Comptroller - Enterprise Security Analyst II (Reopen)

Comptroller - Enterprise Security Analyst II (Reopen)

The Comptroller of Public Accounts in Texas is looking for a technical professional to join their Security and Planning team. This role involves working within the vulnerability management team, focusing on Dev Sec Ops and application security, contributing to incident response functions, and strengthening CPA's cybersecurity posture. Your workday will involve administration of various security tools, problem solving, and investigation.

Work Hours: The position works an eight-hour schedule between 7:00am and 6:00pm, 40-hour week, Monday-Friday with occasional work schedule variance as necessary. Hours may change based on business need. Performs On-Call duty on a rotational basis and may occasionally work overtime and/or additional hours based on business needs. Employee must be capable of being online/onsite within one (1) hour of being called. Teleworking may be considered if certain working conditions are met. The candidate must have permanent residency within the state of Texas and must be able to meet in office requirements, which can vary among different sections (i.e. report to office 1-3 days/week, etc.). Travel reimbursements are not provided for teleworking.

Qualifications: Minimum Qualifications: Graduation from an accredited four-year college or university with a bachelor's degree. Four (4) years of work experience supporting security operations, including but not limited to: application security or development, vulnerability management, incident response, or another relevant field. Experience in cybersecurity analysis, information security analysis, or application coding and configuration. Preferred Qualifications: Graduation from an accredited four-year college or university with a bachelor's degree or higher in information technology security, computer information systems, computer science, management information systems, or a related field. Experience supporting Application Security implementation or testing. Experience in DevOps or DevSecOps with a focus on automated application delivery. Experience in code analysis, API integration or application security testing. Experience in supporting endpoint security or vulnerability scanning tools. Experience in analyzing security events or cloud infrastructures. Substitutions: One (1) additional year of experience in cybersecurity analysis work may substitute for thirty (30) semester hours of educational requirement with a maximum substitution of 120 semester hours (four years). Advanced cybersecurity certifications such as CISSP or SANS may substitute for one (1) year of the minimum experience requirement. Licenses/Certifications (Preferred): CISSP, CCSP, SSCP, GSEC, GCIH, GCFW, CCNA, CCNP, CCIE, Security+, or related security certificate

In this role you will: Performs cybersecurity incident or vulnerability detection, analysis, and prevention. Evaluates system security configurations for best practices and risk-based controls. Develops processes, procedures, monitoring practices and metrics to measure the effectiveness of security operations activities and leads towards process maturity. Creates and maintains accurate documentation of current enterprise security environment. Performs vulnerability scans or assessments of systems or applications to identify weaknesses. Researches and analyzes cybersecurity threat indicators and recommends threat mitigation strategies. Implements continuous automated security compliance capabilities. Monitors and analyzes cybersecurity alerts and vulnerabilities from regulators, advisories, vendors, cybersecurity tools, or other sources. Assists in identifying and evaluating new cybersecurity technologies. Assists in advising management and users regarding security procedures. Assists Technical Lead on projects as necessary. Implements and maintains enterprise security monitoring within a CICD pipeline, including software composition analysis (SCA), secure coding practices, and vulnerability scanning to ensure application integrity. Deploys, configures, tests and maintains security tools applied to information systems intended to protect against cyber threats. Provides system support to prevent security incidents, including coordination of immediate corrective action to systems known to have any security weaknesses or vulnerabilities, including network isolation, re-configuration and installing appropriate patches or upgrades. Troubleshoots systems problems related to network, security, infrastructure, and application information systems. Supports the implementation of computer system security plans with agency personnel and outside vendors. Provides ongoing monitoring of sources of potential threats and vulnerabilities, including hacker web sites, anti-virus vendors, other government agencies and trade publications. Performs other related work as assigned.