Texas Attorney General
OAG - Enterprise Information Security | Cybersecurity Analyst V | 26-0086
Texas Attorney General, Austin, Texas, us, 78716
Overview
OAG - Enterprise Information Security | Cybersecurity Analyst V | 26-0086 Are you ready to protect mission-critical systems that serve millions of Texas families? Join the IT Division at the Texas Office of the Attorney General (OAG) as a Cybersecurity Analyst V (Senior IT Security Analyst). In this role, you’ll safeguard sensitive data, lead incident response efforts, and ensure compliance with cybersecurity standards. Working in a hybrid cloud environment, you’ll collaborate across teams to assess risk, implement controls, and respond to evolving threats—helping secure systems that directly impact the lives of Texas children and families. Responsibilities
Security Operations & Incident Response:
Monitor security alerts and logs across cloud and on-prem environments to detect and respond to potential threats. Lead incident response activities, including investigation, containment, remediation, and post-incident analysis. Coordinate with internal teams and external partners to ensure timely and effective resolution of security incidents. Threat Intelligence & Vulnerability Management:
Conduct proactive threat hunting and analyze cyber intelligence to identify emerging risks. Perform vulnerability assessments and penetration testing; track and verify remediation efforts. Maintain awareness of current threat landscapes and recommend appropriate defensive measures. Risk & Compliance:
Support internal and external audits, security assessments, and compliance reviews (e.g., IRS Pub 1075, NIST CSF, CJIS). Assist in risk analysis, control validation, and documentation of findings and mitigation plans. Contribute to the development and maintenance of system security plans and risk registers. Security Architecture & Controls:
Collaborate with infrastructure, DevSecOps, and application teams to design and implement security controls. Validate the effectiveness of technical safeguards across AWS, Salesforce, and hybrid systems. Provide input on secure configuration baselines, access controls, and encryption standards. Policy, Governance & Awareness:
Contribute to the development, review, and enforcement of cybersecurity policies, procedures, and standards. Support security awareness and training initiatives for IT staff and business users. Participate in governance activities such as change reviews, architecture reviews, and security advisory boards. Interface with auditors, vendors, and regulatory bodies to support audits, assessments, and compliance initiatives, and to ensure audit readiness. Required Qualifications
MINIMUM QUALIFICATIONS
Education: Graduation from high school or equivalent Experience: 10 years of full-time experience in cybersecurity operations or incident response; threat intelligence or threat hunting; security architecture or secure system design; risk assessment, compliance, or IT audit; vulnerability management or penetration testing; may substitute credit hours for the required experience on a year-for-year basis Knowledge, Skills, And Abilities
Deep understanding of cybersecurity frameworks (e.g., NIST SP 800-53, NIST CSF, CIS Controls, CJIS) Strong grasp of network and systems fundamentals, and zero trust architecture Hands-on experience with AWS and/or Azure cloud security Familiarity with secure SDLC practices, threat modeling, and code review Skilled in risk management, governance, and continuous improvement of security programs Excellent communication and analytical skills Ability to lead, mentor, and influence across cross-functional teams Self-directed with the ability to manage multiple priorities independently Ability to work in person at the assigned OAG work location and perform in-person collaboration with coworkers for the entirety of the work week unless on approved leave Ability to work remotely as a manager-provided option, depending on work requirements Ability to arrange for personal transportation for business-related travel Ability to work more than 40 hours as needed and in compliance with the FLSA Ability to lift and relocate 30 lbs. Ability to travel (including overnight travel) up to 5% Preferred Qualifications
Experience advising teams on security best practices and secure architecture in a public sector or regulated environment Hands-on experience with encryption, digital certificates, key management, and secure communication protocols Experience supporting compliance with IRS Pub 1075, CJIS, or other regulations Experience with cloud-native security tools in AWS and/or Azure (e.g., IAM, KMS, GuardDuty, Security Hub) Experience supporting large-scale, mission-critical systems in government or enterprise settings Active CISSP certification One or more additional certifications such as CISA, CAP, CGEIT, CIPP, NSA IAM/IEM GIAC (e.g., GCIH, GPEN, GCFA, GCCC, GSNA) PMP (Project Management Professional) Apply
To apply for a job with the OAG, electronic applications can be submitted through CAPPS Recruit. A State of Texas application must be completed to be considered, and paper applications are not accepted. Your application for this position may subject you to a criminal background check pursuant to the Texas Government Code. Military Crosswalk information can be accessed at https://hr.sao.texas.gov/Compensation/MilitaryCrosswalk/MOSC_InformationTechnology.pdf THE OAG IS AN EQUAL OPPORTUNITY EMPLOYER
