City of Tampa

Senior Security Operations Analyst (#081210) S23

$50.24-$75.37 Hourly / $8,708.27-$13,064.13 Monthly / $104,499.20-$156,769.60 Yearly


Introduction

This is highly responsible work in security operations area that spans across a variety of computer platforms

Nature Of Work

The Senior Security Operations Analyst performs multiple core functions.  Employees in this class are responsible for providing day-to-day operations of the in-place security solutions while also identifying, investigating, resolving of security detections, and tuning to reduce noise. Employees are also involved in the implementation of new security solutions, participation in the creation and/or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments.  The Senior Security Operations Analyst may also be responsible for managing the activities of employees, projects and performing technical analysis and design activities. This position is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals.

Examples of Duties

Participate in the planning and design of enterprise security architecture, under the direction of the Information Security Officer, where appropriate.

Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Information Security Officer, where appropriate.

Participate in risk assessments for new technologies and projects.

Lead and direct secure configuration management processes.

Maintain up-to-date detailed knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.

Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.

Perform the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically.

Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices).

Maintain operational configurations of all in-place security solutions as per the established baselines.

Monitor all in-place security solutions for efficient and appropriate operations.

Review logs and reports of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise plans for appropriate resolution.

Participate in investigations into problematic activity.

Participate in the design and execution of vulnerability assessments, penetration tests, security, and compliance audits.

Provide on-call support for end users for all in-place security solutions and security or operational related events.

Knowledge, Skills & Abilities

Extensive knowledge of:  experience with Firewalls, SIEMs, EDRs, Threat Feeds. Security Frameworks (ISO27002, NIST Cybersecurity Framework).

Working knowledge of:  technical ZTNA security. Strong understanding of IP, TCP/IP, and other network administration protocols. Strong understanding of Computer and Network Operating Systems. Experience with cloud security architectures and solutions.


Ability to: effectively prioritize and execute tasks in a high-pressure environment. manage personnel functions for project team members. Good written, oral, and interpersonal communication skills. conduct research into IT security issues and products as required. Present ideas in business-friendly and user-friendly language. Highly self-motivated and directed. Keen attention to detail. Team-oriented and skilled in working within a collaborative environment.

Minimum Qualifications

Graduation from an accredited college or university with an bachelors degree in Computer Science or a related field, with at least three (3) years of experience in Security Architecture or Security Detection and Response;
OR 
Graduation from an accredited college or university with an associates degree in Computer Science or a related field, with at least five (5) years of experience in Security Architecture or Security Detection and Response;

Licenses or Certifications

Possession of a valid Driver's License

Preferred certifications/designation(s)
CISSP, CISA, CISM, or other relevant security related designation(s)


CLASS: 081210; EST: 1/10/2023; REV: 1/11/2023;