**Working Title: Cybersecurity Engineer**

**Job Class: Legal Assistant 8**

**Agency: Attorney General's Office**

+ **Who May Apply** : Open to all qualified job seekers

+ **Date Posted** : 08/25/2023

+ **Closing Date** : 09/25/2023

+ **Hiring Agency/Seniority Unit** : Attorney General's Office

+ **Division/Unit** : Attorney Gen. / InformationTechnology

+ **Work Shift/Work Hours** : Day Shift

+ **Days of Work** : Monday - Friday

+ **Travel Required** : No

+ **Salary Range:** $34.00 - $55.08 / hourly; $70,992 - $115,007 / annually

+ **Classified Status** : Unclassified

+ **Telework Eligible** : Yes

+ Designated in Connect 700 Program for Applicants with Disabilities (https://mn.gov/mmb/careers/diverse-workforce/people-with-disabilities/connect700/) : No

Priority consideration will be given to applications received on or before 09/08/2023.

**Make a difference in the lives of Minnesotans.**

The work you'll do is more than just a job. Join the talented, engaged and inclusive workforce dedicated to creating a better Minnesota.

The Office of the Minnesota Attorney General is currently seeking a Cybersecurity Engineer in the IT Division of the Office. The Cybersecurity Engineer supports the mission of the Office by providing critical information security and network operations services. Incumbents work with a team of IT professionals to support the legal operations of the Office and ensure the safety and security of the Office's data and resources.

Incumbents are cybersecurity professionals with expertise in cybersecurity and may lead projects or oversee daily cybersecurity operations. Incumbents are technical experts in cybersecurity software and systems, cybersecurity management, cybersecurity principles, fully competent to provide leadership and direction to other staff members and possess in-depth knowledge of legislation and regulation for security and data recovery to ensure compliance. Incumbents possess advanced knowledge and detailed understanding of cybersecurity principles, policies, tools, procedures, and technical aspects.

A successful candidate in this position will be able to:

+ Establish of the cybersecurity program for the office, including information security policy and incident response plans, implementing them using a risk management framework.

+ Determine cybersecurity risks and develop cybersecurity architecture to mitigate those risks.

+ Work with management, users, and IT staff to establish, administer, and secure enterprise data, servers, and the network.

+ Analyze threat information from multiple sources, disciplines, and agencies across the intelligence community and identify and execute countermeasures.

+ Test, implement, deploy, maintain, review, and administer the infrastructure hardware and software required to effectively manage the computer network defenses and resources.

+ Use defensive measures and information collected from a variety of sources to identify, analyze, and report events that occur or might occur within the network to protect information, information systems, and networks from threats.

+ Utilize a variety of tools to ensure confidentiality, integrity, and availability of data.

+ Resolve cybersecurity incidents.

+ Monitor the network to actively remediate unauthorized activities.

+ Work to identify threats, protect organizational information, assets, and people, detect malicious and suspicious activities.

+ Respond to hostile security incidents and aid in recovery efforts addressing the security issues that cause them.

+ Represent the office as the Local Agency Security Officer (LASO) for CJIS compliance.

+ Establish office-wide security awareness campaigns and trainings.

+ Perform organizational and system level risk assessments in accordance to the risk management plan.

+ Lead the investigation of complex and sensitive data investigations and forensics efforts.

+ Design and implement procedures and controls necessary to protect information system assets and data.

+ Ensure the safety and security of all information systems assets.

+ Analyze operational monitoring information and resolve cybersecurity events.

+ Respond to information security requests and problems, explaining agency policies and procedures.

This position is eligible for a hybrid work environment.

**Minimum Qualifications**

+ Degree in information technology, cybersecurity, or closely related field (experience may substitute for degree)

+ Five or more years of network and security experience

+ IT professionals are expected to have great organizational skills, including the ability to work independently, collaborate and work effectively as part of a team, be able to prioritize projects and multi-task, and have strong interpersonal skills with both stakeholders and team members.

+ Demonstrated knowledge of: The basics of network security (e.g., encryption, firewalls, authentication, perimeter protection, etc.); Cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks, etc.); Host and network-based security technologies and how those products fit into the network security posture; Evolving/emerging communication technologies and risk associated with them; IT industry best-practices; Cybersecurity incident responses and handling methodologies; Authentication, authorization, and access control methods; Vulnerability information dissemination sources (e.g., alerts, errata, and bulletins); Common threats, vulnerabilities, and related mitigation strategies.

**Preferred Qualifications**

+ Good knowledge of: Cyber intelligence/information collection capabilities and conducting cyber incident investigations; Assessing information security regulatory compliance and policy & procedure writing; Laws, regulations, policies, and ethics as they relate to information security and privacy (NIST, IRS 1075, HIPAA, CJIS, etc.); Evolving security technologies; Strategic planning as it relates to security and regulatory compliance; Creating and implementing an office-wide security plan.

+ Considerable knowledge of: Computer networking concepts and protocols and network security methodologies; Internal tactics to anticipate and mitigate cyber security threat capabilities and actions; Risk management processes (methods for assessing, documenting, and mitigating risk).

+ Experience with the following systems/technologies: Microsoft Sentinel (SIEM); Azure Arc; Azure Active Directory; Microsoft Defender for Endpoints, Identities, and Cloud Apps; Exchange Email Security; Microsoft NPS/Radius; Cylance Protect; Tenable Security Center; Infosec IQ or similar security training tools; Cisco Umbrella; Cisco Firepower Threat Defense (FTD); System patching; Scripting; Password Managers; and/or other similar systems.

**Physical Requirements**

+ Ability to move and transport such articles as files, laptop computer, and resource materials weighing up to 20 pounds

**Additional Requirements**

In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.

It is our policy that all candidates submit to a background check prior to employment. This background check may consist of the following components:

+ Conflict of Interest Review

+ Criminal History Check

+ Education / License Verification

+ Employment Reference / Records Check

AN EQUAL OPPORTUNITY EMPLOYER

Minnesota State Colleges and Universities is an Equal Opportunity employer/educator committed to the principles of diversity. We prohibit discrimination against qualified individuals based on their race, sex, color, creed, religion, age, national origin, disability, protected veteran status, marital status, status with regard to public assistance, sexual orientation, gender identity, gender expression, or membership in a local commission as defined by law. As an affirmative action employer, we actively seek and encourage applications from women, minorities, persons with disabilities, and individuals with protected veteran status.

Reasonable accommodations will be made to all qualified applicants with disabilities. If you are an individual with a disability who needs assistance or cannot access the online job application system, please contact the job information line at 651-259-3637 or email [Click Here to Email Your Resumé] . Please indicate what assistance is needed.