SENIOR INFO TECH BUS CONSULTANT - 37020868 (Information Security Engineer)

TALLAHASSEE, FL, US, 32399

State of Florida

MyFlorida Portal

View all jobs at State of Florida

Apply now Apply later

Requisition No: 841144 

Agency: Environmental Protection

Working Title: SENIOR INFO TECH BUS CONSULTANT - 37020868 (Information Security Engineer)

 Pay Plan: Career Service

Position Number: 37020868 

Salary:  $65,000 - $72,000 

Posting Closing Date: 11/21/2024 

Total Compensation Estimator Tool

 

 

SENIOR IT BUSINESS CONSULTANT

(Information Security Engineer)

State of Florida

Department of Environmental Protection

OPEN COMPETITIVE

 

Our Organization and Mission:

The Florida Department of Environmental Protection (DEP) is the state’s lead agency for environmental management and stewardship – protecting our air, water and land. The vision of DEP is to create strong community partnerships, safeguard Florida’s natural resources and enhance its ecosystem. 

 

 

The Work You Will Do:

DEP’s Office of Technology and Information Services (OTIS) is currently recruiting for a Senior IT Business Consultant.  This position serves as an information security engineer for the department and reports to the Information Security Manager. This is a highly technical position that creates and executes operational security initiatives on a continuing basis to improve the agency’s information security posture.

 

The ideal candidate will be a confident communicator, comfortable engaging with both internal and external stakeholders. They must exhibit exceptional organization and troubleshooting skills, attention to detail, along with strong written and verbal communication. Flexibility is essential, as the role will at times require availability outside of standard 8-5 business hours.

 

We seek a proactive team member who can also work independently, demonstrating a strong working knowledge of enterprise cybersecurity solutions and practices. The ability to take direction, execute and document tasks efficiently is crucial. Additionally, the candidate should be comfortable with emerging technologies and an ever-changing threat landscape.

 

 

The Difference You Will Make:

DEP relies on modern security tools, platforms and innovations in order to meet its mission. Examples at DEP include leveraging Microsoft Defender, for End point and cloud work flows, tenable vulnerability scanning, Microsoft Sentinel, and Tanium endpoint management solution.

 

 

How You Will Grow:

DEP encourages its employees to constantly innovate and seek efficiencies. We believe in supporting and encouraging you as you take on important and often complex projects while offering you the opportunity to gain valuable experience quickly. OTIS has an extensive training program, including courses and certifications, that provides staff with the ability to build upon existing skills and remain current on information technologies.  Examples of security-focused certifications that can be earned include:

 

  • ISC2 CISSP
  • ISC2 CCSP
  • EC-Council Certified Ethical Hacker
  • CompTIA CASP+
  • ISACA CISM

 

 

Where You Will Work:

This position is in Florida’s capital city, Tallahassee, which is lined with rolling hills, oak trees, and canopied roads.  Tallahassee is a mid-sized city in the heart of Florida’s Big Bend that combines old world charm with a modern pace of life. Home to two major universities as well as a community college and state government, Tallahassee is a highly desirable location for both those seeking their first job or those ready to enter the next exciting chapter in their career.

 

This is an on-site position.

 

 

The Benefits of Working for the State of Florida:

Working for the State of Florida is more than a paycheck. The State’s total compensation package for employees features a highly competitive set of employee benefits including:

 

  • Annual and Sick Leave benefits;
  • Nine paid holidays and one Personal Holiday each year;
  • State Group Insurance coverage options, including health, life, dental, vision, and other supplemental insurance options;
  • Retirement plan options, including employer contributions (For more information, please click www.myfrs.com);
  • Flexible Spending Accounts;
  • Tuition waivers;
  • And more!

 

For a more complete list of benefits, visit www.mybenefits.myflorida.com.

 

Pay: $65,000 - $72,000

 

 

Your Specific Responsibilities:

Specific duties and responsibilities include, but are not limited to:

  • Assist with maintaining the information security incident response plans and procedures to comply with Florida State standards and rules. This includes:
    • Maintaining procedures to ensure security requirements are incorporated into the change control process
    • Maintaining the protection of the physical and virtual operating environment for agency-owned or managed IT resources
    • Maintaining a policy and procedure review process that facilitates continuous improvement of IAM security
    • Maintaining a policy and procedure review process that facilitates continuous improvement to security standards
  • Assist the Information Security Manager (ISM), with the following duties:
    • Establishing an information security program that includes information security policies, procedures, standards, and guidelines; an information security awareness program; an information security risk management process, including the comprehensive risk assessment required by section 282.318, F.S.; a Cybersecurity Incident Response Team; and a disaster recovery program that aligns with the agency’s Continuity of Operations Plan (COOP). Proactively researching latent security threats and recommending risk mitigation actions
    • Performing information security investigations in conjunction with the Inspector General’s Office and law enforcement agencies
    • Developing, maintaining, and executing the department’s IT Security Strategic Plan
  • Review and modify identity and access management policies
  • Review and modify firewall rules iteratively to be more secure
  • Respond to information security incidents and execute countermeasures
  • Review access requests and provide access control oversight when needed
  • Maintain technical skillset in order to adapt to new technologies as they emerge including researching and recommending security focused training for themselves and others in the division
  • Monitor e-mail filtering and spam control systems and configure as necessary to improve security
  • Ensure cryptographic standards are maintained in systems and applications
  • Assist with ensuring compliant CJIS (criminal justice) systems, and recommend technologies and procedures for on-premise and cloud-based CJIS infrastructure
  • Evaluate desktop policies to ensure proper patching levels and security policies are maintained
  • Assist the ISM with strategic tasks including information security risk assessments, audits and governance
  • Perform other duties as assigned

