State of Tennessee
Job Brief
We have a vacancy of Information Security Analyst-Sr – 09292022-37860 in our company, State of Tennessee. This vacancy is based in Nashville TN 37243. Please go through the job detail mentioned below.
Position Title: Information Security Analyst-Sr – 09292022-37860
Company: State of Tennessee
Work Type: Full Time
City of work: Nashville TN 37243
Salary: $59,676 – $95,460 a year
URL Expiry: 2022-12-08
Posted on: jobsintelecom.net
Job Detail
Job Information
LOCATION OF (1) POSITION(S) TO BE FILLED: DEPARTMENT OF FINANCE AND ADMINISTRATION, BUSINESS SOLUTIONS DELIVERY DIVISION, DAVIDSON COUNTY
This position requires CJIS fingerprints. This position requires a criminal background check. Therefore, you be required to provide information about your criminal history in order to be considered for this position.
This position is designed as hybrid.
Minimum Qualifications
Other Requirements
Examination Method: Education and Experience, 100%, for Preferred Service Positions. For Executive Service positions Minimum Qualifications, Necessary Special Qualifications and Examination Method are determined by the appointing authority.
Job Overview
Work Activities
- Identify security breaches.
- Identify and analyzes areas of potential risk to assets, resources or success of organization.
- Perform correlation analysis to identify trends and weaknesses in automated systems.
Making Decisions and Solving Problems:
- Triage security events.
- Determine escalations for security events.
Evaluating Information to Determine Compliance with Standards:
- Creates or implements security standards, policies and procedures.
- Plans, directs, or coordinates security activities to safeguard company assets, employees, guests and others.
- Evaluate security operations to identify risk or opportunities for improvement.
- Reviews violations of computer security procedures and discusses procedures with violators to ensure violation is not repeated.
- Performs risk assessments and execute tests of data processing system to ensure functioning of data processing activities and security measures.
- Confer with users to discuss issues such as computers data access needs security violations, and programming changes.
- Conduct physical examinations of property to ensure compliance with security, policies and regulations.
- Review security policies, programs to procedures to ensure compliance with internal security policies, licensing requirements, or applicable government security requirements, policies and directives.
- Inspect security design features or programs to ensure compliance with applicable standards or regulations.
Monitor Processes, Materials, or Surroundings:
- Monitors systems to ensure current updates and patch levels are applied.
- Monitor the design, construction, and startup phases of security systems and security within systems.
- Monitors audit reports, helpdesk logs, vulnerability reports and security breach reports to determine weaknesses, identify improvements in processes and changes to security policy.
- Monitors use of data files and regulate access to safeguard information in computer resources.
- Conducts support, or assists in governmental reviews and internal evaluations of the overall effectiveness of security processes.
- Monitor internal applications and processes to identify potential issues.
Analyzing Data or Information:
- Investigate security breaches.
- Analyzes security breaches and arrange for professional forensic investigative services as necessary.
- Establish requirements for Database Administrators for database security.
- Analyze regulatory documentation for security requirements.
- Analyze contracts, grants, memorandum of understanding to determine and compliance with security requirements.
- Analyze security operations to identify risk or opportunities for improvement.
- Utilize forensic techniques to analyze security events.
Interacting With Computers:
- Defines requirements for firewall access controls to prevent unauthorized access, disclosure and maintain data integrity.
- Advises, implement and maintain security systems.
- Analyzes and investigate output from intruder detection or other security systems.
- Encrypt data at rest to conceal confidential information.
- Encrypt data transmission to conceal confidential information as it is being transmitted and keep out tainted digital transfers.
Developing Objectives and Strategies:
- Develop plans to safeguard computer files against accidental or unauthorized modification, destruction, and disclosure.
- Develop plans to meet emergency data processing needs.
- Develops or reviews specifications for design or construction or implementation of security in systems.
- Plans and contributes to development of risk management systems.
Thinking Creatively:
- Mitigate situations that might lead to security breaches.
- Develops or implements risk-assessment models or methodologies.
- Recommend ways to conduct assessments to reduce risk.
- Identify key risks and mitigating factors of potential investments, such as asset types and values, legal and ownership structures, professional reputations, customer bases or industry segments.
Documenting/Recording Information:
- Prepares, maintains, or updates security procedures, security system drawings, or related documentation.
- Documents and ensures communication of key risks.
- Maintain input or data quality of systems.
- Keeps records and prepare reports detailing finding, investigative methods and techniques from forensic analysis.
Updating and Using Relevant Knowledge:
- Design security policies, programs, or practices to ensure adequate security relating to issues such as protecting assets.
- Recommend improvements in security systems or procedures.
