Certified Security Analyst

Title: SeniorCertified Security Analyst

Visa: USC/GC/GCEAD/H4EAD

Location: Remote

Client: State of Florida

Duration: Long Term

We are recruiting for a SeniorCertified Security Analyst for our client The State of Florida Department of Highway Safely in Tallahassee Florida.

This position is longterm and is either REMOTE or ONSITE in Tallahassee

DMV has a bid for a Security Analyst

The Contractors employee(s) may work remotely or onsite at Department headquarters (Neil Kirkman Building) located at 2900 Apalachee Parkway

Tallahassee Florida

Scope of Services

The Florida Department of Highway Safety and Motor Vehicles (Department or FLHSMV) Office of Enterprise Security Management team is seeking the services of an experienced Advanced Security Analyst to be a key technical resource for cyber threat management processes and will participate in cybersecurity Incident Response (IR) as well as recovery operations.

Tasks and Activities

The resource will be responsible for providing daily support for the Departments information security infrastructure as part of the Office of Enterprise Security

Managements security team including working with other teams in the Departments Information Systems Administration (ISA) as well as the Florida

Digital Services (FLDS) staff providing Tier 3 information security support for the customers served by the Department.

This resource in this position may also be assigned other deliverables tasks and projects as needed in support of cybersecurity operations.

The resource will report directly to the Departments Information Security Officer and shall perform at a minimum the tasks and/or activities described below:

Work with the Departments Contract Manager to serve as the primary point of contact to ensure that startup activities are completed within fourteen (14)

days prior to the performance of services.

Startup activities include Departments fingerprint background check and online information security training security requirements.

Assist with implementing tuning and planning regarding the Departments Managed Security Service Provider (MSS) Security Information and Event

Management (SIEM) and vulnerability management.

Assist in support of NextGen firewall security tools and maintain the site block list.

Assist in the support of Distributed Denial of Services (DDoS) protection services utilized by the Department.

Support and maintain endpoint detection and response (MDR/XDR) tools.

Analyze troubleshoot and resolve issues with the NextGen Antivirus solutions on servers and client systems.;

Monitoring of Intrusion Detection / Intrusion Prevention systems (IDS/IPS) for cybersecurity threats and advise or participate in response actions.;

Monitoring of Data Loss Prevention solutions tuning and response actions.;

Monitoring of Network Access Control solution tuning and response actions.:

Monitoring of Email Security solutions tuning and response actions.:

Support the administration of multifactor authentication solution and initiatives.

Support and perform as a technical member of the Computer Security

Incident Response Team (CSIRT).

Develop and maintain technical specifications standards procedures and systems documentation including Systems Security Plans (SSPs).

Research and recommend appropriate technical solutions to meet Department requirements;

Provide recommendations for potential process improvements for the Office of Enterprise Security Managements security team.

Attend and participate in all assigned meetings;

Attend department required training; and Complete a Project Status Report and a Project Timesheet on a weekly basis as indicated below in subsection 3.

Required Source Documentation/

Reports.

Experience:

At a minimum we are seeking a candidate with (5) years of combined IT and security / cybersecurity work experience with a broad range of exposure to system analysis operational experience with cybersecurity infrastructure with (3) years or more of direct experience with information security.

This position requires knowledge of cybersecurity / security issues vulnerability management networking firewall management and cloudbased security tools across a variety of computing platforms. The candidate will be able to work independently and as a team member on multiple security projects and occasionally as a cybersecurity lead on large complex security initiatives and projects that require increased skill in multiple IT functional areas.