View All Jobs 155435

Security Operations Engineer - 72004186 1

Manage department-wide firewall configurations to prevent cyber threats and unauthorized access
Tallahassee, Florida, United States
Senior
$72,000 – 78,000 USD / year
yesterday
Florida State Jobs

Florida State Jobs

A platform providing access to employment opportunities and job-related resources for residents in the state of Florida.
138 Similar Jobs at Florida State Jobs

Security Operations Engineer

The State Personnel System is an E-Verify employer.

This position is located in Tallahassee, FL.

Position Overview and Responsibilities:

  • Security Operations and Secure Configurations:
    • Assess and implement secure configuration for the department's physical and logical information technologies
    • Manage the department's firewalls to control network traffic, prevent unauthorized access of department assets, and mitigate cyber threats.
    • Participate in the design and execution of vulnerability assessments, penetration tests and security audits
    • Participate in Security Architecture reviews for new projects to ensure proposed solutions align with risk requirements
    • Perform routine assessments on physical, logical, and virtual platform configurations to ensure security and compliance
    • Research and analyze security trends and recommend hardening configurations
    • Implement industry best practices and statutory obligations for security policies on the Departments Information technology platforms
    • Perform data sanitation in accordance with policy and Florida Statues
    • Assist with periodic reviews of computer System Security Plans and user training.
  • Vulnerability (OS, Application, Web apps, etc.):
    • Identify and oversee the management of credentials for authorized devices and users, manage remote access, and access permissions; ensure systems are properly maintained, secured, and controlled, including the review of upgrades, service packs, patches, firmware, and backup configurations
    • Assure that data at rest and in transit is properly secured and protections against malicious exfiltration are implemented; confirm backups of information are successful and tested periodically
    • Assess and recommend security enhancements for platform solutions and technologies
    • Perform routine assessments on physical, logical, and virtual platform configurations to ensure security and compliance
    • Develop vulnerability mitigation recommendations, standards, and security configurations for Departmental infrastructure and services
    • Implement Vulnerability patching and/or assist other Departmental processes with vulnerability mitigation and patch efforts
  • Endpoint security:
    • Perform systems management for technical systems that promote enhanced security. Solutions that support key areas may include: Endpoint Detection and Response, Extended Detection and Response, SIEM, ZTNA, CDN, asset management, compliance, identity, and access management systems, incident and event monitoring, threat and vulnerability identification, configuration benchmarking, firewall management.
    • Monitor and configure email security tools, anti-spam and anti-phishing tools
    • Works with DMS staff to develop, implement and maintain department level security controls
  • Other Duties:
    • Maintain up-to-date detailed knowledge of the IT security industry including awareness of new and revised security solutions, improved security processes, and the development of new attacks and threat vectors
    • Provide after business hours support in response to critical security events and investigations
    • Serve as backup and Tiger Team member for the Department and Enterprise agencies as needed
    • Continued education, training, and career pathing

Knowledge, Skills, and Abilities:

  • Knowledge of computer networking concepts, protocols and network security
  • Knowledge of risk management processes
  • Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy
  • Knowledge of cybersecurity and privacy principles
  • Knowledge of firewall technologies and configurations
  • Knowledge of cyber threats and vulnerabilities
  • Knowledge of data backup and recovery
  • Knowledge of business continuity and disaster recovery continuity of operations plans
  • Knowledge of host/network access control mechanisms
  • Knowledge of network services and protocols interactions that provide network communications
  • Knowledge of network traffic analysis methods
  • Knowledge of packet-level analysis
  • Knowledge of system and application security threats and vulnerabilities
  • Knowledge of what constitutes a network attack and a network attack's relationship to both threats and vulnerabilities
  • Knowledge of cyber defense and information security policies, procedures, and regulations
  • Knowledge of cyber attackers
  • Knowledge of common attack vectors
  • Knowledge of system administration, network, and operating system hardening techniques
  • Knowledge of network security architecture concepts
  • Knowledge of OSI model and underlying network protocols
  • Knowledge of cloud service models and how those models can limit incident response
  • Knowledge of malware analysis concepts and methodologies
  • Knowledge of an organization's information classification program and procedures for information compromise
  • Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services
  • Knowledge of the common networking and routing protocols, services, and how they interact to provide network communications
  • Skill in identifying, capturing, containing, and reporting malware
  • Skill in preserving evidence integrity according to standard operating procedures or national standards
  • Skill in securing network communications
  • Skill in recognizing and categorizing types of vulnerabilities and associated attacks
  • Skill in protecting a network against malware
  • Skill in performing damage assessments
  • Skill in using security event correlation tools
  • Skill to design incident response for cloud service models
  • Accountability, Communication, Empowerment, Flexibility, Integrity, Respect, Teamwork

Minimum Qualifications:

  • Minimum 4 years of experience in a cybersecurity role or position.
  • Minimum 1 year experience with firewall management.

Our Organization and Mission:

Under the direction of Governor Ron DeSantis, Secretary Pedro Allende and DMS' Executive Leadership Team, the Florida Department of Management Services (DMS) is a customer-oriented agency with a broad portfolio that includes the efficient use and management of real estate, procurement, human resources, group insurance, retirement, telecommunications, fleet, and federal property assistance programs used throughout Florida's state government. It is against this backdrop that DMS strives to demonstrate its motto, "We serve those who serve Florida."

Special Notes:

DMS is committed to successfully recruiting and onboarding talented and skilled individuals into its workforce. We recognize the extensive training, experience, and transferrable skills that veterans and individuals with disabilities bring to the workforce. Veterans and individuals with disabilities are encouraged to contact our recruiter for guidance and answers to questions through the following provided email addresses: DMS.Ability@dms.fl.gov DMS.Veterans@dms.fl.gov An individual with a disability is qualified if he or she satisfies the skills, experience, and other job related requirements for a position and can perform the essential functions of the position with or without reasonable accommodation. Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must contact the DMS Human Resources (HR) Office at (850) 488-2707. DMS requests applicants notify HR in advance to allow sufficient time to provide the accommodation. Successful completion of background screening will be required for this position.

The State of Florida is an Equal Opportunity Employer/Affirmative Action Employer, and does not tolerate discrimination or violence in the workplace.

Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must notify the agency hiring authority and/or People First Service Center (1-866-663-4735). Notification to the hiring authority must be made in advance to allow sufficient time to provide the accommodation.

The State of Florida supports a Drug-Free workplace. All employees are subject to reasonable suspicion drug testing in accordance with Section 112.0455, F.S., Drug-Free Workplace Act.

VETERANS' PREFERENCE. Pursuant to Chapter 295, Florida Statutes, candidates eligible for Veterans' Preference will receive preference in employment for Career Service vacancies and are encouraged to apply. Certain service members may be eligible to receive waivers for postsecondary educational requirements. Candidates claiming Veterans' Preference must attach supporting documentation with each submission that includes character of service (for example, DD Form 214 Member Copy #4) along with any other documentation as required by Rule 55A-7, Florida Administrative Code. Veterans' Preference documentation requirements are available by clicking here.

+ Show Original Job Post
Suggest a correction
























Security Operations Engineer - 72004186 1
Tallahassee, Florida, United States
$72,000 – 78,000 USD / year
Engineering
Apply to job
About Florida State Jobs
A platform providing access to employment opportunities and job-related resources for residents in the state of Florida.