Cybersecurity Analyst III

Job Title: Cybersecurity Analyst III

Job Summary:

Cybersecurity Analyst III is a highly complex information security and cybersecurity analysis work position for the Texas State Guard (TXSG). The job involves coordinating and/or planning, implementing, analyzing, and monitoring security measures for information systems and infrastructure to regulate access to computer configuration and data files and to prevent unauthorized modification, destruction, or disclosure of information.

Key Responsibilities:

• Monitors and analyzes cybersecurity alerts from cybersecurity tools, network devices, and information systems.
• Investigates and responds to cybersecurity incidents, including malware infections, phishing attempts, and data breaches.
• Conducts root cause analysis and develops recommendations for mitigating future incidents.
• Performs regular vulnerability assessments and penetration testing on TXSG networks, systems, and applications.
• Collaborates with TMD IT teams to remediate identified vulnerabilities and ensure compliance with security policies and standards.
• Develops and recommends plans to safeguard computer configurations and data files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
• Responsible for development and maintenance of the state information security and cybersecurity program.
• Develops, reviews, and updates security policies, procedures, and guidelines to align with best practices and regulatory requirements.
• Ensures compliance with state and federal cybersecurity regulations and standards, including NIST (National Institute of Standards and Technology), ISO Cyber Security ISO Standards), and GDPR (General Data Protection Regulation).
• Conducts security awareness training sessions for TXSG employees to promote a security culture.
• Develops and manages information security and risk management awareness and training programs.
• Develops and distributes educational materials on cybersecurity best practices and emerging threats.
• Perform risk assessments to identify and prioritize potential security risks to state information systems.
• Designs, automates, manages, and deploys security applications and infrastructure program activities for TXSG.
• Develops and implements risk mitigation strategies to protect critical assets and data within the TXSG.
• Works closely with other cybersecurity analysts, IT teams, and external partners to coordinate security efforts.
• Ensures and fulfills all required information security and cybersecurity requirements and related reporting.
• Prepares detailed reports on security incidents, vulnerabilities, and compliance status for management and stakeholders.
• Participates in on-call rotations and responds to security incidents outside regular business hours when necessary.
• Attends work regularly and observes approved work hours in accordance with agency state employee policies & procedures handbook.

Requirements:

• Graduation from an accredited four-year college or university is required (substitution allowed)
• Four years of experience in information security analysis, cybersecurity analysis, or IT security administration and operations work is required.
• Experience using Microsoft Office (such as Outlook, Word, or Excel) is required
• Proficiency in scripting languages (e.g., Python, PowerShell) is a preferred.
• Experience in cybersecurity with a focus on incident response, vulnerability management, and risk assessment is preferred.
• Experience with security tools and technologies, including SIEM, firewalls, intrusion detection/prevention systems, and endpoint protection solutions is preferred.
• Experience working with all levels of personnel including executives is preferred.
• One or more of the following certifications is preferred: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Systems Manager (CISM), Information Systems Security Management Professional (ISSMP), Certified Chief Information Security Officer (CCISO), Certified Ethical Hacker (CEH)

Additional Requirements:

• Applicants who are not currently members of the TXSG must be able to meet the requirements to join the TXSG and must join within 6 months of hire date.
• Must be able to obtain a Common Access Card (CAC).
• Selected candidates must pass a federal security background investigation.
• The process includes a National Agency Check and Inquiry (NACI) and fingerprinting.
• New employees must complete and sign the Office of Personnel Management (OPM) Form SF85.

Knowledge, Skills, and Abilities:

• Knowledge of local, state, and federal laws and regulations relevant to information security, privacy, and computer crime.
• Knowledge of information security practices, procedures, and regulations.
• Knowledge of troubleshooting and problem-solving techniques related to the cybersecurity of computer or mobile hardware, software, applications, and databases.
• Knowledge of disaster recovery and business continuity concepts.
• Skill in analysis and problem-solving.
• Skill in communication and interpersonal relationships.
• Skill in the use of computers and applicable software.
• Skill in configuring, deploying, monitoring, and automating security applications and infrastructure.
• Skill in scripting languages (e.g., Python, PowerShell).
• Ability to work in a military environment.
• Ability to communicate clearly and effectively, both verbally and in writing, including writing management reports and making public presentations.
• Ability to manage business function, division, or department activities.
• Ability to establish goals and objectives.
• Ability to devise solutions to administrative problems.
• Ability to work independently and as part of a team.
• Ability to develop and evaluate administrative policies and procedures.
• Ability to follow and apply instructions for the implementation and configuration of packaged 'off-the-shelf' applications.
• Ability to analyze moderately complex systems and procedures.
• Ability to resolve help desk requests.
• Ability to respond timely to support requests.
• Ability to write and revise standards and procedures.
• Ability to conceptualize and communicate ideas advancing service member IT self-service.
• Ability to diagram a process for automating a manual activity.
• Ability to learn new information and security technologies.
• Ability to balance routine duties with unexpected interruptions or support requests.
• Ability to prepare reports.
• Ability to supervise the work of others.

Physical/Working Conditions:

Work may be performed inside in an office setting or outside at project or work sites. Work may involve sitting, standing, walking, stooping, kneeling, climbing or crawling. Occasionally work may be performed in inclement weather and/or may require protective equipment. This position requires up to 25% travel to subordinate TXSG unit locations. Work requires extensive use of a personal computer and telephone. This position may periodically require the ability to lift, carry, move, and/or set up equipment and materials that weigh up to 50 pounds.

Military Employment Preference:

If you qualify for a Military Employment Preference, it is mandatory that you provide the required documentation at the time of applying. Documentation must be provided before a Military Employment Preference can be granted.

Veterans:

Use your military skills to qualify for this position or other jobs. Go to https://www.opm.gov/policy-data-oversight/veterans-reemployment-right-tax-act/ to translate your military work experience and training courses into civilian job terms, qualifications, and skill sets.

Veterans, Reservist or Guardsmen with an MOS or additional duties that fall in the following fields or other related fields pertaining to the minimum experience requirements may meet the minimum qualifications for this position and are highly encouraged to apply:

• United States Army: 17C Cyber Operations Specialist
• United States Navy: 183X RL - Intelligence Officer
• United States Coast Guard: CYB10 Cyber
• United States Marine Corps: 0631 Network Administrator
• United States Air Force: 1B4X1 Cyber Warfare Operations

Contact TMD's Veteran's Liaison, Paul Love if you have questions at (512) or The Texas Military Department does not discriminate on the basis of race, color, national origin, sex, religion, age, genetic information, or status as an individual with a disability or protected veteran status in employment or in the provision of services.