Cybersecurity Analyst II
Texas Health and Human Services
Location: Austin, TX Agency: Texas Health and Human Services Commission (HHSC) Job Title: Cybersecurity Analyst II Benefits: Our comprehensive benefits package includes 100% paid employee health insurance for full‑time eligible employees, a defined benefit pension plan, generous time off, and numerous opportunities for career advancement. Job Description The Cybersecurity Analyst II performs advanced information security analysis with a focus on cloud security, web application protection, and governance, risk, and compliance activities. The position supports both on‑premises and cloud environments by evaluating, implementing, and monitoring security controls to prevent unauthorized access, modification, or disclosure of information resources. The analyst conducts security assessments and risk‑based needs assessments across assigned systems. Responsibilities include assisting with the development of System Security Plans (SSPs), documenting vulnerabilities and corrective actions, analyzing administrative, technical, and operational controls, and preparing audit documentation, formal reports, and leadership‑level reporting. The role also provides advisory services to business partners, offering guidance on secure architecture, secure application development practices, and cloud configuration requirements. The analyst maintains compliance and risk artifacts in a Governance, Risk, and Compliance (GRC) platform, supports Authorization to Operate (ATO) activities, and delivers targeted security training to agency stakeholders. Essential Job Functions (EJFs) Security and Risk Management Services (30%) Provides security and risk management services by performing risk identification, assessment, and remediation, as well as regulatory and internal compliance monitoring; uses established standards and processes to adequately protect Health and Human Services (HHS) personnel, facilities, cloud infrastructure, information, and business operations. Performs cyclical and periodic technology risk assessments of cloud environments such as Microsoft Azure and Amazon Web Services (AWS) and on‑premises environments; reviews technology use within business initiatives; conducts web application security analysis, vulnerability analysis, and evaluates emerging threats. Facilitates risk assessment sessions with Information Owners and Custodians; identifies and documents threats, vulnerabilities, likelihood, impact, and mitigation strategies; records risks, exceptions, and Risk‑Based Decisions in a GRC tool; validates vulnerability scan results, prioritizes findings, and tracks remediation. System Security Planning (25%) Develops, updates, and maintains System Security Plans (SSPs) for systems and applications in alignment with applicable state and federal requirements. Collaborates with program teams, Information Owners, and Custodians to collect, validate, and document security control implementation evidence. Ensures Security System Plans align with National Institute of Standards and Technology (NIST) Special Publication (SP) 800‑53, NIST Risk Management Framework (RMF), Department of Information Resources (DIR) standards, and agency CISO policies. Security and Risk‑Based Needs Assessments (25%) Plans and conducts security assessments to evaluate the effectiveness of administrative, technical, and operational security controls across assigned systems; reviews and analyzes supporting documentation and evidence. Documents assessment results, prepares formal reports, and tracks remediation and corrective actions such as Plans of Action and Milestones (POA&Ms) to completion. Performs risk‑based needs assessments of automated systems to identify information security requirements; evaluates agency systems—including infrastructure, processes, and procedures—with a specific focus on cloud security posture management (CSPM) and web application vulnerabilities to discover compliance needs and gaps. Provides Governance, Risk, and Compliance (GRC) Continuous Monitoring, Advisory, and Training Support (15%) Maintains security artifacts, risk records, POA&Ms, continuous monitoring evidence, and compliance documentation within a GRC tool such as RSA Archer; supports Authorization to Operate (ATO) activities and ongoing monitoring requirements to ensure systems remain compliant with regulatory and agency security standards. Prepares documentation, reporting packages, and audit responses for internal reviews, external audits, and leadership inquiries. Advises management and users regarding enterprise security program functions, including cloud security best practices and secure application development standards; provides targeted training to agency customers within assigned specific security domains. Performs or leads other duties as assigned. (5%) Knowledge, Skills, And Abilities (KSAs) Ability to advise diverse stakeholders on secure architecture, secure application development standards, and cloud security best practices; ability to deliver focused security training. Ability to prepare audit documentation, assessment reports, Authorization to Operate (ATO) packages, and leadership reporting with clear, concise communication. Skill in risk analysis and vulnerability management, including validation and prioritization of scan results and tracking remediation to closure. Skill in conducting security and risk‑based needs assessments of automated systems and business initiatives; ability to analyze administrative, technical, and operational controls and supporting evidence. Knowledge of enterprise Governance, Risk, and Compliance (GRC) platforms such as RSA Archer; skill in maintaining risk records, POA&Ms, exceptions, and continuous monitoring evidence. Knowledge of NIST SP 800‑53 control families, NIST RMF steps, DIR security control standards, and agency CISO policies; skill in applying control requirements to systems and documenting implementation within SSPs. Knowledge of cloud security posture management (CSPM) concepts and tooling; ability to evaluate cloud configurations for misconfigurations and control gaps across Azure and AWS environments. Registrations, Licensure Requirements Or Certifications Prefer one or more of the following certifications: CompTIA Security+; Certified Information