Information Security Analyst-Senior
Listed on 2026-07-14
-
IT/Tech
Cybersecurity, Information Security, IT Consultant, Data Security
Job Information
Opening Date/Time: 07/07/2026 12:00AM Central Time
Closing Date/Time: 07/20/2026 11:59PM Central Time
Salary (Monthly): $6,544.00 - $8,454.00
Salary (Annually): $78,528.00 - $
Job Type: Full-Time
Location:
Nashville, TN
Department:
Finance and Administration
Department of Finance & Administration, Davidson County
Does not sponsor work visas.
This position is designed as Hybrid.
This position requires a criminal background check and CJIS Fingerprints. Therefore, you may be required to provide information about your criminal history to be considered for this position.
QualificationsEducation and Experience: Bachelor's degree and five years of experience in information security, risk management, or policy implementation.
Substitution of Graduate Coursework: Graduate coursework in information security may substitute for one year of experience.
Substitution of Experience for
Education:
Experience in cybersecurity or incident response may substitute for education up to four years.
Alternate
Qualification:
Three years as an Information Security Analyst - Junior or CISSP certification also qualifies.
The Information Security Analyst Sr. serves as a key member of the Tennessee Department of Health's information security team, responsible for protecting critical systems, networks, and data assets. This position provides advanced expertise in security monitoring, incident response, risk assessment, vendor management and compliance with regulatory and organizational standards. The analyst collaborates across the various areas of Health to design, implement, and maintain robust information security controls and initiatives that support the organization’s strategic and operational goals.
ResponsibilitiesKey Responsibilities
- Lead efforts to identify, analyze, and mitigate cybersecurity threats and vulnerabilities across systems.
- Monitor, investigate, and respond to security incidents by working closely with Enterprise security teams.
- Analyze data from tools such as SIEM, EDR, IDS/IPS, and vulnerability management platforms.
- Conduct regular risk assessments, penetration tests analysis, and security audits to ensure compliance with industry standards (e.g., NIST, ISO 27001).
- Develop and maintain information security policies, procedures, and incident response plans.
- Provide guidance and mentorship to other analysts and IT staff on security best practices.
- Collaborate with IT, legal, and compliance teams to manage data protection and privacy initiatives.
- Evaluate new security technologies and recommend improvements to the organization's security posture.
- Prepare reports, dashboards, and metrics for management on security events, vulnerabilities, and compliance status.
- Conduct audit of security related areas and work closely with audit teams
- Strategic Mindset
- Customer Focus
- Decision Quality
- Optimizes Work Processes
- Strategic Mindset
- Advanced cybersecurity best practices
- Regulatory and compliance frameworks
- Risk assessment methodologies
- Systems architecture and defense-in-depth
- Data privacy and protection strategies
- Risk and threat analysis
- Policy creation and enforcement
- Forensic investigation
- Team supervision and training
- Report preparation and presentation
- Manage high-priority security projects
- Advise on compliance strategy
- Lead cross-functional response teams
- Communicate complex security topics clearly
- Drive improvements in enterprise security posture
- Security Information and Event Management (SIEM)
- Compliance Management Tools
- Forensic Analysis Tools
- Vulnerability Scanners
- Microsoft Office Suite
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).