Cybersecurity Operations Analyst (Infrastructure Specialist Associate
Description:
What You'll Do: The Office of Management Information Systems (OMIS) administers the computer-based management systems across the ODH enterprise. The office is responsible for maintaining ODH computer networks and servers and for the development and implementation of strategies that support the current and future technology needs of the agency. We are seeking a Cybersecurity Operations Analyst (Infrastructure Specialist Associate) to work under direct supervision in order to become proficient, receive training on and assist higher-level Infrastructure Specialists with installation, monitoring/maintenance, configuration, upgrading, and/or administration/operation of a single assigned technology domain.
This position will:
Assist higher level security staff with security operations
Monitor enterprise security tools such as Security Information and Event Management platforms, endpoint detection systems, and vulnerability management solutions
Research security events by gathering additional context from logs, threat intelligence sources, and internal systems
Review and triage security alerts to identify potential threats, suspicious behavior, or policy violations
Assist with proactive security activities including vulnerability scanning, patch tracking, and security health reporting
Assist with identifying and tracking application vulnerabilities by reviewing scanning results, dependency reports, and secure coding findings
Collaborate with development teams to support remediation efforts, including verifying fixes, rescanning applications, and ensuring secure coding practices are followed
Collaborate with IT teams to support broader security initiatives
Develop and maintain ad-hoc utilities or reports to automate processes At the State of Ohio, we take care of the team that cares for Ohioans. We provide a variety of quality, competitive benefits to eligible full-time and part-time employees*. For a list of all the State of Ohio Benefits, visit our Total Rewards website ! Our benefits package includes:
Medical Coverage
Free Dental, Vision and Basic Life Insurance premiums after completion of eligibility period
Paid time off, including vacation, personal, sick leave and 11 paid holidays per year
Childbirth, Adoption, and Foster Care leave
Education and Development Opportunities (Employee Development Funds, Public Service Loan Forgiveness, and more)
Public Retirement Systems ( such as OPERS, STRS, SERS, and HPRS ) & Optional Deferred Compensation ( Ohio Deferred Compensation ) *Benefits eligibility is dependent on a number of factors. The Agency Contact listed above will be able to provide specific benefits information for this position.
Qualifications
18 months combined work exp. &/or trg. In any combination of the following: installing, monitoring/maintaining, configuring, upgrading, &/or administering/operating a single technology domain.
-Or successful completion of IT Apprenticeship program at designated agency.
-Or completion of associate core program in computer science or information systems.
Note: the official position description on file with the designated agency is to reflect, in the minimum acceptable characteristics, the required technology related experience. Only those applicants possessing the required technology related experience listed in the position description are to be considered for any vacancies posted. The vacancy/job posting should also only list the required technology related experience commensurate with the position in question.
Applications of those who meet the minimum qualifications will be further evaluated against the following criteria:
Undergraduate or advanced degree in Computer Science or Information Systems
Experience with security event response (review and triage security events, respond to appropriate parties, assist with remediation and documentation efforts)
Experience with Vulnerability Management Tools (e.g. Qualys)
Experience with cybersecurity platforms for endpoint detection, threat intelligence, and incident response (e.g., Crowdstrike)
Experience with Security Information and Event Management (SIEM) platform (e.g. Google SecOps+)
Experience with DevOps tools (e.g., Azure DevOps, GitHub)
Experience with static code scanning tools (e.g., Checkmarx, CXone)
Experience collaborating with IT teams to support vulnerability remediation efforts (e.g., tracking vulnerabilities, support basic risk assessment activities by gathering information, reviewing scan results, and confirming vulnerability details)
A ll eligible applications shall be reviewed considering the following criteria: qualifications, experience, education, and active disciplinary record.
Job Skills: Information Technology
Technical Skills: Cybersecurity, Risk Management
Professional Skills: Collaboration, Critical Thinking, Problem Solving