Information Security Officer 2
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
The State of West Virginia Office of Technology seeks an Information Security Officer 2 to provide advanced cybersecurity services, serving as a Tier 3 SOC Analyst. The role involves expert-level incident response, threat hunting, firewall management, and policy development.
Key Skills for This Role
Responsibilities
- Provide advanced cybersecurity services to West Virginia agencies supported by the WVOT and assist leadership with high level security documentation
- Serve as the Tier 3 SOC Analyst, top escalation point for complex security incidents and challenges
- Conduct expert level investigations and manage critical security incidents across a wide variety of platforms
- Proactively identify and neutralize sophisticated threats, including those related to AI systems, machine learning models, and complex data pipelines
- Utilize cyber defense tools to monitor network traffic, perform advanced security alert processing, and ensure systems are functioning with the highest level of security
- Actively utilize Endpoint Detection and Response (EDR) solutions to conduct expert level threat hunting, respond to critical alerts, and lead forensic analysis efforts
- Design, administer, and maintain Next Generation Firewalls (NGFWs), including developing and enforcing firewall change policies
- Develop, implement, and maintain enterprise wide information security policies, standards, and controls
- Define, establish, and enforce resource ownership responsibilities, such as data classification, account management, access controls, and other internal controls
- Use defensive measures and information collected from a variety of sources to proactively identify, analyze, and report on events that may occur within the network
- Maintain meticulous, detailed documentation within all relevant systems
- Engage in continuous professional development and actively seek specialized training
Requirements
- Bachelor's Degree from a regionally accredited four year college or university (substitution: up to two years experience may substitute for training on a year for year basis)
- Eight years of full time or equivalent part time paid experience in computer science, information security, software engineering, information technology auditing, network administration, or other related information technology field
- A valid driver’s license OR State issued ID and dependable transportation are required
- CISSP, CISA, or CISM certification preferred
Full Job Posting
Nature of Work
- Position Title: Information Security Officer 2
- We welcome you to join our WV Office of Technology team where we value work/life balance.
- We offer a great benefits package that includes paid holidays, insurance and flexible benefits, and ample annual and sick leave accrual.
- Various training opportunities are provided for our employees.
- The location of this position will be in Kanawha county.
- Requirements include a valid driver’s license or State issued ID and dependable transportation.
- Regular attendance is an essential part of this position.
Job Duties
- This role provides advanced cybersecurity services to West Virginia agencies supported by the WVOT and assists leadership with high level security documentation.
- The Tier 3 SOC Analyst performs highly technical work in the Cyber Security Office, serving as the top escalation point for complex security incidents and challenges.
- The analyst conducts expert level investigations and manages critical security incidents across a wide variety of platforms.
- A particular focus of this role is proactively identifying and neutralizing sophisticated threats, including those related to AI systems, machine learning models, and complex data pipelines.
- The position requires the use of a variety of cyber defense tools to monitor network traffic, perform advanced security alert processing, and ensure systems are functioning with the highest level of security.
- The analyst will actively utilize Endpoint Detection and Response (EDR) solutions to conduct expert level threat hunting, respond to critical alerts, and lead forensic analysis efforts.
- Additionally, this role is responsible for the design, administration, and maintenance of Next Generation Firewalls (NGFWs), including the critical duty of developing and enforcing firewall change policies.
- The analyst will perform highly technical work in developing, implementing, and maintaining enterprise wide information security policies, standards, and controls.
- This includes defining, establishing, and enforcing resource ownership responsibilities, such as data classification, account management, access controls, and other internal controls.
- The analyst uses defensive measures and information collected from a variety of sources to proactively identify, analyze, and report on events that may occur within the network.
- This also includes maintaining meticulous, detailed documentation within all relevant systems to ensure leadership and other team members have a consistent record of investigations, actions taken, and the context of all security events.
- The employee is expected to engage in continuous professional development and actively seek specialized training to improve their technical aptitude across all managed systems to keep pace with evolving cyber threats and technologies.
Minimum Qualifications
- Desired Qualifications:
- Training: Bachelor's Degree from a regionally accredited four year college or university.
- Substitution: Up to two years experience as described below may substitute for the required training on a year for year basis.
- Experience: Eight years of full time or equivalent part time paid experience in computer science, information security, software engineering, information technology auditing, network administration, or other related information technology field.
- Substitution: Master's Degree may substitute for two years of experience.
- Each professional information security certification (CISSP, CISA, CISM) may substitute for one year of work experience.
- Each technical or specialist certification (SSCP, Network+, etc.) may substitute for six months of work experience.
- Successful completion of 24 semester credits or 384 hours of information security training may substitute for one year of experience.
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at State of West Virginia
Facilities/Equipment Maintenance Technician
West Union, QAT
The State of West Virginia is hiring a Facilities/Equipment Maintenance Technician to perform journey-level maintenance and repair of heating, cooling, and general building equipment. Requires four years of experience in
Environmental Resources Program Manager 1
Fayetteville, UAE
The West Virginia Department of Environmental Protection is hiring an Environmental Resources Program Manager 1 to supervise a staff in the Division of Mining and Reclamation's Hydrologic Protection Unit. The role involv
Building and Grounds Manager
Welch, KSA
The State of West Virginia is seeking a Building and Grounds Manager to analyze building and ground requirements, recommend improvements, and coordinate repair and upkeep of division property through contracted construct