Office of Cyber Security Senior IT Security Analyst (DoIT #10117004+)

Posting Details
THIS POSTING WILL BE USED FOR ONGOING RECRUITMENT AND MAY CLOSE AT ANY TIME. APPLICANT LISTS MAY BE SCREENED MORE THAN ONCE. THIS POSTING MAY BE USED TO FILL MULTIPLE POSITIONS.
The Office of Cybersecurity (OCS) has the essential role and responsibility for the State of New Mexico (SoNM) Information Technology (IT) security program in coordination with state agencies. The administrative code (1.12.20 NMAC) and federal oversight requires state agencies to perform procedures necessary to ensure the security of information systems and federal data sets are protected from cyberattacks.
To maintain an adequate security posture by developing appropriate IT security policies, standards, and procedures with periodic updates to accurately reflect ever changing technology, legislative and user needs.
The OCS has the responsibility in protecting and monitoring the State of New Mexico's technology infrastructure and digital assets, including state agencies, mission critical systems and data.
Cyberattacks are dramatically increasing, and cybersecurity operations are facing new challenges. Cybersecurity is not just an IT problem anymore, it is a critical business risk, homeland security and public safety threat, voter confidence issue, and an economic development opportunity.
Technology continues to evolve, the cybersecurity landscape is constantly changing, increasing potential vulnerabilities and risk. Therefore, it is essential for the State Chief Information Security Officer (CISO) to secure additional security analysts to support the Office of Cybersecurity.
Why does the job exist?
The Senior Security Analyst plays a critical role in advancing the mission of the Office of Cybersecurity (OCS) to protect the State of New Mexico's digital infrastructure. This position ensures the security of information systems and verifies that services, vendors, and stakeholders adhere to all applicable legal, safety, and quality standards. The role provides strategic leadership across OCS's information security programs, including compliance management, evaluation, mitigation, and incident response. To strengthen the states cybersecurity posture, this position is responsible for:

• Developing and implementing proactive cybersecurity compliance strategies
• Identifying and addressing potential compliance risks
• Introducing and improving technologies and processes that enhance security
• Leading surveillance, monitoring, and incident response strategies
• Delivering consultative and training services with a security first mindset

The Senior Security Analyst manages cybersecurity services delivered to state agencies, K12 public schools, higher education institutions, local governments, and tribal entities. These services include vulnerability management, attack surface management, penetration testing, user security awareness training, and operating the Security Operations Center (SOC) for SoNM agencies.
Additional responsibilities include:

• Contributing to the design and implementation of enterprise wide business continuity and disaster recovery management programs, including maturity models, methodologies, sourcing strategies, plans, metrics, and scorecards
• Assisting business partners in determining critical business processes and systems; Overseeing security incident and response management
• Leading and responding to complex security incidents and investigations
• Conducting advanced IT data and security reviews and audits to ensure regulatory and standards compliance
• Participating in third party security investigations and compliance reviews
• Interfacing with vendors to evaluate new security products or support security assessments
• Maintaining vendor relationships related to security system updates and technical support
• Identifying and resolving root causes of security related issues
• Coordinating with vendors to ensure proper implementation and maintenance of managed services
• Evaluating and recommending security tools and solutions

Through these responsibilities, this role ensures OCS remains a trusted partner by driving effective security strategies and maintaining strong compliance and risk management practices across the states digital ecosystem.
How does it get done?
Security Governance and Compliance

• Develop, implement, and enforce enterprise security policies, standards, and procedures
• Support the creation and review of cybersecurity documentation, including:
• Security policies and procedures
• Information System Security Plans (ISSPs)
• Incident response and disaster recovery plans
• Configuration and change management plans
• Ensure compliance with NIST 800 series and other applicable frameworks
• Interpret and communicate regulatory and compliance requirements to stakeholders
• Conduct complex IT data and security reviews and audits for regulatory and standards compliance
• Participate in third party security investigations and compliance reviews
• Contribute to designing and implementing enterprise wide business continuity and disaster recovery programs, including maturity models, methodologies, sourcing strategies, plans, metrics, and scorecards
• Assist business partners in determining critical business processes and systems Security Operations Center (SOC) and Monitoring
• Monitor systems and logs using SIEM tools to detect and respond to anomalies
• Conduct threat hunting and analyze indicators of compromise (IOCs)
• Review and update security tools to block malicious IPs and signatures
• Escalate incidents and coordinate with state agencies and third party partners
• Maintain documentation of all actions taken during investigations
• Oversee security incident and response management
• Lead and respond to security incidents, investigations, and targeted reviews of suspect areas Risk Management and Incident Response
• Conduct risk assessments, audits, and vulnerability scans
• Lead or support investigations into cybersecurity incidents
• Coordinate with internal and external teams to resolve incidents in accordance with policy
• Recommend and implement technical solutions to mitigate identified risks
• Identify and resolve root causes of security related problems
• Evaluate and recommend tools and solutions that provide enhanced security functions Security Services and Technical Oversight
• Oversee the delivery of services including: Vulnerability Management as a Service (VMaaS), Attack Surface Management (ASM), Penetration testing, User security awareness training
• Participate in the design of secure infrastructure and application solutions
• Provide input on disaster recovery planning and business continuity
• Interface with third party vendors to evaluate new security products or support security assessments
• Maintain vendor relationships to ensure proper implementation, updates, and technical support for security products
• Coordinate with vendors to ensure managed services are implemented and maintained appropriately Stakeholder Engagement and Training
• Deliver cybersecurity awareness training and track participation
• Respond to security inquiries, assessments, and questionnaires from agencies and partners
• Build and maintain trusted relationships across state agencies, educational institutions, local governments, and tribal entities

Who are the customers?
The State Chief Information Security Officer, State of New Mexico agencies, K-12 public school districts, higher educational institutions, local governments, and tribal entities.
Ideal Candidate
The State Chief Information Security Officer, State of New Mexico agencies, K-12 public school districts, higher educational institutions, local governments, and tribal entities.
Minimum Qualification
Bachelor's degree in Computer Science, Management Information Systems (MIS), Information Technology, Engineering, or similar technical degree and three (3) years of experience in IT security or compliance validation (e.g., HIPAA, PCI). Any combination of education from an accredited college or university in a related field and/or direct experience in this occupation totaling seven (7) years may substitute for the required education and experience. A certificate in IT security/forensics (e.g., CISSP, CEH, CCFP, CCSP, HCISPP, SSCP) or regulated compliance (e.g., PCIP, ASV, ISA, QSA) can be used to substitute one (1) year of experience.
Employment Requirements
Must possess and maintain current ID or Driver's License. Pre-employment background investigation is required, and employment is conditional pending results.
Working Conditions
The role is primarily office-based and involves extensive computer and phone use. The candidate should be comfortable working at a desk for extended periods and proficient with standard computer equipment (keyboard, mouse, display). Responsibilities include direct client interaction, attending meetings, and occasional travel. Physical requirements include the ability to lift up to 25lbs and perform basic movements such as sitting, standing, bending, and reaching.
Supplemental Information
Do you know what Total Compensation is? Click here
Agency Contact Information: Flori Martinez Email
For information on Statutory Requirements for this position, click the Classification Description link on the job advertisement.
Bargaining Unit Position
This position is not covered by a collective bargaining agreement.