Summary

This job involves protecting the South Carolina Judicial Branch's computer systems, networks, and data from cyber threats by managing security tools, investigating suspicious activities, and ensuring secure access to resources.

It requires working closely with IT teams to implement and maintain safeguards for emails, endpoints, firewalls, and physical security systems.

A good fit would be someone with strong technical skills in cybersecurity, experience troubleshooting complex issues, and a passion for keeping sensitive government information safe.

Key Requirements

Bachelor's degree in a related field plus 7+ years of experience in networking and information security engineering, or Associate's degree plus 10+ years
Experience in firewall management, endpoint security, email security, identity and access control, and security threat analysis
Hold at least two industry-standard security certifications such as CompTIA Security+, CISSP, GSEC, or GISF
Strong technical background in networking and troubleshooting
Ability to analyze security data, resolve incidents, and modify rules while maintaining best practices
Experience managing VPN, two-factor authentication, and physical security systems
Familiarity with hybrid environments, Microsoft Cloud security, and tools like Cisco Firepower or Check Point

Full Job Description

Under limited supervision, is responsible for technical aspects of information security within the South Carolina Judicial Branch (SCJB), as well as for implementation of industry standard security controls that are applied consistently throughout our organization. Reports to and works closely with the Chief Information Security Office in the implementation of technical controls to safeguard the electronic data, communications, and physical and intangible assets within SCJB.

Requirements

Bachelor's degree or higher in related area and 7+ years of combined documented experience in progressively sophisticated roles in networking, information security engineering (including firewall management, endpoint security, email security, identity and access control, security threat analysis); OR an associate degree and 10+ of combined document experience in progressively sophisticated roles in networking, information security engineering (including firewall management, endpoint security, email security, identity and access control, security threat analysis); Must hold two (2) or more industry standard security certifications, such as: CompTIA Security +, SANS/GIAC GISF, GSEC, CISSP. Strong, diverse technical background in networking and troubleshooting.

Qualifications

Vendor specific certifications such as Cisco CCNA, Checkpoint CCSA, etc. Experience with Cisco Firepower, Check Point version R80 or higher, Linux or UNIX based platforms, Tenable vulnerability scanning, web application firewalls & bot prevention. Experience working in Hybrid environment, and with multiple physical or virtual site locations is a plus. Experience with Microsoft Cloud security controls, logging, and identity management desired. Experience with Zero Trust Network Access technology a plus.

Physical, virtual, & web application Firewall management. Applies technical analysis of data security information and uses critical thinking and troubleshooting skills to resolve security incidents, as reported either by end users, other IT teams, or as evident from routine log analysis. Modifies firewall security rules to accommodate changing network environment while maintaining best practices in security. Manage VPN technology used by IT department and vendors. Performs hardware & software upgrades to existing firewall devices and installs new firewall devices as needed for growth.

Endpoint Security management. Uses SCJB-approved software on all SCJB workstations (local & remote) and Servers to analyze suspicious data traffic, such as, but not limited to, browsing malicious websites or downloading malicious files. Acts on automatically generated reports to follow up on suspicious activity, running security scans or collaborating with the IT Help Desk for additional scans and user assistance as needed. Assist in running internet usage reports as requested by management to monitor appropriate usage of SCJB resources.

Email Security monitoring. Receives, investigates, and sends alerts upon reports of suspicious email by end users or email filtering system. Updates email filtering system as needed to prevent ingress of malicious email.

Two Factor Authentication management. Monitors and maintains health of the two factor authentication system for SCJB user accounts, to prevent unauthorized remote access to SCJB systems. Responds to escalations from IT Help Desk concerning any issues with system, such as access failures.
Physical Security system monitoring. Collaborates with Security Coordinator in HR, BPS officers, and General Services to troubleshoot technical issues with building access control and video system, utilizing contracted vendor for hands-on support. Coordinate changes, maintenance, and installation of new systems with affected personnel.

Logging & Security Monitoring. Uses internal enterprise logging system to investigate security issues and anomalies. Integrate new log sources, both on-prem and cloud, and maintain health of logging system. Responds to alerts provided by external security monitoring vendor, creating security incidents as needed to remediate any issues.

Security Awareness coordination. Assists with the setup and maintenance of our security awareness training portal. Assists with periodic security training assigned to staff, and works closely with IT Help Desk to investigate and resolve issues. Designs and distributes Phishing Assessments on periodic basis to test employees security awareness.

Data Encryption. Supports best practices of encrypting sensitive data over Email by management of Email DLP system. Works in advisory capacity to Networking to ensure endpoint device encryption adheres to security best practice.

Research, Test, and Implement new security systems. Will work with the Chief Information Security Officer in the design, creation, and testing of new security systems as approved by SCJB. Works closely with other teams as needed to coordinate testing, installation, and communication. Produces documentation on newly-developed security systems that is useful for the average computer user, where such systems require interaction with the user. Conducts vulnerability scans for existing and new systems introduced by IT Development teams or contracted vendors. Works closely with vendors related to all supported security systems.

Additional Information

The South Carolina Judicial Branch offers an exceptional benefits package for FTE positions that include:

Health, Dental, Vision, Long Term Disability, and Life Insurance for Employee, Spouse, and Children.
State Retirement Plan and Deferred Compensation Programs (Temporary positions have option to enroll).
15 days paid annual (vacation) leave per year.
15 days paid sick leave per year.
Option to designate 10 days of earned paid sick leave per year as family sick leave.
13 paid state holidays.
Workers’ Compensation Benefits.

✓ Fresh Listing

Information Security Analyst III

Job Description

Summary

Key Requirements

Full Job Description

Requirements

Qualifications

Additional Information

Browse Similar Jobs

Related Jobs

Office of Information Technology (OIT) - Program Coordinator II - SCDPS Corporal (60022308)

Office of Information Technology (OIT) - Program Coordinator II - SCDPS Corporal (60023597)

Public Information Director I

Virtual Chief Information Security Officer - 61049747

Information Systems Security Officer (ISSO) - 60007049

Attorney IV/AGC-Administration & Information Law