Senior IT Security Analyst; DOH​/ITSD

Posting Details

Interviews are anticipated within two (2) weeks of closing date.

$35.37 - $53.05 Hourly

$73,568 - $110,352 Annually

This position is a Pay Band C10

The purpose of this position is to ensure the confidentiality, integrity, and availability of NMDOH information systems, technology assets, and to protect systems from intentional or inadvertent access or destruction while adhering to cybersecurity best practices and frameworks and ensuring the agency meets all related regulatory requirements, such as HIPAA and NIST 800-53/NIST CSF. This position also performs critical duties for risk management, vulnerability management, threat assessment, threat hunting, incident mitigation and response, and is a core member of the Incident Response Team.

Key responsibilities include:

• Endpoint Detection and Response (EDR) solution management: this position is the primary admin for our EDR solution, and is directly responsible for tuning and monitoring, alert response, and documentation as it pertains to this solution.
• Security Event and Information Management (SIEM) solution management: this position is the primary admin for our SIEM solution, and is directly responsible for tuning and monitoring, alert response, ensure proper log ingestion from all applicable sources, and documentation as it pertains to this solution.
• Automated Security Validation platform management: this position is the primary admin for our Automated Security Validation platform, and is directly responsible for the management, scheduling, and review of Security Validation testing results, as well as proper application of suggested tuning in our EDR and communication of suggested tuning to the ITSD Firewall Admin.
• Anti-Ransomware and Cyber Resilience platform management: this position is the primary admin for our Anti-Ransomware and Cyber Resilience solution, and is directly responsible for the management and monitoring of the solution, and also serves as a point-of-contact for the solution's Ransomware Operations Center (ROC).
• Incident Response Team (IRT) member: this position is the primary Security Officer for the NMDOH IRT, reporting directly to the Deputy CISO and CISO, leads and documents incident response efforts, and also organizes and schedules required tabletop exercises for the agency.

This position supports all of the New Mexico Department of Health.

The ideal candidate will have prior experience managing Endpoint Detection and Response systems and Security Event and Incident Management systems, such as Crowdstrike, as well as prior experience managing Automated Security Validation tools, such as Picus. Additional experience with tabletop exercises, vulnerability management, threat hunting, incident response, and security documentation is desired, as well.

Bachelor's degree in Computer Science, Management Information Systems (MIS), Information Technology, Engineering, or similar technical degree and three (3) years of experience in IT security or compliance validation (e.g., HIPAA, PCI). Any combination of education from an accredited college or university in a related field and/or direct experience in this occupation totaling seven (7) years may substitute for the required education and experience.

A certificate in IT security/forensics (e.g., CISSP, CEH, CCFP, CCSP, HCISPP, SSCP) or regulated compliance (e.g., PCIP, ASV, ISA, QSA) can be used to substitute one (1) year of experience.

Must possess and maintain a valid Driver's License.

Office setting with exposure to Visual/Video Display Terminal (VDT) and extensive personal computer usage.