Cyber Security Analyst
Apply NowCompany: Matanuska-Susitna Borough
Location: Palmer, AK 99645
Description:
Salary: $42.46 - $50.74 Hourly
Location : Palmer, AK
Job Type: Regular Full-Time
Job Number: 2024-00156
Department: Information Technology
Division: OIT - Cybersecurity & Application Operations
Opening Date: 09/13/2024
Closing Date: Continuous
Job Summary
This position performs information technology cyber security and analysis functions in support of the Matanuska-Susitna Borough technology infrastructure.
Work is performed and duties are carried out in accordance with established policies, procedures, and Borough core values: Accountability, Customer Focus, Dedication, Integrity, Responsiveness and Teamwork.
Please Note: Hybrid-Telework options are available based on individual performance and preference.
Pay Grade
R1 - R10 - DOE
Minimum Requirements
Baccalaureate degree in a course of study related to the occupational field. Post-secondary education or experience which provides the expertise required to perform effectively the functions of the position may substitute for the degree on a year-for-year basis.
Three (3) years of experience in the occupational field, sufficient to understand the major duties of the position with two (2) years of full-time Information Security related experience preferred. Relevant experience includes: performing work in an IT field, including familiarity with cybersecurity roles, including the use of Intrusion Detection/Prevention Systems (IDS/IPS), Security Information and Event Management (SIEM), and threat analysis. Additionally, performing professional duties relevant to the work may involve experience with network security architecture, network design, and common networking protocols (e.g., TCP/IP, DNS, VPN, etc.). This experience may also include investigating and responding to security incidents, including root cause analysis, as well as proficiency in cybersecurity tools such as firewalls, data encryption, and vulnerability scanning technologies. Strong knowledge of cyber incident response procedures and familiarity with incident management frameworks (e.g., NIST, SANS, ISO/IEC, MITRE ATT&CK, CIS, etc.), along with the ability to work with malware analysis tools and deconstruct malware. Familiarity with cloud security and governance frameworks is also part of the relevant experience.
Possession of or ability to readily obtain a valid driver's license issued by the State of Alaska for the type of vehicle or equipment operated.
Must successfully pass a pre-employment background check.
Completion of required Incident Command System (ICS) course in accordance with established Borough policy.
Duties/Responsibilities
The Mat-Su Borough offers a variety of benefits to its eligible employees. These benefits include Health, dental and vision insurance, life insurance, accident and dismemberment (AD&D) insurance, retirement, supplemental benefits (in lieu of social security), deferred compensation, and an employee assistance program. Following is brief description of some of these benefits.
Health Insurance:
The Borough provides group health insurance to all Regular employees scheduled to work 30 or more hours per week. The plan includes medical, prescription, audio and optional dental and vision benefits. Coverage begins for the employee and family members the 1st of the month following date of employment. Family members include spouse and children under age 26. Beginning July 1, 2022, the amount charged to each employee, with a regular work week of 35 or more hours, will be based on which Tier you select and whether the optional vision/dental coverage is added. That amount will be divided between the first two paychecks of each month. The Borough will pay the remainder of the monthly costs. For employees working at least 30 hours but less than 40 hours a week, if the employee elects to be covered, the employee cost will also be based on the Tier selected and if the optional vision/dental coverage has been added.
Life & AD&D:
All regular full time or part time employees will have life insurance coverage provided by the Borough of $50,000 on themselves, $2,000 on their spouse and $1,000 on each qualified child. The benefit for Accidental Death & Dismemberment on the employee is $50,000.
Employees may purchase additional life insurance through the State of Alaska Supplemental Benefits System.
Retirement:
PERS Tier IV (applies to employees first entered into PERS service on or after July 1, 2006): Alaska Public Employees' Retirement System is mandatory with a contribution rate of 8%. The Borough portion is as follows: Defined Contribution Plan - 5%; Health Plan - 1.07%, Health Reimbursement Arrangement - $83.40 (per pay period), Occupational Death & Disability - .31%.
PERS Tier I, II, & III (applies to employees first entered into PERS service prior to July 1, 2006): Alaska Public Employees' Retirement System (PERS) is mandatory with a contribution rate of 6.75%. The Borough portion is 22%.
For further information, go to the state of Alaska's website at www.state.ak.us/drb.
Alaska Supplemental Benefits System:
The Supplemental Benefits System (SBS) is in lieu of Social Security and is mandatory. An employee contributes at 6.13% of gross wages, matched by the Borough (6.13%), on the present wage base of $132,900.
SBS offers other various benefit options which are fully explained on their website at www.state.ak.us/drb.
Deferred Compensation Plan:
The Borough offers a Deferred Compensation Plan to eligible employees. The maximum amount an employee may defer in any taxable year is 100% of taxable wages or $20,500, whichever is less. Employees over the age of 50 may contribute an additional $6,000 and ROTH $6,000.
Holidays:
The Borough recognizes 11 paid holidays (plus 1 floating holiday). Regular employees with a regularly scheduled work week of less than forty (40) hours shall receive holiday pay on a pro-rated basis.
