Information Security Analyst
Kissimmee Utility Authority · Kissimmee, FL · Yesterday
On-siteInformation TechnologyFull-time
General Definition of Work
Performs technical and analytical work in support of the organization’s cyber and physical security programs. Assists in defending the enterprise network by monitoring alerts, conducting vulnerability assessments, responding to security incidents, and participates on a red/blue team. Performs threat analysis, security logging review, alert triage, and remediation assignments. Documents vulnerabilities, prepares security reports, and escalates issues as needed. Supports administration of security tools, identity management, and cybersecurity governance practices.
Typical Tasks
- Manages a SIEM environment and proactively monitors networks for security breaches, analyzing logs and alerts for potential threats to Windows, Linux, cloud services, and enterprise applications.
- Reviews and tracks threat intelligence bulletins, and vulnerability reports; documents findings and performs initial triage, recommends mitigation strategy where applicable.
- Serves as the backup administrator for Microsoft SharePoint.
- Maintains and troubleshoots physical security systems, including video surveillance and access control systems.
- Troubleshoots administration and permission issues for data enterprise, corporate intranet and secured drive structures.
Knowledge, Skills and Abilities
- Working knowledge of cybersecurity defensive and offensive principles, red/blue team methodologies, and vulnerability management.
- Working knowledge of Kali Linux tools, vulnerability and penetration testing, Windows Server, and common enterprise environments.
- Strong understanding of securing multiple systems, including Windows, Linux, cloud storage, web applications, MS SQL, and enterprise software platforms.
- Familiarity with video surveillance systems, key card controllers, magnetic locking mechanisms, and security event retrieval processes.
- Knowledge of Active Directory administration, creating and deploying group policy, identity management, and access control practices.
- Proficiency with security systems such as firewalls, intrusion detection systems, and SIEM products.
- Knowledge of State of Florida records retention schedules and requirements for proper handling of public records.
- Ability to understand and carry out written and oral instructions. Ability to effectively communicate both orally and in writing, including documentation of technical cybersecurity and network terminology.
- Ability to work with confidential information, personnel investigations, and sensitive cybersecurity matters.
- Ability to lift or displace up to 20 pounds.
- Ability to establish and maintain effective working relationships with fellow workers and the public.
Education and Experience
- Graduation from an accredited college or university with a bachelor’s degree in cybersecurity, information technology, computer science, or a related field.
- Five (5) years of experience in any combination of information security, cybersecurity, network engineering or network administration is required.
- Minimum of five years of experience working in an Active Directory environment required.
- A current cybersecurity certification such as EC-Council Certified Ethical Hacker, CompTIA PenTest+, CompTIA CySA+, GSEC, or equivalent required.
- Demonstratable experience conducting vulnerability scanning, penetration testing, and log analysis.