EDUCATION

Bachelor’s Degree in Computer Science, Information Systems, Business Administration, Information Security, or another related field; or equivalent work experience

EXPERIENCE

Four years of experience in the work related to the position is required .

JOB SPECIFIC KNOWLEDGE, SKILLS, AND ABILITIES (KSAS)

The submitted candidate must be able to apply common knowledge, skills, and abilities in the following areas:
1. Knowledge in the use of appropriate security controls to protect the confidentiality, integrity and availability of information technology resources.
2. Knowledge of, and experience with, various computing technologies such as, but not limited to: Windows, Windows Server, Transmission Control Protocol/Internet Protocol (TCP/IP)
3. Knowledge of vulnerability management tools.
4. Knowledge in the use of information security practices and standards such as NIST, CIS Critical Security Controls and the Florida Cybersecurity Standards (74-2 Florida Administrative 60GG-2). Ability to review, assess and document compliance with standards.
5. Knowledge of Microsoft Systems Center Configuration Manager (SCCM) and other Microsoft support tools/technologies such as Group Policy and PowerShell.
6. Knowledge of the application of operating system security settings through direct manipulation of the registry.
7. Knowledge of Security Information and Event Management (SEIM) tools. Ability to utilize, configure and manage SPLUNK preferred but not required.
8. Skills in applying, analyzing and assessing information systems and security controls.
9. Skilled in the detection of software and hardware security problems.
10. Ability to analyze complex technical architecture for security issues.
11. Ability to be self-motivated, detail-oriented with excellent follow through.
12. Ability to assess and analyze risk and provide recommendations to successfully manage risk.
13. Ability to author documented analysis of systems to verify compliance with security controls.
14. Ability to effectively communicate orally and in writing to a variety of audiences. This includes the ability to communicate professionally with FDOT management, to communicate technical issues and concepts to non-technical staff, and to effectively explain security concepts and their benefit.
15. Ability to solve problems independently and with teams and exhibit sound judgement and decision-making skills.
16. Knowledge of Malwarebytes, Windows Defender, and other vulnerability scanning tools.

GENERAL KNOWLEDGE SKILLS AND ABILITIES (KSAS):

The submitted candidate must be able to apply common knowledge, skills, and abilities in the following areas:
1. Initiative : Must be able to comprehend assignments, organize workload, and meet deadlines with little direction. Must be able to monitor and analyze situations to determine the next step.
2. Communication : Can clearly convey information, in both written and verbal formats, to individuals or groups in a wide variety of settings (i.e., project team meetings, management presentations, etc.). Must have the ability to effectively listen and process information provided by others.
3. Customer Service : Works well with clients and customers (i.e., business office, public, or other agencies). Able to assess the needs of the customer, provide information or assistance to satisfy expectations or resolve a problem.
4. Decision Making : Makes sound, well-informed, and objective decisions utilizing critical thinking skills and analysis.
5. Flexibility : is open to change, new processes (or process improvement), and new information. Can adapt in response to new information, changing conditions, or unexpected obstacles. Ability to receive and give constructive criticism and maintain effective work relationships with others.
6. Interpersonal : Shows friendliness, courtesy, understanding, and politeness to others
7. Leadership : Motivates, encourages, and challenges others. Can adapt leadership styles in a variety of situations.
8. Problem Solving : Able to identify, evaluate, and use sound judgement to generate and evaluate alternative actions, and make recommendations as accordingly.
9. Team Building : Encourages, inspires, and guides others toward accomplishing the common goal as an equal member of the team.
10. Quality Assurance : Knowledge of the ideologies, techniques and tools for quality assurance and control. The ability to put the ideologies, techniques, and tools into practice

• Serve as a member of the Computer Security Incident Response Team. Duties includes researching incidents, identifying corrective actions, documenting status and coordinating responses to Computer Security Incidents.
• Responsible for the tracking and monitoring of endpoint software viruses. Enforces endpoint security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security breaches, exceptions, updates, and maintains and documents security controls.
• Work in conjunction with the Department’s Patch Management and Configuration Team in identifying secure configurations for standard FDOT products. Provide support/information as needed for implementation of secure baselines through package roll out and/or group policy. After implementation of secure baselines, use tools to review and ensure compliance with established baselines.
  Responsible for the administration and maintenance of endpoint vulnerability products, endpoint vulnerability risk reporting, and routine endpoint vulnerability scanning,