Personal Leave:
Personal leave will begin accruing the first day employment, however, it will not be for until after the employee has completed three (3) months of service. Accrual rates are as follows:
0 through 1 years 5.9996 Hours per pay period
1 through 2 years 6.9227 Hours per pay period
3 through 5 years 8.7689 Hours per pay period
6 through 10 years 9.6919 Hours per pay period
11 years and longer 11.6378 Hours per pay period
Regular employees with a regularly scheduled work week of less than forty (40) hours shall accrue leave on a pro-rated basis.
01
Describe your experience working with IDS/IPS systems. What tools have you used, and how did you configure them to detect security incidents?
02
What SIEM platforms have you used, and how have you leveraged them to monitor and respond to security events? Provide an example of a security threat you identified through SIEM tools.
03
Have you been involved in a cyber incident response process? If yes, briefly describe the steps you took to resolve the issue and prevent future occurrences.
04
Which cybersecurity certifications do you currently hold (e.g., CISSP, Security+, CEH)? If you do not hold certifications yet, are you working towards obtaining any? Please explain.
05
Can you provide an example of a time when you identified and mitigated a security breach? What was the outcome, and how did you ensure it wouldn't happen again?
06
Explain your approach to threat hunting. How do you detect and analyze potential security threats before they become incidents?
07
Describe a time when you conducted a vulnerability assessment and implemented remediation measures. What tools did you use, and what were the results?
08
Have you been involved in the development or implementation of security policies? If yes, describe how you've contributed to creating or updating policies related to cybersecurity.
09
Which cybersecurity frameworks or standards (e.g., NIST, ISO, CIS) have you worked with? How have you ensured compliance with these standards in your previous roles?
Required Question
Location : Palmer, AK
Job Type: Regular Full-Time
Job Number: 2024-00156
Department: Information Technology
Division: OIT - Cybersecurity & Application Operations
Opening Date: 09/13/2024
Closing Date: Continuous
Job Summary
This position performs information technology cyber security and analysis functions in support of the Matanuska-Susitna Borough technology infrastructure.
Work is performed and duties are carried out in accordance with established policies, procedures, and Borough core values: Accountability, Customer Focus, Dedication, Integrity, Responsiveness and Teamwork.
Please Note: Hybrid-Telework options are available based on individual performance and preference.
Pay Grade
R1 - R10 - DOE
Minimum Requirements
Baccalaureate degree in a course of study related to the occupational field. Post-secondary education or experience which provides the expertise required to perform effectively the functions of the position may substitute for the degree on a year-for-year basis.
Three (3) years of experience in the occupational field, sufficient to understand the major duties of the position with two (2) years of full-time Information Security related experience preferred. Relevant experience includes: performing work in an IT field, including familiarity with cybersecurity roles, including the use of Intrusion Detection/Prevention Systems (IDS/IPS), Security Information and Event Management (SIEM), and threat analysis. Additionally, performing professional duties relevant to the work may involve experience with network security architecture, network design, and common networking protocols (e.g., TCP/IP, DNS, VPN, etc.). This experience may also include investigating and responding to security incidents, including root cause analysis, as well as proficiency in cybersecurity tools such as firewalls, data encryption, and vulnerability scanning technologies. Strong knowledge of cyber incident response procedures and familiarity with incident management frameworks (e.g., NIST, SANS, ISO/IEC, MITRE ATT&CK, CIS, etc.), along with the ability to work with malware analysis tools and deconstruct malware. Familiarity with cloud security and governance frameworks is also part of the relevant experience.
Possession of or ability to readily obtain a valid driver's license issued by the State of Alaska for the type of vehicle or equipment operated.
Must successfully pass a pre-employment background check.
Completion of required Incident Command System (ICS) course in accordance with established Borough policy.
Duties/Responsibilities
- Perform and monitor information security for the Borough's IT landscape to ensure the identification of required security related issues by configuring and establishing monitoring, correlation and alerting solutions.
- Protect digital files and information systems against unauthorized access, modification or destruction.
- Recognize potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analysis of relevant event detail and summary information.
- Investigate and analyze security breaches to determine their root cause; ensure the situation is handled promptly and effectively following the security incident response process.
- Work with network and systems administrators to ensure security standards are configured and maintained to enable effective identification and alerting of potential security events, as well as reducing false positives to protect Borough assets.
- Perform operational support of information security technology such as Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), and Security Information and Event Management (SIEM).
- Assist with implementation of countermeasures or mitigating controls as they relate to the Borough's security posture.
- Provide security reports to IT leadership on all related incidents, responses, and related issues.
- Complete information security related project tasks on time and within budget and scope.
- Develop and maintain the Cyber Incident Response plan; recommend and execute security strategies to improve processes based on lessons learned over time.
- Participate in reviewing information security solutions and strategic planning and budgeting as it relates to cyber security.
- Plan, implement and upgrade security measures and controls.
- Maintain network and system security diagrams and documentation.
- Act as the lead threat hunter at the Borough to consolidate and conduct comprehensive analysis of threat data for threat detection and incident response.
- Evaluate and work with vendors to deconstruct malware.
