcement security standards, specifically CJIS, and other relevant State

regulations.