Systems Auditor (CISA); Certified Information Systems Security Professional (CISSP); Global Information Assurance Certification (GIAC) or similar security certifications. Initial Screening Criteria Graduation from an accredited four‑year college or university with major coursework in information technology security, computer information systems, computer science, management information systems, or a related field is generally preferred. Education and experience may be substituted for one another on a year for year basis. At least 2 years’ experience in information security analysis work. Experience developing and implementing information technology (IT) security training and awareness programs, policy, standards, and/or procedures preferred. Experience with cloud security in Azure and/or AWS, including review of security configurations and assessment of web application security risks preferred. Additional Information Candidates for this position will be subject to a pre‑employment security review to determine employment eligibility. This is an onsite position based in Austin, TX and requires five (5) days in the office. Any employment offer is contingent upon available budgeted funds. The offered salary will be determined in accordance with budgetary limits and the requirements of HHSC Human Resources Manual. Active Duty, Military, Reservists, Guardsmen, And Veterans Military occupation(s) that relate to the initial selection criteria and registration or licensure requirements for this position may include, but not limited to those listed in this posting. All active‑duty military, reservists, guardsmen, and veterans are encouraged to apply if qualified to fill this position. ADA Accommodations In compliance with the Americans with Disabilities Act (ADA), HHSC and DSHS agencies will provide reasonable accommodation during the hiring and selection process for qualified individuals with a disability. If you need assistance completing the on‑line application, contact the HHS Employee Service Center at View phone number on click.appcast.io. If you are contacted for an interview and need accommodation to participate in the interview process, please notify the person scheduling the interview. Pre‑Employment Checks And Work Eligibility Depending on the program area and position requirements, applicants selected for hire may be required to pass background and other due diligence checks. HHSC uses E‑Verify. You must bring your I‑9 documentation with you on your first day of work. Telework Disclaimer This position may be eligible for telework. Please note, all HHS positions are subject to state and agency telework policies in addition to the discretion of the direct supervisor and business needs. Nearest Major Market: Austin #J-18808-Ljbffr Texas Health and Human Services
- Here's The Role LCRA is seeking a Cybersecurity Analyst II to support daily Security Operations Center (SOC) activities, including security monitoring, alert analysis, incident investigation, documentation, and remediation efforts. In this role, you will contribute to...Suggested
- LCRA is seeking a Cybersecurity Analyst II to join their team in Austin, Texas. In this role, you will support the Security Operations Center (SOC) by monitoring, analyzing, and responding to cybersecurity threats and incidents. Candidates should have at least six years...Suggested
- ...Job Description Job Description GRC Archer Network Security Analyst II (RSA Archer Specialist) Mode of Work: Onsite Job Description: Seeking an experienced GRC Archer Network Security Analyst II to support enterprise Governance, Risk, and Compliance (GRC...Suggested
- A tech consultancy is seeking a Business Analyst II in Austin, TX, or remote for Texas residents. The ideal candidate will have 3-5 years of experience in business analysis within applications/software development, focusing on requirements gathering and testing. Key responsibilities...SuggestedRemote job
$70k
Job Title and Department Epic Security and Access Analyst II - Dell Medical School Location and Working Hours Austin, TX; 40 weekly scheduled hours; FLSA exempt; expected to continue; immediate start. Purpose The Epic Security and Access Analyst II is responsible for...SuggestedWork at officeImmediate start$70k
The University of Texas at Austin seeks an Epic Security and Access Analyst II for the Dell Medical School. This role involves managing Epic security access and ensuring compliance with HIPAA and internal policies. Key responsibilities include supporting user access workflows...$78k
Epic Ambulatory Application Analyst II The University of Texas at Austin General Notes The Office of Information Technology at the Dell Medical School is seeking an Application Analyst II. Job Posting Title Epic Ambulatory Application Analyst II Hiring Department Dell...For contractorsWork experience placementImmediate start- ...Systems Analyst 2 Texas Health and Human Services Commission requires the services of a Systems Analyst 2, who meets the general qualifications... ...Resources (DIR) requires the services of Systems Analyst II, who meets the general qualification of Systems Analyst and the...Local areaImmediate start
- My3Tech in Austin, TX is seeking a Microsoft 365 Systems Analyst II to provide technical assistance for Microsoft 365 services, focusing on user support and troubleshooting. The role involves ensuring security compliance, analyzing reports, and maintaining documentation...
- FALL CREEK FARM & NURSERY in Austin, Texas is seeking an Information Technology Auditor I/II to perform audits of information systems. This position involves planning audits, reviewing controls, and supporting compliance requirements. Ideal candidates will have a bachelor...Flexible hours
- Job Title: Microsoft 365 Systems Analyst II Job Location: Austin, TX (Onsite) Duration: 12 Months Contract with possibility to extension Job Description The Microsoft 365 system analyst will provide technical assistance for Microsoft 365 services like Exchange, OneDrive...Contract workWork at office
- The Lower Colorado River Authority is seeking a Cybersecurity Analyst II to support daily Security Operations Center activities. In this role, you will monitor, analyze, and respond to cybersecurity threats, implementing and maintaining security technologies across the...
