Network Security Analyst 1

I. DESCRIPTION OF SERVICESTexas Department of Transportation requires the services of 1 Network Security Analyst 1, hereafter referred to as Candidate(s), who meets the general qualifications of Network Security Analyst 1, Security and the specifications outlined in this document for the Texas Department of Transportation.


All work products resulting from the project shall be considered "works made for hire" and are the property of the Texas Department of Transportation and may include pre-selection requirements that potential Vendors (and their Candidates) submit to and satisfy criminal background checks as authorized by Texas law. Texas Department of Transportation will pay no fees for interviews or discussions, which occur during the process of selecting a Candidate(s).


A Network Security Analyst I will patch and complete vulnerability remediation as they are essential to protect systems, reduce organizational risk, maintain compliance, and ensure reliable operations. this asset will provide vulnerability management and compliance to the TxDOT cloud environment. The Cloud Vulnerability Remediation Engineer is responsible for identifying, assessing, and remediating security vulnerabilities in cloud environments to reduce enterprise risk and maintain compliance with established security policies. This role focuses on vulnerability remediation activities across cloud infrastructure and platform services, coordinating patching, configuration changes, and compensating controls in alignment with approved vulnerability management and change management processes.
The role works closely with Cloud Operations, Security, Application, and Risk teams to ensure vulnerabilities are remediated within required timelines and that cloud workloads remain secure, stable, and compliant.


Key Responsibilities:
-Review and analyze vulnerability findings affecting cloud hosted resources identified through approved scanning and security tools.
-Assess vulnerability applicability and risk impact for cloud infrastructure, platform services, and supporting components.
-Plan and execute remediation actions, including patching, configuration changes, and security hardening, in accordance with established remediation timelines.
-Validate remediation results and confirm successful closure of assigned vulnerability tasks.
-Perform cloud based patching and update activities for supported workloads using approved processes.
-Implement cloud security configuration changes required to reduce exposure where vendor patches are unavailable.
-Create, update, and maintain remediation tasks and change records in the system of record to support audit and compliance requirements.
-Ensure remediation activities follow established change management, approval, and validation processes.
-Provide remediation status updates and evidence for security reporting, audits, and leadership reviews.
-Support remediation efforts that require temporary mitigations or compensating controls when permanent fixes are not immediately available
-Partner with Security, Cloud Architecture, and Application teams to resolve complex or cross platform vulnerabilities.
-Identify recurring issues, remediation blockers, or process gaps and recommend improvements.
-Support enterprise efforts to reduce technical debt and improve cloud security posture over time.

****TxDOT NOT-TO-EXCEED RATE IS ***/HR*****


Term of Service: The initial term of the contract shall commence upon execution of the contract and expires one year from commencement with the option to renew for two, one-year period(s) at TxDOT's sole discretion. TxDOT will provide an intent to renew, in writing, a minimum of 30 days prior to expiration of the current term.


NOTE: The dates, listed below, are estimated and based on the anticipated award date of the contract and will be in accordance with the DIR contract.


1st Renewal Option: One year based on commencement.
2nd Renewal Option: One year based on commencement.II. CANDIDATE SKILLS AND QUALIFICATIONSMinimum Requirements:
Candidates that do not meet or exceed the minimum stated requirements (skills/experience) will be displayed to customers but may not be chosen for this opportunity.
Years Required/Preferred Experience
3 Required Professional IT experience, with hands on exposure to cloud infrastructure, system administration, or vulnerability remediation.
3 Required Experience supporting cloud hosted systems in at least one enterprise cloud environment.
3 Required Understanding of vulnerability remediation concepts, including patching, configuration hardening, and compensating controls.
3 Required Familiarity with IT service management and change processes.
3 Required Strong analytical and documentation skills.
3 Required Ability to follow defined security and remediation procedures.
3 Required Effective communication and collaboration skills.
1 Preferred Exposure to enterprise vulnerability management processes and remediation SLAs.
1 Preferred Knowledge of cloud security posture management, security baselines, or risk reporting.
1 Preferred Relevant cloud or security certifications.