Communicating with Supervisors, Peers, or Subordinates:
- Communicate security status, updates, and actual or potential problems to executive staff and management.
Training and Teaching Others:
- Trains users and promotes security awareness to ensure systems security and to improve server and network efficiency.
- Establish an internal training program to educate users on their responsibilities and use of state resources.
- Evaluates and modifies training materials to address security weaknesses and vulnerabilities.
- Train new personnel or others on forensic science techniques.
Getting Information:
- Reviews and analyzes audit reports to identify risk and weaknesses in security.
- Collects and analyzes security data to determine security needs, security programs goals, or program accomplishments.
- Gather risk-related data from internal or external resources.
- Utilize communication channels such as, email and messaging.
- Utilizes helpdesk automated systems.
Communicating with Persons outside Organization:
- Notify customers of potential security threats.
- Identifies and conveys security requirements to contractors and service providers.
- Notify customers of security changes that affect their access.
- Advise businesses or agencies on ways to improve fraud detection.
Coordinating the Work and Activities of Others:
- Coordinate implementations of computer system plans with establishment personnel and outside vendors.
- Oversee security personnel for projects and directions.
- Supervise subordinate security professionals, performing activities such as hiring, training, assigning work, evaluating performance, or disciplining.
Organizing, Planning, and Prioritizing Work:
- Establishes priorities based on risk and return on investment.
Interpreting the Meaning of Information for Others:
- Produce reports or presentations that outline findings, explain risk positions, or recommend changes.
Developing and Building Teams:
- Establishes and maintain a security team in support of security initiatives.
Judging the Qualities of Things, Services, or People:
- Evaluate the knowledge and responsiveness of contractors to accomplish organizational outcomes.
Monitoring and Controlling Resources:
- Review expenditures to evaluate the return on investment.
Establishing and Maintaining Interpersonal Relationships:
- Establishes and maintains contact with peers.
Processing Information:
- Conduct security audits to identify potential problems related to physical security or asset protection and to satisfy state and federal regulations.
- Collect digital evidence, storing it in conditions that preserve its integrity.
Selling or Influencing Others:
- Convey the importance of security recommendations, procedures, policies and level of risk to protect state resources.
Resolving Conflicts and Negotiating with Others:
- Participates and assists in the complaint review and resolution process.
Competencies (KSA’S)
- Process Management
- Decision Quality
- Total Work Systems
- Technical Learning
- Learning on the Fly
- Informing
- Standing Alone
- Business Acumen
- Timely Decision Making
- Customer Focus
- Dealing with Ambiguity
- Strategic Agility
Knowledge:
- Computer Operating Systems
- Advanced Knowledge of Defense in Depth
- Advanced Knowledge of Security Best Practices
- Policy and Standards
- Regulatory and Statutory Requirements
- Advanced Knowledge Engineering and Technology
- Telecommunications
- Clerical
- Administration and Management
- Communication and Media
- Advanced Knowledge of Computers and Electronics
- Customer and Personal Services
- Design of Security Solutions
- Economics and Accounting
- Education and Training
- Law and Government
- Personnel and Human Resources
- Advanced Knowledge of Public Safety and Security
- Sales and Marketing
Skills:
- Advanced Service Orientation
- Advanced Social Perceptiveness
- Complex Problem Solving
- Equipment Maintenance
- Equipment Selection
- Installation of Security Equipment or Software
- Operation and Control
- Operation Monitoring
- Advanced Operations Analysis
- Programming
- Quality Control Analysis
- Advanced Technology Design
- Advanced Troubleshooting
- Judgment and Decision Making
- Advanced Systems Analysis
- Advanced Systems Evaluation
- Time Management
- Management of Personnel Resources
- Management of Material Resources
- Management of Financial Resources
- Active Learning
- Active Listening
- Critical Thinking
- Learning Strategies
- Mathematics
- Monitoring
- Reading Comprehension
- Science
- Speaking
- Writing
- Advanced Coordination
- Instructing
- Negotiation
- Persuasion
Abilities:
- Category Flexibility
- Deductive Reasoning
- Flexibility of Closure
- Fluency of Ideas
- Inductive Reasoning
- Information Ordering
- Mathematical Reasoning
- Memorization
- Number Facility
- Oral Expression
- Originality
- Perceptual Speed
- Problem Sensitivity
- Selective Attention
- Speed of Closure
- Time Sharing
- Visualization
- Written Comprehension
- Written Expression
- Stress Tolerance
Tools and Equipment Used
- Computer
Apply Now
To help us track our recruitment effort, please indicate in your cover/motivation letter where (jobsintelecom.net) you saw this job posting.

