Cybersecurity Analyst II

OUR RECRUITMENT INVITATION

Award-winning. Results-driven. Future-ready.

We believe government should be at the forefront of technological innovation. Our teams are experimenting with artificial intelligence, machine learning and other emerging technologies to conceive tomorrow's solutions. IT members are exploring options for replacing and upgrading legacy systems. Our mission has never been clearer. We understand how citizens and employees can benefit from conveniences afforded by the latest tech offerings.

Our department provides training opportunities for staff at all levels. It's critical for IT members to constantly elevate their skill sets in preparation for what's to come. We appreciate candidates from diverse backgrounds who are energized by the challenges of working in government IT.

An inquisitive imagination, purposeful passion and consistent customer-focus are all welcome traits. We aspire to create an environment where employees can do their best work.

YOU MIGHT HAVE WHAT IT TAKES. APPLY TODAY.

This position will provide twenty-four by seven (24x7) information security operations services in the City's information security program. The ideal candidate will be a team player who has experience with large enterprise security programs including vulnerability management, security and event monitoring, threat evaluation, risk management, incident response and compliance activities. The analyst will be responsible for the operations of various security related applications, participating in security incidents, triaging network and cybersecurity events and monitoring the City's network and cybersecurity systems.

Specific duties include:

• Monitor and operate SEIM applications.

• Use network and/or system monitoring applications.

• Operate an enterprise class anti-virus/anti-malware system including policy, scanning, and remediation activities.

• Participate in cyber security related investigations and incidents.

• Triage network, system and/or cybersecurity events.

• Perform compliance activities and audits such as policy reviews, process reviews, and third-party security audits.

• Monitor, configure, and operate an enterprise class anti-virus/anti-malware system including policy, scanning and remediation activities.

• Evaluate application and IT infrastructure for risk and threat assessment.

• Evaluate vulnerability and threat information to assess, measure, and prioritize mitigations based on risk.

• Participate in DevSecOps processes and familiarity with programming practices, threat modeling and testing methodologies.

• Analyze and install manufacturer supplied or internally developed system software and/or hardware to maintain or enhance the City's information technology systems and configurations. Once systems are installed, test system and troubleshoot bugs to ensure proper connectivity and compatibility/integration with interconnected systems.

• Collaborate with other information technology professionals to plan and administer projects to determine impact and establish scope and schedules in order to ensure satisfactory and timely completion of work.

• Provide technical advice to management and other personnel on software and hardware capabilities, limitations, and costs; perform troubleshooting and problem solving to provide around-the-clock system availability.

• May train and direct work of junior staff; coordinate with other information technology professionals to tailor system components and configurations to optimize performance.

Selected/Ideal Candidate will:

• Have knowledge of principles of cyber security best practices and concepts.

• Be familiar with reviewing and ensuring compliance with security related policies.

• Be familiar with NIST Cyber Security Framework and ISO 27001 Framework.

The successful candidate will be expected to participate in a twenty-four by seven (24x7) operational rotation as a member of the network and security operations center staff.

This position offers a remote/hybrid work schedule arrangement within the Virginia and North Carolina surrounding areas; Primarily on-site work required. The City offers a generous and competitive benefits package, which includes health, dental, and life insurance, retirement and savings plans, maternity/paternity leave, holidays, and Paid-Time-Off.

• eVerify Requirement: The City of Virginia Beach does not participate in eVerify.

CJIS/PREA Disclaimer: *This position will provide direct support to the City's Public Safety departments and will have physical access to public safety buildings and/or access to confidential and sensitive public safety databases. As such, and in compliance with federal regulations and guidelines, City of Virginia Beach IT staff and contractors must receive a Criminal Justice Information Systems (CJIS) and may require a Prison Rape Elimination Act (PREA) criminal background clearance prior to employment and annually thereafter while employed or under contract with the City of Virginia Beach. Automatic disqualifiers related to the CJIS and PREA criminal background checks apply, including but not limited to, US Citizenship and/or minimum ten (10) years US Residency requirements.