$3,000 - $4,999 per month
Career Opportunities: Information Technology Auditor I/II (18150) Posting ID 18150 - Dept of Family & Protective Services - Internal... ..., including user access, system configuration, encryption, and cybersecurity protocols. Participate in application and internal control...Full timeRemote workFlexible hours- Career Opportunities: Cybersecurity Compliance Analyst (17423) Functional Title: Cybersecurity Compliance Analyst; Job Title: Cybersecurity Analyst II; Agency: Health & Human Services Comm; Department: SP28 IT Security; Posting Number: 17423; Closing Date: 07/28/2026;...Permanent employmentFull timeContract workTemporary workPart timeShift work
$4,500 - $6,000 per month
...OpenSkye is seeking a Cybersecurity Analyst to protect digital infrastructure against threats. This role involves monitoring systems, responding to incidents, and collaborating with IT teams to address vulnerabilities. Ideal candidates have a Bachelor’s in Cybersecurity...- ...Pubox in Austin, Texas is looking for a Cybersecurity Analyst to safeguard our digital infrastructure against evolving threats. In this role, you will monitor systems for vulnerabilities, analyze security logs, and coordinate with IT teams to patch vulnerabilities. Qualified...
- ...managing the IBM internal global incident response process for cybersecurity and data privacy cases across IBM. We are looking for... ...CSIRT) is seeking a high-performing Incident Response Forensic Analyst to support the investigation and response to cybersecurity incidents...Work at office
$4,500 - $6,000 per month
...0 / month Experience: 3–5 Years of Professional Experience in Cybersecurity Qualification: Bachelor’s in Cybersecurity, Computer Science,... ..., Security Compliance, Scripting We’re hiring a Cybersecurity Analyst to safeguard our digital infrastructure against evolving threats...- ...Caartzee is seeking a skilled Cybersecurity Analyst in Austin, Texas to enhance our digital security. Your key responsibilities include monitoring systems for vulnerabilities, detecting anomalies, and responding to security incidents. A Bachelor’s in Cybersecurity or Computer...
- ...difficult problem that requires brilliant people and tremendous effort over time. Level is looking for a skilled and motivated Cybersecurity Analyst to join our security team and help protect the organization's systems, networks, and data from evolving cyber threats. This...Relocation
- ...Softricity is seeking a Cybersecurity Analyst to safeguard our digital infrastructure. In this role, you'll monitor for vulnerabilities, detect anomalies, and respond to incidents to protect sensitive data. Your daily duties will involve analyzing logs, conducting penetration...
- ...Endpoint Detection, and Computer Security Incident Response. CSIRT maintains the internal global incident response process for cybersecurity and data privacy. We are looking for individuals with both technical depth and professional discipline who can dig into evidence...Work at office
$7,015.16 - $10,416.66 per month
...opportunities for career advancement and more. Explore more details on the Benefits of Working at HHS webpage. Functional Title: Cybersecurity Analyst III Job Title: Cybersecurity Analyst III Agency: Health & Human Services Comm Department: CHIEF INFO SECURITY OFFICE...Permanent employmentFull timeTemporary workPart timeWork at officeLocal areaRemote workShift workDay shift- Texas Health and Human Services in Austin, TX, is seeking a Cybersecurity Analyst II to perform advanced information security analysis with a focus on cloud security, web application protection, and governance, risk, and compliance activities. The position supports both...
- ...Security Analyst Opportunity Ready to put your highly in-demand skill set into practice in a well known established environment? Do you have the ability to deliver quality through attention to detail with the ability to learn and use a variety of software, tools and...
- Job Overview Kforce is seeking a Mid Level Cyber Security Analyst to work on the CISO Security Operations Center team supporting the... ...located in Austin, TX and is hybrid onsite - 3 days a week. As a Cybersecurity Analyst you will perform security monitoring, investigations,...Hourly payContract work3 days per week
- Declari is seeking a Cybersecurity Analyst in Austin, TX to safeguard our digital infrastructure. You will monitor systems for vulnerabilities, detect anomalies, and respond to incidents with urgency, protecting sensitive data for the company and customers. Responsibilities...
- Maveris is an IT and cybersecurity services company committed to helping organizations create secure digital solutions to accelerate their... ...have an opening for a full-time, permanent Tier 3 Cybersecurity Analyst to join our talented, dynamic team in support of a large...Permanent employmentFull timeWork experience placement3 days per week
- Apelio in Austin, Texas is seeking a Cybersecurity Analyst to safeguard our digital infrastructure against evolving threats. You will monitor systems, analyze logs, detect anomalies, and respond to incidents to protect company data. You will perform threat hunting, vulnerability...
- Shastashade is seeking a Cybersecurity Analyst in Austin, TX to monitor, detect, and respond to threats across our digital infrastructure. You will analyze logs, tighten defenses, and coordinate with IT to patch vulnerabilities while maintaining data protection standards...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cybersecurity Analyst II. Be the first to apply!
- cyber security specialist Austin, TX
- cyber security consultant Austin, TX
- cyber security sales Austin, TX
- cyber security lead Austin, TX
- cyber security part time Austin, TX
- work from home cyber security Austin, TX
- IT cyber security Austin, TX
- cyber security technician Austin, TX
- cyber security architect Austin, TX
- entry level cyber security Austin, TX


