Information Security Analyst

Information Security Analyst(00053090) Organization:LIBRARY AND ARCHIVES COMMISSION Primary Location:Texas-Austin Work Locations:Lorenzo de Zavala Bldg 1201 Brazos St Austin 78701 Job:Computer and Mathematical Employee Status:Regular Schedule:Full-time Standard Hours Per Week:40.00 State Job Code:0320 Salary Admin Plan:B Grade:25 Salary (Pay Basis):7,000.00 - 7,500.00 (Monthly) Number of Openings:1 Overtime Status:Exempt Job Posting:Sep 29, 2025, 10:02:14 AM Closing Date: Oct 13, 2025, 11:59:00 PM Description TSLAC is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age or disability in employment or in the provision of services, programs, or activities. For job opening inquiries or to request a reasonable accommodation under the Americans with Disabilities Act please contact the TSLAC Human Resources office by calling 512-463-5474. Applications submitted to TSLAC may be subject to public disclosure, upon request, pursuant to the Texas Public Information Act. Job Summary Performs complex (journey-level) information security and cybersecurity analysis work. Performs information security and cybersecurity analysis work involving planning, implementing, and monitoring security measures for the protection of information systems and infrastructure. Work also includes protecting cybersecurity assets and delivering cybersecurity incident detection, incident response, threat assessment, cyber intelligence, software security, and vulnerability assessment services. Works under general supervision, with limited latitude for the use of initiative and independent judgment. Essential Tasks • Develops and implements a comprehensive computer system security plan to secure agency’s computing network and resources.Provides guidance and assistance to senior agency officials, information owners/end-users, information custodians concerning their responsibilities under TAC 202. • Develops, maintains, and implements agency-wide information and cybersecurity policies, standards, guidelines, and procedures to ensure information security capabilities cover current threat capabilities. • Reports to management and oversight entities on status and effectiveness of security controls. • Monitors and analyzes cybersecurity alerts from cybersecurity tools, network devices, and information systems. • Supports the implementation of computer system security plans with agency personnel and outside vendors. • Participates in the development of information technology disaster recovery and business continuity planning. • Attends work regularly in accordance with agency leave and attendance policies. • Complies with all applicable agency policies and procedures, including safety and standards of conduct. • Performs other duties, as assigned. Other Tasks May assist other ITS staff in performing tasks during vacancies and/or emergency situations. Qualifications Veterans, Reservist or Guardsmen with an MOS or additional duties that fall in the fields pertaining to the minimum experience requirements may meet the minimum qualifications for this position and are highly encouraged to apply. Please call Human Resources at (512) 463-6564 with questions or for additional information. Additional Military Crosswalk information can be accessed at https://hr.sao.texas.gov/Compensation/MilitaryCrosswalk/MilitaryCrosswalkGuide.pdf Minimum Qualifications Graduation from an accredited four-year college or university with major coursework in information technology security, computer information systems, computer science, management information systems, or a related field. Three years’ experience in information security analysis management Substitution: work experience as described above can be substituted for the degree on a year for year basis up to 4 years for a total of 7 years of experience. Preferred Qualifications Certification as a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditory (CISA), Certified information Systems Manager (CISM), or Certified in Risk and Information Systems Controls (CRISC). Experience working in Cybersecurity for a state agency or other governmental entity. Knowledge Skills and Abilities Knowledge or local, state and federal laws and regulations relevant to information security, privacy, and computer crime. Knowledge of the limitations and capabilities of computer systems and technology. Knowledge of technology across all mainstream networks, operating systems, and application platforms. Knowledge of operational support of networks, operating systems, Internet technologies, databases, and security applications and infrastructure. Knowledge of cybersecurity and information security controls, practices, procedures, and regulations; incident response program practices and procedures; and information security practices, procedures, and regulations. Skill in the use of applicable software and the configuring, deploying, monitoring, and automating of security applications and infrastructure. Ability to resolve complex security issues in diverse and decentralized environments. Ability to plan, develop, monitor, and maintain cybersecurity and information technology security processes and controls. Ability to communicate effectively in writing and in person, and to work well with others who may not have the same level of expertise relating to cybersecurity. Environmental/Physical Conditions Normal office work environment. May have exposure to dust and environmental allergens consistent with normal business activities and human contact. Mostly sedentary in nature but may involve moving; standing; remaining stationary for long periods of time; pulling and pushing; kneeling, stooping, and bending; and safely moving items weighing up to 30 pounds. Work involves extensive repetitive motions while operating the computer. Normal cognitive abilities including the ability to learn, recall, and apply certain practices and policies. Some travel, including overnight travel, by personal automobile required. Must be available to work a normal day schedule Monday through Friday with some off-hour and occasional weekend assignments. Other Requirements College transcripts must be submitted at the time of application if claiming college degree. Successful candidate will need to pass a criminal background check. Reporting Relationships No supervisory responsibilities. Reports to ITS Operations Manager. Reports to ITS Division Director.