IT Security Analyst

Posting Details

The New Mexico Department of Public Safety (DPS) is looking for a proven cybersecurity professional to serve as a Security Administrator within our Cybersecurity and Compliance Bureau (CCB). The CCB is a key strategic bureau within DPS and the Information Technology Division (ITD).

DPS houses the New Mexico State Police (NMSP) and provides many services to the entire law enforcement community throughout New Mexico. DPS is the FBI designated Criminal Justice Information Services (CJIS) Systems Agency (CSA) for the State of New Mexico. As such, DPS is the exclusive entity in New Mexico that provides access to CJIS for all federal, state, local and tribal law enforcement agencies. The DPS ITD provides a portfolio of services to the entire law enforcement community in New Mexico in addition to being the key technology partner of NMSP and the other statewide law enforcement support divisions of DPS.

DPS has one of the most complex networks in the State of New Mexico consisting of over 50 physical offices including the DPS headquarters, the NM Law Enforcement Academy, three forensic labs, three 911 communications / dispatch centers, 12 NMSP district offices, and a significant number of permanent and transitory sub-stations in key locations throughout the state including the Governor's Mansion. In addition to these physical locations, the network consists of 650 NMSP patrol units, the NMSP helicopter and several mobile command centers. The network is accessed 24 hours per day, 7 days per week with no tolerance for downtime by DPS civilian staff, NMSP, and all federal, state, local and tribal law enforcement agencies (LEAs) to receive mission critical CJIS and to access many other systems. These systems are essential to law enforcement statewide.

The ITD Leadership Team is committed to helping everyone on our team grow professionally and personally through training, mentorship, and challenging work assignments. DPS ITD provides the time, resources and encouragement for its staff to participate in ongoing training and mentorship. We are looking for employees who want to grow their skills, develop as individuals, be reliable teammates and enjoy challenging work assignments. The significant number of our employees who have been promoted into higher positions is evidence of our success. ITD enjoys a close working relationship with the NMSP, law enforcement agencies across New Mexico and our federal partners such as the FBI and the Cybersecurity and Infrastructure Security Agency (CISA). ITD and its employees are valued by the leadership of DPS as an essential part of the public safety services in New Mexico. If you become a member of the DPS ITD family, you will quickly become integrated into the law enforcement community statewide.

Why does the job exist?

The IT Security Analyst position exists to provide skilled, hands-on support for the Department of Public Safety's enterprise cybersecurity operations. Operating within the Cybersecurity and Compliance Bureau (CCB) of the Information Technology Division (ITD), this role is essential to the daily protection, monitoring, and continual improvement of DPS's security posture.

As a mid-level cybersecurity professional, the Security Analyst serves as both an investigator and operator. The position strengthens the Bureau's ability to detect, analyze, and respond to threats; maintain compliance with frameworks such as CJIS, PCI DSS, and NIST; and ensure the reliability of the agency's cybersecurity tools and processes.

This position requires regular collaboration with system and business owners to coordinate vulnerability remediation, vendors to resolve product and tool issues, and external agencies to support CJIS compliance activities. The role demands strong communication, professionalism, and the ability to work effectively with individuals across technical and non-technical domains.

The ideal candidate has strong technical experience across modern security platforms, demonstrates sound judgment, and takes initiative to enhance tools and workflows. Though not a supervisory role, this analyst is expected to operate with maturity, independence, and collaboration, supporting the CISO and senior analyst while mentoring junior staff when needed.

How does it get done?

• Monitor, investigate, and respond to security alerts and incidents from the SIEM, EDR, and converged endpoint management systems; escalate and document findings as needed.
• Co-administer and optimize enterprise security tools SIEM, EDR, vulnerability management, and other core platforms to improve detection, response, and reporting accuracy.
• Work with system and business owners to verify vulnerabilities, track remediation progress, and ensure corrective actions are completed in a timely and compliant manner.
• Collaborate with vendors and product support teams to troubleshoot issues, validate tool performance, and recommend enhancements or configuration improvements.
• Engage with external agencies and CJIS partners to support audits, compliance validation, and cybersecurity readiness reviews.
• Support vulnerability and patch management efforts by validating scans, prioritizing remediation, and tracking corrective actions.
• Assist with compliance initiatives across CJIS, PCI DSS, and NIST SP 800-53, including gathering evidence, maintaining artifacts, and supporting audits or self-assessments.
• Participate in cybersecurity projects and operational improvement efforts, offering subject-matter input on tool configuration, process design, and workflow automation.
• Document procedures and incidents within established templates and repositories to strengthen institutional knowledge and audit readiness.
• Contribute to incident response activities, including triage, containment, eradication, and recovery, in coordination with the Security Incident Response Team (SIRT).
• Monitor industry threat intelligence and recommend adjustments to security controls, detection rules, or policies based on emerging risks.
• Provide technical expertise and communication to internal and external stakeholders, ensuring clear understanding of risks, recommendations, and mitigation actions.
• Foster teamwork and collaboration within the CCB and across the agency to maintain a unified, proactive cybersecurity posture.

Who are the customers?

DPS including NMSP and all Law Enforcement and criminal justice agencies within the state of New Mexico.

Ideal Candidate

DPS including NMSP and all Law Enforcement and criminal justice agencies within the state of New Mexico.

Minimum Qualification

Bachelor's degree in Computer Science, Management Information Systems (MIS), Information Technology, Engineering, or similar technical degree and two (2) years of experience in IT security or compliance validation (e.g., HIPAA, PCI). Any combination of education from an accredited college or university in a related field and/or direct experience in this occupation totaling six (6) years may substitute for the required education and experience. A certificate in IT security/forensics (e.g., CISSP, CEH, CCFP, CCSP, HCISPP, SSCP) or regulated compliance (e.g., PCIP, ASV, ISA, QSA) can be used to substitute one (1) year of experience.

Employment Requirements

Employment is subject to a pre-employment background investigation and fingerprinting in accordance with all terms and conditions of federal and state law, rules and regulations; and is conditional pending results. Continued employment is contingent upon remaining felony free, per Section of the Criminal Justice Information Systems Security Policy.

In addition, the selected candidate must possess and maintain a valid driver's license and obtain a Defensive Driving Certificate from the State of New Mexico.

Working Conditions

Office setting, exposure to Visual/Video Display terminal (VDTI and extensive personal computer and telephone usage with extended periods of sitting. Must be able to lift 25 lbs. Continuous Visual Acuity and verbal communication. Extensive personal computer usage. Occasional need to move computer equipment. Occasional travel.

Supplemental Information

Do you know what Total Compensation is? Click here

Agency Contact Information: Paul Herrera Email

For information on Statutory Requirements for this position, click the Classification Description link on the job advertisement.

Bargaining Unit Position

This position is not covered by a collective bargaining agreement.