Applications accepted from: ALL PERSONS
Job Classification: IT PROFESSIONAL – SECURITY (CYBERSECURITY ANALYST – ICS)
Posting Number: 28420
Department: HOUSTON INFORMATION TECHNOLOGY SERVICES
Division: CYBER SECURITY
Reporting Location: 611 WALKER, 8TH FL
Workdays & Hours: MONDAY – FRIDAY 8:00 AM – 5:00 PM* *Subject to Change

DESCRIPTION OF DUTIES / ESSENTIAL FUNCTIONS
The Houston Information Technology Services Department has an exciting opportunity for an IT Professional – Security. Duties, functions and responsibilities of this position include, but not limited to the following:

• Supports Houston Public Works (HPW) specific cyber security initiatives through both predictive and reactive analysis
• Performs Operational Technology (OT), Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) systems threat and vulnerability assessments and provides subject matter expertise on appropriate threat mitigation approaches
• Responsible for implementing an ICS Framework approach to facilitate the secure implementation and management of critical HPW systems
• Responsible for communicating cyber risks and recommendations to mitigate risks to the COH CISO, COH CIO and HPW Director
• Ensure HPW system vulnerabilities are managed and mitigated per COH Cyber Division policy
• Ensure proper protections, technical and physical controls are in place to protect HPW assets based on cyber industry standards (e.g., NIST 800-82)
• Work with COH Cyber Division on the integration of existing HPW cyber capability and monitoring into the COH Security Operations Center (SOC)
• Identifies intrusion activity by leveraging alert data from multiple sensors and systems and determines priority for response
• Monitors, evaluates, and assist with the maintenance of assigned security systems in accordance with industry best practices to safeguard internal information systems and databases
• Uses attack signatures and tactics, techniques and procedures (TTPs) to aid in threat detection and discovery
• Conducts basic malware analysis of attacker tools and identifies indicators of compromise (IOC)s
• Manage the SOC mailbox, and monitor and analyze the emails for threats including phishing and malware, and escalates per procedures
• Participates in the investigations of information security incidents and may prepare reports on intrusions as required
• Maintains an understanding of the current threats, vulnerabilities, response and mitigation strategies used to support cyber security operations
• Logs and records all security incidents to internal ticketing system

WORKING CONDITIONS

There are no major sources of discomfort, i.e., essentially normal office environment with acceptable lighting, temperature and air conditions. Significant time spent using computer display, keyboard, and mouse.

EDUCATION REQUIREMENTS
Associate degree in Computer Science, Management and Information Systems (MIS), Business or a related field. System-specific technical certifications may be considered a substitution for associate degree.

Experience in IT security, infrastructure or applications may be substituted for the education requirement on a year-for-year basis.

EXPERIENCE REQUIREMENTS
At least 18 months of technology experience in IT security, or supporting security aspects of IT infrastructure or applications teams.

LICENSE REQUIREMENTS
Must be able to pass a criminal background check, obtain and maintain federally mandated security clearances where required.

Preference shall be given to eligible veteran applicants provided such persons possess the qualifications necessary for competent discharge of the duties involved in the position applied for, such persons are among the most qualified candidates for the position, and all other factors in accordance with Executive Order 1-6.

The candidate must have the following knowledge, skills and abilities:

• Knowledgeable of Cyber Kill Chain and Diamond Model of Intrusion Analysis
• Knowledge of SIEM, IDS, anti-virus/anti-malware and firewall technologies
• Understanding of networking and TCP/IP
• Experience with a wide variety of operating systems: Windows Server, Windows 10, Windows 7, Linux etc.
• Ability to troubleshoot technical and security related issues
• Experience working in a rapidly changing, high intensity environment
• Avid, proactive learner and ability to work well in a team-based environment
• Strong interpersonal and writing skills
• Candidate required to obtain Security+ certification during first year of employment

SELECTION / SKILLS TESTS REQUIRED
Department may administer skills assessment test

SAFETY IMPACT POSITION NO
If yes, this position is subject to random drug testing and if a promotional position, candidate must pass an assignment drug test.

SALARY INFORMATION
Factors used in determining the salary offered include the candidate’s qualifications as well as the pay rates of other employees in this classification.

PAY GRADE: 27

APPLICATION PROCEDURES
Only online applications will be accepted for this City of Houston job and must be received by the Human Resources Department during active posting period. Applications must be submitted online at: www.houstontx.gov.

To view your detailed application status, please log-in to your online profile by visiting: http://agency.governmentjobs.com/houston/default.cfm or call (832/393-0204).

If you need special services or accommodations, call (832/393-0204). (TTY 7-1-1)
If you need login assistance or technical support call 855-524-5627.

Due to the high volume of applications received, the Hiring Department will contact you directly, should you be selected to advance in our recruitment process.

All new and rehires must pass a pre-employment drug test and are subject to a physical examination and verification of information provided.

EOE – Equal Opportunity Employer
The City of Houston is committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual’s sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, genetic information, veteran status, gender identity, or pregnancy.