Job Description
We are seeking a highly skilled and dedicated Senior Information Security Analyst to join our team at the Illinois Department of Central Management Services. In this pivotal role, you will be responsible for safeguarding the state's sensitive data and critical infrastructure against cyber threats. You will work in a collaborative environment to implement robust security protocols, manage risk assessments, and ensure compliance with federal and state regulations. If you are passionate about public service and cybersecurity excellence, we encourage you to apply.
Why Join Us?
- Impactful Work: Protect critical state systems and citizen data.
- Competitive Benefits: Comprehensive health insurance, pension plan, and generous paid time off.
- Professional Growth: Access to continuous learning opportunities and career advancement within state government.
Join us in building a secure and resilient future for the State of Illinois.
Responsibilities
- Conduct comprehensive vulnerability assessments and penetration testing on state networks and applications.
- Monitor security alerts and incidents, responding swiftly to mitigate threats and prevent breaches.
- Develop and enforce security policies, standards, and procedures to ensure compliance with federal laws (e.g., HIPAA, FISMA).
- Collaborate with IT teams to design and implement security solutions, including firewalls, encryption, and access controls.
- Conduct security awareness training for state employees to reduce human error and phishing risks.
- Perform regular audits and risk analysis to identify potential security weaknesses in infrastructure.
Qualifications
- Bachelor’s degree in Computer Science, Information Security, or a related field; or equivalent military/technical experience.
- Minimum of 5 years of experience in information security, risk management, or cybersecurity.
- Certification such as CISSP, CEH, CISM, or CompTIA Security+ is strongly preferred.
- Experience with SIEM tools (e.g., Splunk, QRadar) and incident response procedures.
- Strong understanding of network security concepts, operating systems (Windows/Linux), and virtualization technologies.
- Ability to obtain a Public Trust security clearance.