1000000557.SENIOR CYBERSECURITY ANALYST.INFO TECH SERVICES

About the position Secures Dallas County's information systems and data. Combines enterprise-wide cyber threat detection, incident response, compliance monitoring, and security policy implementation. Supports the County's hybrid environment by integrating technical security operations with regulatory mandates, including CJIS, HIPAA, and NIST 800-53. Works closely with IT Security Engineering and Compliance teams to defend the Dallas County infrastructure from evolving threats while ensuring adherence to internal and external security requirements.Responds to and investigates escalated security tickets, requests, alerts, and events. Performs advanced triage, and coordinates with technical teams to ensure containment, and documents incident response activities. Supports daily operations of the County's security infrastructure, including SIEM, endpoint detection and response, and related tooling. Performs alert tuning, rule validation, and ensures reliable telemetry flow into security platforms. Conducts proactive threat hunting activities across SIEM, EDR, and available log sources. Analyzes behavioral patterns and threat intelligence to identify anomalous activity. Develops hypotheses, executes investigations, and reports findings. Manages incoming security-related tickets, requests, and inquiries from internal departments. Prioritizes and tracks resolution, provides technical guidance, and ensures timely communication and closure of support cases. Develops and maintains operational documentation, including incident response runbooks, standard operating procedures (SOPs), technical workflows, and knowledgebase articles. Ensures documentation is version-controlled and aligned with policy and tool changes. Participates in IT and security-related projects by providing technical guidance, control implementation support, and input on security design considerations. Collaborates with Engineering and IT to ensure secure system configurations. Contributes to the development and maintenance of IT security policies, procedures, and operational standards. Works with Security Compliance, Engineering, and IT teams to ensure technical controls support Dallas County policies and regulatory requirements. Performs other duties as assigned.

Responsibilities

• Responds to and investigates escalated security tickets, requests, alerts, and events.
• Performs advanced triage, and coordinates with technical teams to ensure containment, and documents incident response activities.
• Supports daily operations of the County's security infrastructure, including SIEM, endpoint detection and response, and related tooling.
• Performs alert tuning, rule validation, and ensures reliable telemetry flow into security platforms.
• Conducts proactive threat hunting activities across SIEM, EDR, and available log sources.
• Analyzes behavioral patterns and threat intelligence to identify anomalous activity.
• Develops hypotheses, executes investigations, and reports findings.
• Manages incoming security-related tickets, requests, and inquiries from internal departments.
• Prioritizes and tracks resolution, provides technical guidance, and ensures timely communication and closure of support cases.
• Develops and maintains operational documentation, including incident response runbooks, standard operating procedures (SOPs), technical workflows, and knowledgebase articles.
• Ensures documentation is version-controlled and aligned with policy and tool changes.
• Participates in IT and security-related projects by providing technical guidance, control implementation support, and input on security design considerations.
• Collaborates with Engineering and IT to ensure secure system configurations.
• Contributes to the development and maintenance of IT security policies, procedures, and operational standards.
• Works with Security Compliance, Engineering, and IT teams to ensure technical controls support Dallas County policies and regulatory requirements.
• Performs other duties as assigned.

Requirements

• Education and experience equivalent to a Bachelor's degree in Information Systems, Cybersecurity, Computer Science, or job-related field of study.
• Six (6) years of IT experience in cybersecurity operations, including roles such as Security Analyst, Security Engineer, or SOC Analyst.
• Strong communication skills, both written and verbal, for collaboration and reporting.
• Ability to work independently and effectively in a team-oriented environment.
• Strong analytical, organizational, and documentation skills.
• Excellent verbal and written communication skills with the ability to present findings to both technical teams and executive stakeholders.
• Ability to create, implement and support security policies, procedures, and operational controls.
• Ability to engage and manage engagement with 3rd party security vendors, and managed security service providers.
• Knowledge of implementing, managing and configuring security and threat monitoring tools

Apply tot his job Apply To this Job