Information Security Officer

Position Title: Information Security Officer 1

We welcome you to join our WV Office of Technology team where we value work/life balance. We offer a great benefits package that includes paid holidays, insurance and flexible benefits, and ample annual and sick leave accrual. Various training opportunities are provided for our employees.

Location: Kanawha County

• A valid driver’s license OR State issued  dependable transportation are required.
• IF APPLICABLE:
  Travel to various State Agencies to perform work and maintain accurate mileage records.
• Regular attendance is an essential part of this position.

This role provides cybersecurity services to West Virginia agencies supported by the WVOT and assists leadership with needed security documentation. The Tier 2 SOC Analyst performs technical work in the Cyber Security Office, serving as a primary escalation point for alerts and incidents from the Tier 1 team. The analyst conducts in-depth investigations and manages complex security incidents across a variety of platforms.

The focus of this role is identifying and mitigating threats relating to AI systems, machine learning models, and data pipelines.

The position requires using a variety of cyber defense tools to monitor network traffic, perform security alert processing, and ensure systems are functioning as they should. The analyst will actively utilize Endpoint Detection and Response (EDR) solutions to conduct advanced threat hunting, respond to alerts, and assist with forensic analysis. Additionally, this role is responsible for administering and maintaining Next-Generation Firewalls (NGFWs), including the critical duty of processing firewall change requests in accordance with established policies.

The analyst will perform technical work in developing, implementing, and maintaining information security policies, standards, and controls throughout the enterprise. This includes defining, establishing, and maintaining resource ownership responsibilities, such as data classification, account management, access controls, and other internal controls. The analyst uses defensive measures and information collected from a variety of sources to identify, analyze, and report on events that may occur within the network.

This also includes maintaining meticulous, detailed documentation within all relevant systems to ensure leadership and other team members have a consistent record of investigations, actions taken, and the context of all security events.

The employee is expected to engage in continuous professional development and actively seek training to improve their technical aptitude across all managed systems to keep pace with evolving cyber threats and technologies.

• Performs other duties as assigned.

* As a condition of employment, an inquiry into job-related information will be completed which may include, but not limited to, criminal records, abuse registry records, driving records, employment history, and education and training. Failing to cooperate with this process, providing false or incomplete information, and/or discovery of disqualifying information may result in denial of or dismissal from employment or denial of transfer irrespective of when discovered.

Training: Bachelor's Degree from a regionally accredited four-year college or university.

Substitution: Up to two years experience as described below may substitute for the required training on a year-for-year basis.

Experience: Six years of full-time or equivalent part-time paid experience in computer science, information security, software engineering, information technology auditing, network administration, or other related information technology field.

Substitution: