Resources in these positions may also be assigned other deliverables, tasks, and projects as needed in support of cybersecurity operations. The resource will report directly to the Department’s Information Security Officer and shall perform, at a minimum, the tasks and/or activities described below:

• Work with the Department’s Contract Manager to serve as the primary point of contact to ensure that start-up activities are completed within fourteen (14) days prior to the performance of services. Start-up activities include Department’s fingerprint background check and online information security training security requirements;
• Assist with implementing, tuning, and planning regarding the Department’s Managed Security Service Provider (MSS), Security Information and Event Management (SIEM) and vulnerability management;
• Assist in support of NextGen firewall security tools and maintain the site block list;
• Assist in the support of Distributed Denial of Services (DDoS) protection services utilized by the Department;
• Support and maintain endpoint detection and response (MDR/XDR) tools;
• Analyze, troubleshoot and resolve issues with the NextGen Antivirus solutions on servers and client systems;
• Monitor, identity, and classify vulnerabilities according to the Department’s vulnerability management plan for remediation;
• Monitoring of Data Loss Prevention solutions, tuning, and response actions;
• Monitoring of Network Access Control solution, tuning and response actions;
• Monitoring and configuring Email Security solutions, tuning, and response actions;
• Implementation of multi-factor authentication solution and zero-trust initiatives;
• Support and perform as a technical member of the Computer Security Incident Response Team (CSIRT);
• Develop and maintain technical specifications, standards, procedures, and systems documentation, including Systems Security Plans (SSPs);
• Research and recommend appropriate technical solutions to meet Department requirements;
• Provide recommendations for potential process improvements for the Office of Enterprise Security Management’s security team;

EDUCATION:

• Bachelor’s degree in Computer Science, Information Systems, Business Administration, or related field, or equivalent work experience.
• Information Security related certifications (ex. CISSP, CISM, CISA, CompTIA Advanced Security Practitioner etc.) are desirable.

• Work with the Department’s Contract Manager to serve as the primary point of contact to ensure that start-up activities are completed within fourteen (14) days prior to the performance of services. Start-up activities include Department’s fingerprint background check and online information security training security requirements;
• Assist with implementing, tuning, and planning regarding the Department’s Managed Security Service Provider (MSS), Security Information and Event Management (SIEM) and vulnerability management;
• Assist in support of NextGen firewall security tools and maintain the site block list;
• Assist in the support of Distributed Denial of Services (DDoS) protection services utilized by the Department;
• Support and maintain endpoint detection and response (MDR/XDR) tools;
• Analyze, troubleshoot and resolve issues with the NextGen Antivirus solutions on servers and client systems;
• Monitor, identity, and classify vulnerabilities according to the Department’s vulnerability management plan for remediation;
• Monitoring of Data Loss Prevention solutions, tuning, and response actions;
• Monitoring of Network Access Control solution, tuning and response actions;
• Monitoring and configuring Email Security solutions, tuning, and response actions;
• Implementation of multi-factor authentication solution and zero-trust initiatives;
• Support and perform as a technical member of the Computer Security Incident Response Team (CSIRT);
• Develop and maintain technical specifications, standards, procedures, and systems documentation, including Systems Security Plans (SSPs);
• Research and recommend appropriate technical solutions to meet Department requirements;
• Provide recommendations for potential process improvements for the Office of Enterprise Security Management’s security team