Information Security Analyst II

State of Utah

Full Job Description
Job Description
Are you familiar with NIST and State and Federal Regulatory Compliance Standards and requirements? If you answered yes then the Division of Technology Services (DTS) Enterprise Information Security office, has a great career opportunity for you! This position will provide agencies with security guidance in accordance to NIST, Federal Regulatory Compliance Standards and DTS Security Policies.

The Ideal Candidate:
The ideal candidate will be able to work with IT Directors on security strategy for each agency as well as maintain tracking of vulnerability assessments for each agency within your campus; Perform ad hoc scans on agency servers when requested; Perform cursory application reviews (SDLC Process of new applications and review current applications); Periodic and on-demand system audits and vulnerability assessments; Ensure that the integrity and protection of agency network, systems, and applications meet enterprise security requirements and standards, as well as agency policies and requirements; Recognize potential successful and unsuccessful intrusion attempts and compromises of agency servers; Coordinate and assist with security incident response activities with State Agencies; Assist during federal audits; Provide assistance with the Enterprise Information Security Office (EISO) forensic investigations and coordinates efforts with agencies and provide information for investigation reports; Provide input for enterprise security awareness program.

This job may be filled at either of the levels listed below. (Rate as listed or in accordance with DHRM Rules for current state employees.)
Information Security Analyst II, $28.33- $44.92 per hour
Information Security Analyst I, $23.42- $40.29 per hour (As a Information Security Analyst I, you will perform the duties described above under supervision.)
Why join our team?
We have great business partners who want to serve Utah citizens efficiently and effectively, while working within the guidance of their federal and state partners. This is an opportunity to make a difference for Utah citizens while being a pivotal part of an exciting IT team. You will receive great health and retirement benefits, such as, generous paid time off so you can spend more time with your family and have a positive work life balance. Click here to view a summary of all the benefits we offer.

The Agency:
To learn more about The Division of Technology Services check us out Click here. The State’s environment is a highly optimized blend of systems responsible for collecting, processing, and distributing millions of data elements every day.

Example of Duties
Primary Duties:

Provide IT Directors’ assistance in meeting the agency’s security strategy.
Assist agencies in security assessments, risk assessments, and related activities.
Execute ad hoc vulnerability scans.
Lead internal assessments of Agency assets for state-mandated assessments.
Educate Agency personnel concerning security related issues.
Assist agency with federal and regulatory audits.
Provide security assistance with agency investigations and incidents.
Vet agency firewall requests.
Attend agency/campus hosting, network, and development meetings as a security representative to provide security recommendations and advice.
Perform security reviews on agency applications and systems.

Typical Qualifications

Familiar with NIST and State and Federal Regulatory Compliance Standards and requirements ( i.e. PCI DSS, IRS FTI, HIPAA, SSA, FERPA, PII, etc. ).
Provide guidance to agency on policies and standards in accordance to state and federal requirements.
Scans, access logs of various security devices and provide reports.
Work well with individuals in information technology and the agency business.
Attend meetings to represent security and provide guidance.
Participate in incident response and forensic investigations.
Familiar with risk assessments and threat analysis.
Troubleshooting and analytical skills.
Extract data from various network devices to create reports.
Provide clear communications to management on various cyber activity.

Supplemental Information

Employment contingent on passing a drug screening and a background check.
Risks found in the typical office setting, which is adequately lighted, heated and ventilated, e.g., safe use of office equipment, avoiding trips and falls, observing fire regulations, etc
Work requires physical exertion. May require the ability to stand; walk over rough surfaces; bend, crouch, stoop, stretch, reach, lift moderately heavy items (up to 50 lbs.).

To apply for this job please visit