-
Job Announcement
-
Acts as an Information Security Analyst within the Information Security Office (ISO), supporting cybersecurity, privacy, and technology risk management across the enterprise. This role focuses on evaluating cyber threats, responding to security incidents, supporting agency inquiries, and contributing to the implementation, governance, and operation of countywide cybersecurity controls. The position directly supports the Policy & Compliance unit within ISO.
Responsibilities may include:
- Develops and maintains information security policies, standards, guidelines, and procedures to meet federal, state, and county regulatory requirements.
- Supports internal and external audits, assessments, and compliance reviews for security and privacy obligations.
- Manages data preservation and collection requests related to legal matters, Virginia Freedom of Information Act (VFOIA) requests, internal investigations, forensic activities, and other eDiscovery processes.
- Conducts security outreach, delivering awareness training, and assists agencies in interpreting county information security policies.
- Investigates cybersecurity incidents and responds to alerts from SIEM systems, vulnerability scans, endpoint tools, and penetration testing reports.
- Implements, administers, and supports security technologies such as endpoint protection, data loss prevention, intrusion detection/prevention systems, application firewalls, vulnerability management platforms, and forensic utilities used by the ISO.
- Coordinates daily with DIT divisions, agency information security coordinators, IT analysts, and external partners regarding cybersecurity and compliance matters.
- Serves as a technical and operational advisor on cybersecurity issues, compliance questions, and policy interpretation.
- Stays current with cybersecurity, privacy, and regulatory trends and pursuing relevant professional certifications.
- Supports emergency IT events and participating in county Emergency Operations Center activations as needed.
- Performs other duties as assigned.
Note: This is a hybrid position, 2 days at office, 3 days from remote, after initial 4-5 weeks at office.
-
Employment Standards
-
MINIMUM QUALIFICATIONS: Any combination of education, experience, and training equivalent to the following: (Click on the aforementioned link to learn how Fairfax County interprets equivalencies for "Any combination, experience, and training equivalent to")
Graduation from an accredited four-year college or university with a bachelor's degree in a computer or information science discipline, IT/cyber security, network or IT systems administration, engineering; or a bachelor's degree in a business or related field that has been supplemented by at least 18 credit hours of intermediate computer science coursework; plus one year of experience in information security systems, network security, or cyber security. NECESSARY SPECIAL REQUIREMENTS: The appointee to this position will be required to complete a criminal background check to the satisfaction of the employer.
PREFERRED QUALIFICATIONS:
- Experience implementing, assessing, or maintaining compliance with IT and privacy regulations or standards such as HIPAA, PCIDSS, CJIS, Virginia privacy requirements, federal PII protections, and institutional standards such as the NIST Cybersecurity Framework, NIST 80053/171, ISO 27000 series, OWASP, or SANS CIS Controls.
- Experience working with and understanding of security and network architecture, identity and access management, operating systems, cloud services, databases, and modern enterprise technologies.
- Experience with technologies including malware analysis tools, application and network firewalls, VPN solutions, DLP, identity management platforms, SIEM solutions, and intrusion detection/prevention systems.
- Demonstrated experience in policy development, security governance, audit support, and agency consulting.
- Experience applying strong analytical, communication, and collaboration skills in a cybersecurity, compliance, or technical consulting environment.
PHYSICAL REQUIREMENTS:
Work is generally sedentary, performed in a normal office environment. All duties performed with or without reasonable accommodations.
SELECTION PROCEDURE:
Panel interview and may include exercise.
Fairfax County is home to a highly diverse population, with a significant number of residents speaking languages other than English at home (including Spanish, Asian/Pacific Islander, Indo-European, and many others.) We encourage candidates who are bilingual in English and another language to apply for this opportunity.
Fairfax County Government prohibits discrimination on the basis of race, color, religion, national origin, sex, pregnancy, childbirth or related medical conditions, age, marital status, disability, sexual orientation, gender identity, genetics, political affiliation, or military status in the recruitment, selection, and hiring of its workforce.
Reasonable accommodations are available to persons with disabilities during application and/or interview processes per the Americans with Disabilities Act. TTY 703-222-7314. DHREmployment@fairfaxcounty.gov EEO/AA/TTY.
#LI-JY1
|