Comptroller - Enterprise Security Analyst II (Reopen)

Job Description

Applications must be filed at:

We endeavor to maintain timely communication with all applicants by updating application statuses as promptly as possible. For the most accurate and up-to-date information about your application, please log in to the CAPPS application portal regularly to monitor status changes or updates.

If you have previously applied, there is no need to reapply. Your application is still being considered for this position.

Please note that this job posting can be closed without notice and earlier than the closing date indicated in the posting if a suitable candidate is found. We encourage applicants to submit and complete the application promptly.

Are you ready to grow, make a positive impact? If you are seeking to gain knowledge, build your career, and network among goal-oriented professionals, this is the place for you!

Innovation, collaboration, and a commitment to excellence best describes the culture here at the Comptroller's Office. We take pride in the work we do serving as Texas' accountant, tax collector, treasurer, and much more! The Comptroller's office serves virtually every citizen in the state. As Texas' chief tax collector, accountant, revenue estimator, treasurer and purchasing manager, the agency is responsible for writing the checks and keeping the books for the multi-billion-dollar business of state government.

Our agency workforce is as diverse as the people of Texas we serve. We value our employees and take very seriously our collective commitment to public service. Personal development opportunities are strongly encouraged through available workshops, teambuilding exercises, and on the job training. We offer flexible scheduling that helps employees maintain a healthy work-life balance.


Click here to see an inside look at the Texas Comptroller's office!

ABOUT THE Division

General description

The Information Technology division is looking for a technical professional to join our Security and Planning team. This person would be working within our vulnerability management team; focusing on Dev Sec Ops and application security, contributing to incident response functions, and strengthening CPA's cybersecurity posture. Your workday will involve administration of various security tools, problem solving, and investigation. Apply to join our team if you are interested in a security-focused role with broad exposure to different technologies. We are looking for honest, customer friendly and detail-oriented team members.

Work Hours

The position works an eight-hour schedule between 7:00am and 6:00pm, 40-hour week, Monday-Friday with occasional work schedule variance as necessary. Hours may change based on business need. Performs On-Call duty on a rotational basis and may occasionally work overtime and/or additional hours based on business needs. Employee must be capable of being online/onsite within one (1) hour of being called.

Teleworking may be considered if certain working conditions are met. The candidate must have permanent residency within the state of Texas and must be able to meet in office requirements, which can vary among different sections (i.e. report to office 1-3 days/week, etc.). Travel reimbursements are not provided for teleworking.


Qualifications:

Minimum Qualifications:

• Graduation from an accredited four-year college or university with a bachelor's degree.

• Four (4) years of work experience supporting security operations, including but not limited to: application security or development, vulnerability management, incident response, or another relevant field.

• Experience in cybersecurity analysis, information security analysis, or application coding and configuration.

Preferred Qualifications:

• Graduation from an accredited four-year college or university with a bachelor's degree or higher in information technology security, computer information systems, computer science, management information systems, or a related field.

• Experience supporting Application Security implementation or testing.


• Experience in DevOps or DevSecOps with a focus on automated application delivery.


• Experience in code analysis, API integration or application security testing.

• Experience in supporting endpoint security or vulnerability scanning tools.

• Experience in analyzing security events or cloud infrastructures.

Substitutions:

• One (1) additional year of experience in cybersecurity analysis work may substitute for thirty (30) semester hours of educational requirement with a maximum substitution of 120 semester hours (four years).

• Advanced cybersecurity certifications such as CISSP or SANS may substitute for one (1) year of the minimum experience requirement.

Licenses/Certifications (Preferred):

CISSP, CCSP, SSCP, GSEC, GCIH, GCFW, CCNA, CCNP, CCIE, Security+, or related security certificate

In this role you will:

• Performs cybersecurity incident or vulnerability detection, analysis, and prevention.

• Evaluates system security configurations for best practices and risk-based controls.

• Develops processes, procedures, monitoring practices and metrics to measure the effectiveness of security operations activities and leads towards process maturity.

• Creates and maintains accurate documentation of current enterprise security environment.

• Performs vulnerability scans or assessments of systems or applications to identify weaknesses.

• Researches and analyzes cybersecurity threat indicators and recommends threat mitigation strategies.

• Implements continuous automated security compliance capabilities.

• Monitors and analyzes cybersecurity alerts and vulnerabilities from regulators, advisories, vendors, cybersecurity tools, or other sources.

• Assists in identifying and evaluating new cybersecurity technologies.

• Assists in advising management and users regarding security procedures.

• Assists Technical Lead on projects as necessary.

• Implements and maintains enterprise security monitoring within a CICD pipeline, including software composition analysis (SCA), secure coding practices, and vulnerability scanning to ensure application integrity.


• Deploys, configures, tests and maintains security tools applied to information systems intended to protect against cyber threats.


• Provides system support to prevent security incidents, including coordination of immediate corrective action to systems known to have any security weaknesses or vulnerabilities, including network isolation, re-configuration and installing appropriate patches or upgrades.


• Troubleshoots systems problems related to network, security, infrastructure, and application information systems.

• Supports the implementation of computer system security plans with agency personnel and outside vendors.


• Provides ongoing monitoring of sources of potential threats and vulnerabilities, including hacker web sites, anti-virus vendors, other government agencies and trade publications.

• Performs other related work as assigned.

Maximize Your Earnings!

At the Comptroller's office, we know potential employees are looking for more than just a paycheck. The agency offers a strong benefits package for you and your family. Insurance, retirement plans, and a flexible work schedule are just the start. See our benefits offering

If you are seeking to gain knowledge, build your career, and network among goal-oriented professionals, this is the place for you!

Important Note to the Candidate:

Salary is contingent upon qualifications. If you are scheduled for an interview and require any reasonable accommodation in our interview process, please inform the hiring representative who calls you to schedule your interview. Whenever possible, please give the hiring representative sufficient time to consider and respond to your request.

MILITARY PREFERENCE

To receive MILITARY PREFERENCE, you are required to provide proof by attaching the necessary documentation to this job application.

Click on the occupational category for the position.

Additional MOS can be found at the State Auditor's Office,


Military Crosswalk Guide.

The Texas Veterans Commission provides helpful employment information. Go to: or for assistance translating your military experience and training courses into civilian job terms, qualifications/requirements and skill sets.

Applications submitted through Work in Texas:

Work In Texas (WIT) applicants must complete supplemental questions to be considered for the position. To complete the supplemental questions please go to CAPPS Recruit to register or login and access your profile.

The Comptroller's Office is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity.

Applicants must submit both a résumé and a completed application to be considered. Both documents should include sufficient work history to assess qualifications.

An applicant must be eligible to work in the United States to be hired at the Comptroller's office and must remain eligible, without sponsorship or any assurance of financial or other assistance from this agency, during the term of their employment.