- Define, implement and maintain Borough information security policies.
- Support development and implementation of cyber security governance.
- Evaluate Borough departmental and operational needs to define and coordinate system performance requirements, integrate technical parameters, and assure compatibility of all physical, functional and program interfaces.
- Participate in enterprise architectural planning and implementation of IT infrastructure and systems; make recommendations for changes that can help the removal of vulnerabilities and reduction in the risk of exploitation that may result in potential incidents.
- Participate in vendor management for security related services and projects.
- Support security awareness training.
- Foster relationships with other organizations and vendors as related to cyber security.
- Performs other duties as assigned.
The Mat-Su Borough offers a variety of benefits to its eligible employees. These benefits include Health, dental and vision insurance, life insurance, accident and dismemberment (AD&D) insurance, retirement, supplemental benefits (in lieu of social security), deferred compensation, and an employee assistance program. Following is brief description of some of these benefits.
Health Insurance:
The Borough provides group health insurance to all Regular employees scheduled to work 30 or more hours per week. The plan includes medical, prescription, audio and optional dental and vision benefits. Coverage begins for the employee and family members the 1st of the month following date of employment. Family members include spouse and children under age 26. Beginning July 1, 2022, the amount charged to each employee, with a regular work week of 35 or more hours, will be based on which Tier you select and whether the optional vision/dental coverage is added. That amount will be divided between the first two paychecks of each month. The Borough will pay the remainder of the monthly costs. For employees working at least 30 hours but less than 40 hours a week, if the employee elects to be covered, the employee cost will also be based on the Tier selected and if the optional vision/dental coverage has been added.
Life & AD&D:
All regular full time or part time employees will have life insurance coverage provided by the Borough of $50,000 on themselves, $2,000 on their spouse and $1,000 on each qualified child. The benefit for Accidental Death & Dismemberment on the employee is $50,000.
Employees may purchase additional life insurance through the State of Alaska Supplemental Benefits System.
Retirement:
PERS Tier IV (applies to employees first entered into PERS service on or after July 1, 2006): Alaska Public Employees' Retirement System is mandatory with a contribution rate of 8%. The Borough portion is as follows: Defined Contribution Plan - 5%; Health Plan - 1.07%, Health Reimbursement Arrangement - $83.40 (per pay period), Occupational Death & Disability - .31%.
PERS Tier I, II, & III (applies to employees first entered into PERS service prior to July 1, 2006): Alaska Public Employees' Retirement System (PERS) is mandatory with a contribution rate of 6.75%. The Borough portion is 22%.
For further information, go to the state of Alaska's website at www.state.ak.us/drb.
Alaska Supplemental Benefits System:
The Supplemental Benefits System (SBS) is in lieu of Social Security and is mandatory. An employee contributes at 6.13% of gross wages, matched by the Borough (6.13%), on the present wage base of $132,900.
SBS offers other various benefit options which are fully explained on their website at www.state.ak.us/drb.
Deferred Compensation Plan:
The Borough offers a Deferred Compensation Plan to eligible employees. The maximum amount an employee may defer in any taxable year is 100% of taxable wages or $20,500, whichever is less. Employees over the age of 50 may contribute an additional $6,000 and ROTH $6,000.
Holidays:
The Borough recognizes 11 paid holidays (plus 1 floating holiday). Regular employees with a regularly scheduled work week of less than forty (40) hours shall receive holiday pay on a pro-rated basis.
Personal Leave:
Personal leave will begin accruing the first day employment, however, it will not be for until after the employee has completed three (3) months of service. Accrual rates are as follows:
0 through 1 years 5.9996 Hours per pay period
1 through 2 years 6.9227 Hours per pay period
3 through 5 years 8.7689 Hours per pay period
6 through 10 years 9.6919 Hours per pay period
11 years and longer 11.6378 Hours per pay period
Regular employees with a regularly scheduled work week of less than forty (40) hours shall accrue leave on a pro-rated basis.
01
Describe your experience working with IDS/IPS systems. What tools have you used, and how did you configure them to detect security incidents?
02
What SIEM platforms have you used, and how have you leveraged them to monitor and respond to security events? Provide an example of a security threat you identified through SIEM tools.
03
Have you been involved in a cyber incident response process? If yes, briefly describe the steps you took to resolve the issue and prevent future occurrences.
04
Which cybersecurity certifications do you currently hold (e.g., CISSP, Security+, CEH)? If you do not hold certifications yet, are you working towards obtaining any? Please explain.
05
Can you provide an example of a time when you identified and mitigated a security breach? What was the outcome, and how did you ensure it wouldn't happen again?
06
Explain your approach to threat hunting. How do you detect and analyze potential security threats before they become incidents?
07
Describe a time when you conducted a vulnerability assessment and implemented remediation measures. What tools did you use, and what were the results?
08
Have you been involved in the development or implementation of security policies? If yes, describe how you've contributed to creating or updating policies related to cybersecurity.
09
Which cybersecurity frameworks or standards (e.g., NIST, ISO, CIS) have you worked with? How have you ensured compliance with these standards in your previous roles?
Required Question