 

Attendance is an essential function of the position.

 

Required Knowledge, Skills, and Abilities:

  • Superior communication skills, both verbal and written
  • Extensive experience in technical information security roles
  • Experience with principles of enterprise information security
  • Experience in researching and implementing security technologies 
  • Experience with computer networking concepts and protocols, and network security methodologies
  • Experience in analyzing network traffic and packet-level analysis
  • Knowledge of cyber threats and vulnerabilities
  • Knowledge of business continuity and disaster recovery continuity of operations plans
  • Knowledge of cyber attackers (e.g., hacktivists, insider threat, non-nation state sponsored, and nation sponsored APT)
  • Experience in recognizing and categorizing types of vulnerabilities and their associated attacks
  • Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code)
  • Knowledge of Cloud service models
  • Experience in identifying, capturing, containing, and reporting malware
  • Experience in troubleshooting security events on windows endpoint and server operating systems
  • Experience in working with organization’s information classification program and procedures for information compromise
  • Experience in designing and implementing IAM policies for both on prem and cloud-based identity management
  • Excellent coordination and collaboration skills
  • Ability to maintain a valid driver’s license and travel, as needed

 

Required Qualifications:

  • 3 years of enterprise cybersecurity work experience
  • Experience in Cybersecurity incident response
  • Experience participating in Cybersecurity or IT audits
  • Experience with Active Directory
  • Experience with cloud architecture

 

Preferred Qualifications:

  • Bachelor’s degree in cybersecurity or Information Technology.
  • CompTIA Cysa+
  • Microsoft AZ-500 certification

 

 

Other Job-Related Requirements for this Position

 

POSITION OF SPECIAL TRUST REQUIREMENT:

This position is designated as a Position of Special Trust in accordance with DEP-422 (Positions of Special Trust or Responsibility). Any applicant being considered for employment must successfully complete a Level 2 State and National criminal history check as a condition of employment before beginning employment, and also be screened in accordance with the requirements of Chapter 435, F.S.  No applicant may begin employment until the background screening results are received, reviewed for any disqualifying offenses, and approved by the Agency.  

 

 

DEP is committed to successfully recruiting and onboarding talented and skilled individuals into its workforce. We recognize the extensive training, experience, and transferrable skills that veterans and individuals with disabilities bring to the workforce. Veterans and individuals with disabilities are encouraged to contact our recruiter for guidance and answers to questions through the following email addresses:

 

HR_VeteransPreference@dep.state.fl.us

 

HR_ER@dep.state.fl.us

 

 

The State of Florida is an Equal Opportunity Employer/Affirmative Action Employer, and does not tolerate discrimination or violence in the workplace.

Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must notify the agency hiring authority and/or People First Service Center (1-866-663-4735). Notification to the hiring authority must be made in advance to allow sufficient time to provide the accommodation.

The State of Florida supports a Drug-Free workplace. All employees are subject to reasonable suspicion drug testing in accordance with Section 112.0455, F.S., Drug-Free Workplace Act.

VETERANS’ PREFERENCE.  Pursuant to Chapter 295, Florida Statutes, candidates eligible for Veterans’ Preference will receive preference in employment for Career Service vacancies and are encouraged to apply.  Certain service members may be eligible to receive waivers for postsecondary educational requirements.  Candidates claiming Veterans’ Preference must attach supporting documentation with each submission that includes character of service (for example, DD Form 214 Member Copy #4) along with any other documentation as required by Rule 55A-7, Florida Administrative Code.  Veterans’ Preference documentation requirements are available by clicking here.  All documentation is due by the close of the vacancy announcement. 

Apply now Apply later
Job stats:  1  0  0

Tags: Active Directory Application security APT Audits CASP+ CCSP CISM CISSP Cloud CompTIA Driver’s license Firewalls Governance IAM Incident response ISACA Malware Network security Risk assessment Risk management Scripting Sentinel SQL Vulnerabilities Windows XSS

Perks/benefits: Competitive pay Flex hours Health care Team events

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.