Cybersecurity Analyst I Jobs

As a Cybersecurity Analyst I at the Texas Department of Family and Protective Services (DFPS) be responsible for protecting the confidentiality, integrity, and availability of the Enterprise IT infrastructure in compliance with all applicable laws, security best practices, and internal policies. This position will play a crucial part in supporting our cybersecurity operations and assisting senior analysts in protecting our clients' critical information assets. You will have the opportunity to gain hands-on experience in various areas of cybersecurity, including vulnerability assessments, incident response, digital forensics, and threat intelligence.

The Cybersecurity Analyst will perform entry-level work that involves analyzing complex log data from various sources to pinpoint issues and guide them to resolution. This includes:

Monitoring information systems for alarms and conditions to prevent, detect, and manage cyber-attacks and other IT security incidents

Employing tools such as network discovery, penetration, and vulnerability assessment systems

Conducting an evaluation of the security measures in place

Monitoring application and database systems

Analyzing intrusion detection systems (IDS)

Reviewing log management systems and security information and event management (SIEM)

The Cybersecurity Analyst will assist the Cybersecurity Operations Manager with activities, including analyzing collected information and performing vulnerability testing on computer systems. The Cybersecurity Analyst is expected to work collaboratively with other team members from a positive, proactive, mission-first perspective.

The mission of DFPS is to protect children, the elderly, and people with disabilities from abuse, neglect, and exploitation by involving clients, families, and communities.

This position is classified as a full-time position (40 hours a week). This position is 100% telework within Texas and requires the candidate to maintain personal Wi-Fi and webcam capabilities during work hours to perform their duties. Work outside of regular hours may be required. Travel to other Austin offices(s) may be required. Works under limited supervision, with considerable latitude for initiative and independent judgment.

Essential Job Functions:

Assist with reviews, enforcement, or correcting violations of cybersecurity policies, procedures, standards, and guidelines to help prevent future occurrences.

Contribute to developing and enhancing cybersecurity documentation, procedures, and guidelines.

Aid in incident response activities, including containment, investigation, and recovery.

Participate in threat intelligence activities by monitoring and analyzing emerging threats and vulnerabilities.

Conduct routine security monitoring and analysis of security events and logs.

Assist in regulating access to computer files, reviews firewall logs, perform risk assessments, and test data processing systems to verify security measures.

Evaluates network and system security configuration for best practices and risk-based access controls.

Assist senior cybersecurity analysts with vulnerability scans of networks and applications to assess effectiveness and identify weaknesses.

Executes appropriate mitigation strategies for identified threats.

Actively participate in cybersecurity incident response activities.

Assist with responses to information security incidents and cyber investigations, including computer forensics, network forensics, root cause analysis, and malware analysis.

Participate in the maintenance of security tools and technologies.

Assist with security analysis of existing systems for compliance with security requirements.

Other duties as assigned.

Knowledge Skills Abilities:

Prior experience, boot camps, or internships in cybersecurity is a bonus.

Demonstrated initiative, drive, and a willingness to seek answers through participation in activities such as Capture the Flag (CTF), TryHackMe (THM), a portfolio of cybersecurity projects, or experience through a home lab.

This is a junior/entry-level role; however, the ideal candidate will have a basic understanding of the software and hardware involved in network infrastructures, such as (but not limited to) firewalls, routers, servers, operating systems, CLI navigation, and system configurations.

Conceptual knowledge and understanding of cybersecurity, system administration, cloud computing, and networking fundamentals. This knowledge may be demonstrated through a professional certification such as GSEC, CySA+, Security+, or SSCP.

Basic knowledge of at least one scripting language (Python, PowerShell, etc.).

Basic knowledge of incident response life cycle and steps.

Familiarity with common cybersecurity frameworks and standards (e.g., NIST CSF, NIST 800-53, CIS Critical Controls, FedRAMP, etc.).

Candidates must show a commitment to continuous learning and stay updated with cybersecurity trends.

Strong analytical and problem-solving skills with an attention to detail.

Excellent written and verbal communication skills with the ability to adapt messaging to executive, technical, and non-technical audiences.

Registration or Licensure Requirements:

Industry-recognized certification related to cybersecurity (SANS, ISACA, ISC², CompTIA, etc.) is a plus but not required. The ability to complete certification within one (1) year is required.

A clear criminal background check is required for this position.

Initial Selection Criteria:

Currently pursuing a bachelor’s degree or higher from an accredited college or university with major coursework in cybersecurity, information technology security, networking, computer engineering, computer information systems, computer science, management information systems, or a related field.

Demonstrated initiative through cybersecurity activities such as Capture the Flag (CTF), TryHackMe (THM), home labs, or other events.

Note: You must meet the minimum initial screening criteria to be considered. You should not apply if your submittal documents do not reflect experience meeting the initial screening criteria.

Additional Information:
Note: No military occupation(s) may relate to the initial selection criteria and registration or licensure requirements for this position. All active duty military, reservists, guardsmen, and veterans are encouraged to apply if qualified to fill this position. For more information, see the Texas State Auditor’s Military Crosswalk at http://www.hr.sao.state.tx.us/Compensation/JobDescriptions.aspx.

MOS Code:
17C, 25B, 26B, CYB12, ISM, ISS, 2653, 0670

As a state agency, DFPS is required Texas Administrative Code (TAC 206 and 213) to ensure all Electronic Information Resources (EIR) follow accessibility standards. The staff must be familiar with the WCAG 2.1 AA and Section 508 to create accessible content including but not limited to; Microsoft Office documents, Adobe PDFs, webpages, software, training guides, video, and audio files.

HHS agencies use E-Verify. You must bring your I-9 documentation with you on your first day of work.

In compliance with the Americans with Disabilities Act (ADA), HHS agencies will provide reasonable accommodation during the hiring and selection process for qualified individuals with a disability. If you need assistance completing the on-line application, contact the HHS Employee Service Center at 1-888-894-4747. If you are contacted for an interview and need accommodation to participate in the interview process, please notify the person scheduling the interview.