#J-18808-Ljbffr
OAG - Enterprise Information Security | Cybersecurity Analyst V | 26-0086 Are you ready to protect mission-critical systems that serve millions of Texas families? Join the IT Division at the Texas Office of the Attorney General (OAG) as a Cybersecurity Analyst V (Senior IT Security Analyst). In this role, you’ll safeguard sensitive data, lead incident response efforts, and ensure compliance with cybersecurity standards. Working in a hybrid cloud environment, you’ll collaborate across teams to assess risk, implement controls, and respond to evolving threats—helping secure systems that directly impact the lives of Texas children and families. Responsibilities
Security Operations & Incident Response:
Monitor security alerts and logs across cloud and on-prem environments to detect and respond to potential threats. Lead incident response activities, including investigation, containment, remediation, and post-incident analysis. Coordinate with internal teams and external partners to ensure timely and effective resolution of security incidents. Threat Intelligence & Vulnerability Management:
Conduct proactive threat hunting and analyze cyber intelligence to identify emerging risks. Perform vulnerability assessments and penetration testing; track and verify remediation efforts. Maintain awareness of current threat landscapes and recommend appropriate defensive measures. Risk & Compliance:
Support internal and external audits, security assessments, and compliance reviews (e.g., IRS Pub 1075, NIST CSF, CJIS). Assist in risk analysis, control validation, and documentation of findings and mitigation plans. Contribute to the development and maintenance of system security plans and risk registers. Security Architecture & Controls:
Collaborate with infrastructure, DevSecOps, and application teams to design and implement security controls. Validate the effectiveness of technical safeguards across AWS, Salesforce, and hybrid systems. Provide input on secure configuration baselines, access controls, and encryption standards. Policy, Governance & Awareness:
Contribute to the development, review, and enforcement of cybersecurity policies, procedures, and standards. Support security awareness and training initiatives for IT staff and business users. Participate in governance activities such as change reviews, architecture reviews, and security advisory boards. Interface with auditors, vendors, and regulatory bodies to support audits, assessments, and compliance initiatives, and to ensure audit readiness. Required Qualifications
MINIMUM QUALIFICATIONS
Education: Graduation from high school or equivalent Experience: 10 years of full-time experience in cybersecurity operations or incident response; threat intelligence or threat hunting; security architecture or secure system design; risk assessment, compliance, or IT audit; vulnerability management or penetration testing; may substitute credit hours for the required experience on a year-for-year basis Knowledge, Skills, And Abilities
Deep understanding of cybersecurity frameworks (e.g., NIST SP 800-53, NIST CSF, CIS Controls, CJIS) Strong grasp of network and systems fundamentals, and zero trust architecture Hands-on experience with AWS and/or Azure cloud security Familiarity with secure SDLC practices, threat modeling, and code review Skilled in risk management, governance, and continuous improvement of security programs Excellent communication and analytical skills Ability to lead, mentor, and influence across cross-functional teams Self-directed with the ability to manage multiple priorities independently Ability to work in person at the assigned OAG work location and perform in-person collaboration with coworkers for the entirety of the work week unless on approved leave Ability to work remotely as a manager-provided option, depending on work requirements Ability to arrange for personal transportation for business-related travel Ability to work more than 40 hours as needed and in compliance with the FLSA Ability to lift and relocate 30 lbs. Ability to travel (including overnight travel) up to 5% Preferred Qualifications
Experience advising teams on security best practices and secure architecture in a public sector or regulated environment Hands-on experience with encryption, digital certificates, key management, and secure communication protocols Experience supporting compliance with IRS Pub 1075, CJIS, or other regulations Experience with cloud-native security tools in AWS and/or Azure (e.g., IAM, KMS, GuardDuty, Security Hub) Experience supporting large-scale, mission-critical systems in government or enterprise settings Active CISSP certification One or more additional certifications such as CISA, CAP, CGEIT, CIPP, NSA IAM/IEM GIAC (e.g., GCIH, GPEN, GCFA, GCCC, GSNA) PMP (Project Management Professional) Apply
To apply for a job with the OAG, electronic applications can be submitted through CAPPS Recruit. A State of Texas application must be completed to be considered, and paper applications are not accepted. Your application for this position may subject you to a criminal background check pursuant to the Texas Government Code. Military Crosswalk information can be accessed at https://hr.sao.texas.gov/Compensation/MilitaryCrosswalk/MOSC_InformationTechnology.pdf THE OAG IS AN EQUAL OPPORTUNITY EMPLOYER
#J-18808-Ljbffr