OAG - Child Support | Cybersecurity Analyst I|26-0276

Position Overview

Join the Office of the Attorney General as a Cybersecurity Analyst on the Enterprise Information Security Team. At the core of our mission is the commitment to champion liberty and justice for Texas while ensuring top-notch data security for the citizens of our state. In this role, you will support the design and evaluation of security applications and infrastructure, contribute to risk management programs, and help maintain compliance with security standards. Location: Texas-Austin, Schedule: Full-time, Salary: 5,833.34 - 6,666.67 (Monthly).

Key Responsibilities

• Safeguard Agency Data: Support development and maintenance of security strategies by assisting with the design and evaluation of security applications and infrastructure, and contributing to the creation and review of security policies and standards.
• Proactive Risk Management: Assist in gathering data for risk assessments, monitor systems for vulnerabilities, participate in incident detection and preliminary analysis, and contribute to business impact analysis activities.
• Maintain Data Security: Help monitor access controls, review security procedures, gather information for compliance checks, and document potential breaches in line with legal and regulatory standards.
• Drive Security Innovation: Assist in coordinating security awareness activities, distributing educational materials, and supporting training sessions to improve overall security posture.
• Perform cybersecurity incident detection, forensic analysis, and preventive measures on information systems and devices.
• Monitor and analyze cybersecurity alerts from tools and network devices to ensure prompt response to threats.
• Assist with contract reviews, system audits, and risk analyses as required, ensuring confidentiality of sensitive information and compliance with agency policies.

Required Qualifications

• Education: Graduation from high school or equivalent.
• Experience Required: Six years of full-time experience in information technology security, computer information systems, computer science, management information systems, systems analysis, business administration, project management or a related field. Credit hours from an accredited college or university may be substituted on a year-for-year basis.
• Experience with information security, cybersecurity, and privacy issues, including technical risk assessments and system reviews.
• Knowledge of fundamental information security concepts, vulnerability scanning, and security compliance standards.
• Skill in configuring, monitoring, and automating security applications and infrastructure using applicable software.
• Ability to handle multiple tasks, prioritize work, meet deadlines, and communicate effectively both orally and in writing.
• Ability to obtain and maintain approved baseline certification for the position (e.g., Security+), analyze data to devise solutions, and manage projects independently.
• Ability to work cooperatively in a professional environment, provide excellent customer service, and comply with FLSA requirements including the potential for overtime and travel (up to 5%).
• Physical ability to lift and relocate a minimum of 10 lbs.

Preferred Qualifications

• Experience working with security management tools (vulnerability scanners, file integrity monitoring, configuration monitoring, etc.) and perimeter technologies (routers, firewalls, web proxies, intrusion prevention systems, etc.).
• Experience reviewing third-party contracts for cybersecurity and information security compliance.
• Experience with IT GRC/IRM platforms such as ServiceNow, OneTrust, MetricStream, Galvanize, or RSA Archer.
• Experience conducting and managing audits and assessments, as well as creating security documentation and risk assessments.
• Strong skills in identifying program performance indicators and using computers and applicable software efficiently.
• In-depth knowledge of legal, privacy, and regulatory compliance standards such as HITRUST, HIPAA, ISO27001, SOC2, FedRAMP, PCI-DSS, GDPR, CCPA, IRS Safeguards Program, CJIS, and TAC202.
• Preferred Certifications: CISSP, CISM, CRISC, PMP, CAPM, CISA, Security+.
• Additional skills in project/program management and auditing/assessment practices.

Benefits & Perks

• OAG employees enjoy excellent benefits, including comprehensive health, retirement, and leave programs.
• Telework options are available in accordance with the agency’s approved Telework Plan, ensuring work-life flexibility.
• Opportunity to contribute to critical cybersecurity governance at a large, dynamic state agency dedicated to serving Texans.