Associate IT Security Analyst

**OUC - The** **_Reliable_** **One** **,** is presently seeking an **Associate IT Security Analyst** to join the Technology division. At OUC, we don’t just work – we’re building a bright future of innovation and transformation for future generations. We are looking for an analytical security professional to providing security analysis and/or operations performing basic malware analysis and Windows server administration. In this role, you will be responsible for supporting OUC’s cybersecurity program by monitoring, analyzing, and remediating events reported by OUC’s SIEM. We are looking for an early-in-career individual who can provide proactive recommendations, assist with verifying IT systems and serving as the first escalation point in OUC’s security incident response. OUC is an industry leader and the second largest municipal utility in Florida committed to innovation, sustainability, and our community, OUC’s mission is to provide exceptional value to our customers and community by delivering sustainable and reliable services and solutions. Join a team of visionary Change Agents, Strategists, and Community Ambassadors who understand the vital role of diverse experiences in powering creativity and industry transformation.At OUC, each position contributes to the success and achievement of our goals.Click here (https://youtu.be/s\_ZnGjX\_Sas) to learn more about what we do. **The ideal candidate will have:** + Bachelor of Science degree in Computer Science, Management Information Systems or related area of study from an accredited college or university. In lieu of a degree, equivalent combination of education, certifications and experience may be substitutable on a 1:1 basis + Minimum of 6 months of IT security experience providing security analysis and/or operations performing basic malware analysis and Windows server administration (Preferred) Preferred Certifications: + GIAC Security Essentials (GISEC) + EC Council Cyber Network Defender (CND) + CompTIA Network+, Security+, CySA+, Pentest+, and Cloud/Cloud Essentials+ or other relevant industry certifications **OUC offers a very competitive compensation and benefits package. Our Total Rewards package includes, to cite a few:** + Competitive compensation + Low-cost medical, dental, and vision benefits and paid life insurance premiums with no probationary period. + OUC’s Hybrid Retirement Program includes a fully-funded cash balance account, defined contribution with employer matching along with a health reimbursement account + Generous paid vacation, holidays, and sick time + Paid parental leave + Educational Assistance Program, to include tuition reimbursement, paid memberships in professional associations, paid conference and training opportunities + Wellness incentives and free access to all on-site OUC fitness facilities + Access to family-oriented recreational areas + Paid Conference and Training Opportunities + Free downtown parking + Hybrid work schedule **Click here to view our Benefits Summary. (https://www.ouc.com/docs/human-resources-documents/benefits\_summary.pdf)** **Salary Range:** $56,365.65 - $70,456.78 annually - commensurate with experience **Location: Reliable Plaza** _Please see below a complete Job description for this position._ **Job Purpose:** Supports OUC’s cybersecurity program by monitoring, analyzing, and remediating events reported by OUC’s SIEM. Provides proactive recommendations for securing OUC’s environment against cybersecurity threats. Assists with verifying IT systems following recommended secure baselines. Serves as the first escalation point in OUC’s security incident response. Evaluates feedback to provide insight into business needs and understanding the impact of proposed cybersecurity controls. **Primary Functions:** + Investigate malware issues, determine severity, and recommend mitigation; follow up to ensure resolution; + Respond and assist with initial incident assessment, evaluate impact, and support service recovery. Support post-incident analysis; + Assist in monitoring security events at the network, application, database and operating systems level to identify potential security incidents; + Identify weaknesses in OUC’s security posture that could result in unauthorized access to sensitive data; + Provide recommendations that minimize risk to sensitive data and improve the overall security posture; + Operate OUC’s security tools; + Research documentation related to new and existing technology to support OUC’s risk assessment process; + Partner and align with peers within the organization to gain familiarity with the technology and platforms supporting OUC’s business; + Work on various projects to research, configure, test, and implement new security tools and controls; + Assess risk for new and existing technology. + Research, plan, and test mitigations for risk management; + Support OUC’s vulnerability management program; + Remediate endpoint security incidents; + Perform other duties as assigned. **Technical Requirements:** + Working knowledge of all, but not limited to the following: + IT security principles such as Security Information & Event Management (SIEM), multi- factor authentication, cloud computing, mobile device security, etc.; + Vulnerability management; + Enterprise applications, desktop security management and network management + Related industry, organizational and departmental policies, practices, and procedures; legal guidelines, ordinances, and laws; + Product documentation including technical requirements, product workflows and product instruction manuals; + Technical Reference materials (i.e. Gartner); + Real-time alerts including administrative changes, network lockouts, malware, and shared folder outbreaks; + Preparing and maintaining reports (ie. Daily network events, malware, administrative summary, foreign IP and lockout, Ad-hoc, and month-end); + Build strong relationships both internally and externally; + Strong communication skills, both verbal and written; + Ability to handle confidential information with discretion; + Ability to analyze large volumes of information from multiple sources in order to draw conclusions regarding suspicious patterns and create procedures needed for increased user productivity; + Ability to use Microsoft Office Suite (Excel, Word, PowerPoint, etc.) and use standard office equipment (telephone, computer, copier, etc.). **Education/ Certification/ Years of Experience Requirements:** + Bachelor of Science degree in Computer Science, Management Information Systems or related area of study from an accredited college or university. In lieu of a degree, equivalent combination of education, certifications and experience may be substitutable on a 1:1 basis; + Minimum of 6 months of IT security experience providing security analysis and/or operations performing basic malware analysis and Windows server administration, (Preferred). + Preferred Certifications: + GIAC Security Essentials (GISEC); + EC Council Cyber Network Defender (CND); + CompTIA Network+, Security+, CySA+, Pentest+, and Cloud/Cloud Essentials+ ; + or other relevant industry certifications. **Working Conditions:** This job may involve occasional exposure to some disagreeable elements (dust, heat, cold, noise, etc.) and accidents are improbable other than minor injuries. **Physical Requirements:** This job requires constant typing, speaking and hearing, detailed inspection/ reading/ editing, and writing. There is also the need to sit on a very frequent basis. Additionally, lifting up to 40 pounds, standing, bending/ stooping, reaching overhead, kneeling/ crawling, and climbing stairs/ ladders occurs on an occasional basis. _OUC–The Reliable One is an Equal Opportunity Employer who is committed through responsible management policies to recruit, hire, promote, train, transfer, compensate, and administer all other personnel actions without regard to race, color, ethnicity, national origin, age, religion, disability, marital status, gender, sexual orientation, gender identity or expression, genetic information and any other factor prohibited under applicable federal, state, and local civil rights laws, rules, and regulations_ . EOE M/F/Vets/Disabled