This is a re-advertisement. Previous candidates must re-apply to be considered.
The Department of Alcoholic and Beverage Control Information Security Division seeks a Senior Information Security Analyst to ensure that a consistent, dependable, and high level of technical security is maintained and the agency’s data and information systems are adequately protected. This position protects agency systems by monitoring for incidents and misuse, designing and documenting controls to protect those systems, and implementing controls or directing their implementation.
Monitoring functions include regular review of web proxy logs, intrusion detection systems, web application firewalls, vulnerability scan results, building badge access, system access logs, and other sources of security intelligence. Control implementation will require technical knowledge as well as project management techniques to ensure vendors implement properly. This includes firewall rule development, patching, system hardening, developing log correlation searches, writing IDS rules, or developing other processes to protect agency systems and data.
Primary job functions include monitoring sources of security intelligence for actionable information, developing controls for improvement, and documenting for later implementation. For example, review vulnerability scan results, prioritize patch methodology for ideal remediation, and document instructions for operations to implement.
Secondary functions include assisting the Information Security Officer (ISO) in identifying security goals, objectives, enforcing agency security policies and standards. Will provide technical guidance regarding information security matters, security assessments, analysis, security laws, policies, rules, and regulations. Position also serves as backup point of contact for ABC Security Incident reporting and works with Internal Audit to assist with information security assessments, and maintain constituent relationships required to ensure sound IT Security.
Selected candidate must have subject matter expertise in the areas of Linux, Windows, and Active Directory security configuration and design, standards-based authorization mechanisms, monitoring/alerting, intrusion detection, disaster recovery, and broad experience of information technology including networking protocols, encryption, firewalls, vulnerability management, incident response, wireless network security, and telecommunication services.
Experience with security operations, threat analysis, monitoring systems, configuring SIEM, or IDS preferred. Incident Response, penetration testing, or forensics training or experience is a plus.
For consideration for employment you must complete an online application@ www.abc.virginia.gov resumes may accompany but will not substitute for a completed State Application Form. Your completed online application MUST BE RECEIVED by Human Resources no later than 11:59 p.m. on the stated closing date. Criminal history record checks are required prior to employment.
The Virginia Department of Alcoholic Beverage Control does not provide sponsorship. We are an equal opportunity employer without regard to sex, race, color, religion, national origin, age, sexual orientation, political affiliation, veteran status or disability. AmeriCorps, Peace Corps, and other national service alumni are encouraged to apply. ABC will provide, if requested, reasonable accommodation to applicants in need of accommodation in order to provide access to the application and/or interview process. The selected candidate must pass a criminal background check.