• Job Description

  Req#: 113849
  !*!

  Who We Are: The Ohio Department of Job and Family Services (ODJFS) supports Ohioans and their families through the following programs: Food and Cash Assistance, Employment Services, Unemployment Insurance, Adult Protective Services, Child Support. Agency Mission: To improve the well-being of Ohio's workforce and families by promoting economic self-sufficiency and ensuring the safety of Ohio's most vulnerable citizens.

  Our Vision: To be the nation's leading workforce development and family support system.

  Our Values: Accountability, Innovation, Teamwork, Integrity, and Compassion

  Office of Information Services: The Office of Information Services (OIS) works to support the business functions and the delivery of health, human, and employment services through the application of IT. OIS supports the delivery of programs to millions of recipients through the development and round-the-clock operation of automated information systems. Due to the number of end-users and technologies supported, OIS is one of the largest and most complex IT organizations within Ohio government. Learn more by visiting the ODJFS OIS webpage.

  !*!

  About Us:

  The Ohio Digital Academy (ODA) is seeking one information security analyst to join our January cohort! Selected analysts will join the Ohio Department of Job and Family Services (ODJFS), Office of Information Services (OIS) and will be learning relevant skills and technologies in security software and hardware, and security monitoring disciplines including: governance, risk, and compliance (GRC).

  As an emerging high-tech hub, Ohio is cultivating an innovation environment and skilled workforce primed to meet the advanced technology and cybersecurity needs of the state’s public and private sector employers.

  The Ohio Digital Academy seeks to create a technology workforce pipeline by training and employing early entrants to the industry and setting them on a path to careers for in-demand fields such as cybersecurity, coding, software engineering, user experience design, cloud engineering/architecture, and data analytics.

  Selected analysts earn $25 an hour beginning the first day of employment and attend an intensive four-week training program that focuses on civil service training, leadership, technical training & exercises, and professional development within 30 days of hire.

  In exchange for a three-year service commitment to the State of Ohio, analysts receive:

  • Tuition or loan reimbursement of $20,000 or $40,000 (expenses must be from within one year of joining ODA or while in the program)
  • Access to quality, competitive benefits as an employee of the State of Ohio
  • Access to the Employee Development Fund, providing $4,500 annually for industry certifications & professional development
  • On-the-job training and mentorship opportunities from industry professionals
  • Private sector job placement upon completion of three-year service commitment with the State of Ohio

  The Ohio Digital Academy is a division housed in the Ohio Department of Administrative Services (DAS) created and led by CyberOhio in collaboration with the Governor’s Office of Workforce Transformation (OWT).

  ---

  What You'll Do:

  Under direct guidance and supervision, works toward acquiring the knowledge, skills and abilities required to perform entry-level duties on the IT Security and Risk Management Team:

  Day-to-day you will:

  1. Assist in monitoring security systems and networks for potential threats, vulnerabilities, and incidents.

  a. Reviewing security logs

  b. Analyzing alerts

  c. Reporting any suspicious activities to senior cybersecurity professionals.

  2. Support the team in performing vulnerability assessments on systems, applications, and networks.

  a. Identifying and documenting potential security weaknesses and suggesting remediation measures.

  3. Aid in responding to cybersecurity incidents, investigating security breaches, helping with forensic analysis, coordinating with the incident response team.

  a. Collecting and preserving evidence

  b. Documenting incident response procedures

  c. Assisting with incident recovery

  4. Continuously learn and apply security best practices in networks, systems, and applications.

  a. Assisting with the development and implementation of security policies, procedures, and guidelines.

  5. Promote cybersecurity awareness among employees by assisting with security training programs and creating educational materials.

  a. Raising awareness about phishing attacks

  b. Password security

  c. Safe browsing practices

  6. Support the administration and maintenance of security tools, such as firewalls, antivirus software, and intrusion detection systems.

  a. Assisting with tool configuration, monitoring, and troubleshooting.

  7. Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and emerging technologies.

  a. Assist in conducting research and providing insights on new security technologies and techniques to enhance the organization's security posture.

  8. Assist with general technical support for cybersecurity-related issues.

  a. Helping users with basic troubleshooting

  b. Answering security-related inquiries

  c. Escalating complex issues to senior team members

  As an ODA Cybersecurity Analyst, you will be learning and working under the guidance of more experienced professionals. Your job duties will involve supporting them in various tasks while gaining hands-on experience and knowledge in the field of Application Development

  ---

  !*!

  At the State of Ohio, we take care of the team that cares for Ohioans. We provide a variety of quality, competitive benefits to eligible full-time and part-time employees*. For a list of all the State of Ohio Benefits, visit our Total Rewards website! Our benefits package includes:

  • Medical Coverage
  • Free Dental, Vision and Basic Life Insurance premiums after completion of eligibility period
  • Paid time off, including vacation, personal, sick leave and 11 paid holidays per year
  • Childbirth, Adoption, and Foster Care leave
  • Education and Development Opportunities (Employee Development Funds, Public Service Loan Forgiveness, and more)
  • Public Retirement Systems (such as OPERS, STRS, SERS, and HPRS) & Optional Deferred Compensation (Ohio Deferred Compensation)

  *Benefits eligibility is dependent on a number of factors. The Agency Contact listed above will be able to provide specific benefits information for this position.

  !*!

  Minimum Qualifications:

  Completion of undergraduate or associate core program in computer science or related major as specified by the position description & job posting.
  
  -Or completion of an accredited technical training program (i.e. “tech bootcamp”) or accredited certification based training program in Information Technology or related career field as specified by the position description & job posting.
  
  -Or current enrollment in an undergraduate or associate core program in computer science or related major as specified by the position description & job posting.
  
  -Or current enrollment in an accredited technical training program (i.e., “tech bootcamp”) or accredited certification-based training program in Information Technology or related career field as specified by the position description & job posting.

  -Experience with Microsoft 365 Tools

  -Experience or knowledge of IT Security Tools

  Job Skills: Information Technology, Risk Assessment, Risk Management, Emotional Intelligence, Innovation, Critical Thinking

  ---

  Knowledge, Skills, and Abilities

  Knowledge:

  1. Computer hardware and software

  2. Ticketing software (e.g. Service Now) *

  3. Customer Service techniques and standards*

  4. State IT policies, procedures and applicable laws *

  5. Operations and processes for diagnosing common or recurring system problems*

  6. Computer Network Defense and vulnerability assessment tools, including open source tools, and their capabilities*

  7. Current industry methods for evaluating, implementing, and disseminating IT security assessment, monitoring, detection and remediation tools and procedures utilizing standards-based concepts and capabilities*

  8. Database procedures used for querying security tools to gather information *

  9. Classes of attacks (e.g., passive, active, insider, close-in, distribution, etc.)*

  10. Different operational threat environments (e.g., first generation [script kiddies], second generation [non- nation state sponsored], and third generation [nation state sponsored])*

  11. Electronic devices (e.g., computer systems/components, access control devices, digital cameras, electronic organizers, hard drives, memory cards, modems, network components, printers, removable storage devices, scanners, telephones.

  12. How traffic flows across the network (e.g., Transmission Control Protocol (TCP) and Internet Protocol (IP), Open System Interconnection Model (OSI)*

  13. Incident response and handling methodologies*

  14. System and application security threats and vulnerabilities*

  15. Personally Identifying Information (PII)

  16. System and application security threats and vulnerabilities*

  17. Operations and processes for diagnosing common or recurring system problems*

  18. Principal methods, procedures, and techniques of gathering information and producing, reporting, and sharing intelligence*

  19. Organization's core business/mission processes*

  Skills:

  1. Technical writing and documentation practices (e.g standard operating procedures, training documents, work flow diagrams) *

  2. Reading/verbal comprehension (i.e. comprehend and apply written & verbal instructions)

  3. Operating PC Hardware and Software (e.g. MS Word, Excel, PPT, Outlook)

  4. Critical thinking (i.e. impact analysis, troubleshooting)

  5. Conducting open source research for troubleshooting network and client-server issues*

  6. Basic operation of computers

  7. Using network analysis tools to identify vulnerabilities*

  8. Preserving evidence integrity according to standard operating procedures or national standards*

  9. Securing network communications*

  Abilities:

  1. Communication (e.g. Oral, Written, Active Listening)

  2. Problem sensitivity/problem solving

  3. Time Manage (e.g. organization and prioritization)

  4. Active learning

  5. Match the appropriate knowledge repository technology for a given application or environment*

  6. Identify systemic security issues based on the analysis of vulnerability and configuration data*

  7. Accurately define incidents, problems, and events in the trouble ticketing system*

  8. Apply techniques for detecting host and network-based intrusions using intrusion detection technologies*

  9. Apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation) *

  10. Share meaningful insights about the context of an organization’s threat environment that Improve its risk management posture*

  *Developed after employment

  ---

  !*!

  Applying for position:

  • When completing your online Ohio Civil Service Application, be sure to clearly describe how you meet the minimum qualifications outlined on this job posting.
  • All answers to the supplemental questions must be supported by the work experience/education provided on your civil service application.
  • If you require a reasonable accommodation for the application process, please email the Human Resources contact on this posting so arrangements can be made.

  ---

  Background Check Information

  The final candidate selected for this position will be required to undergo a criminal background check. Criminal convictions do not necessarily preclude an applicant from consideration for a position. An individual assessment of an applicant's prior criminal convictions will be made before excluding an applicant from consideration.

  !*!

  Ohio is a Disability Inclusion State and strives to be a model employer of individuals with disabilities. The State of Ohio is committed to providing access and inclusion and reasonable accommodation in its services, activities, programs and employment opportunities in accordance with the Americans with Disabilities Act (ADA) and other applicable laws.

• About the company

  Ohio is a state in the Midwestern region of the United States. Of the fifty states, it is the 34th-largest by area, and with a population of nearly 11.8 million, is the seventh-most populous and tenth-most densely populated.

Notice