Cybersecurity Analyst

• Security Monitoringand IncidentResponse:Monitor security alerts, logs, and tools forpotentialthreats. Investigate and respond to incidentsin accordance withdefined processes, ensuringtimelyescalation and documentation. Contribute to after-action reviews and continuous improvement of detection and response activities.
• VulnerabilityandPatch Management: Perform routine vulnerability assessments, track remediation progress, and communicate risk-based priorities. Maintain dashboardsandmetrics andhelpimprovepatching processesthrough cross-team collaboration.
• Governance,Risk,andCompliance: Assist with quarterly reporting, audits, evidence collection, and policy implementation. Partner with leadership to strengthen security controls and support risk assessments and compliance efforts.
• SecurityAwarenessandProject Collaboration: Promote security best practices through communication, training, and consultative support. Serve as a security advisor for technology projects, procurements, and operational changes, helping ensure security isconsidered early in planning and implementation.

• Information security fundamentals such as defense-in-depth, least privilege, secure configuration, and threat landscapes.
• Common cybersecurity frameworks and standards (e.g., NIST CSF, CIS Critical Security Controls).
• Networking fundamentals, including TCP/IP, DNS, VPN, VLANs, and firewalls.
• Enterprise technologies such as Windows and Linux server environments, Active Directory, Microsoft 365, Azure, and endpoint management tools.
• Vulnerability scanning, patch management, and system hardening approaches.
• Security monitoring technologies,including SIEM, EDR,and intrusion detection and prevention systems.
• Incident response processes, evidence handling, and foundational forensic principles.
• Applicable state/federal regulations and compliance requirements related to information security.

• Identifying and validating security events through analysis of logs, alerts, and network data.
• Using enterprise security tools such as EDR, SIEM/log management, vulnerability scanners, and threat intelligence sources.
• Producing clear and actionable reporting, dashboards, and documentation.
• Using automation or scripting (e.g., PowerShell, Python) to streamline tasks, reporting, andmonitoring.
• Managing competing priorities in a dynamic environment and meeting deadlines.
• Communicating clearly with both technical and non-technical stakeholders.
• Building effective relationships and collaborating across multidisciplinary teams.

• Analyze complex technical issues, assess risk, and recommend practical, business-aware mitigation strategies.
• Maintain strict confidentiality of sensitive information and handle security and audit data responsibly.
• Adapt to emerging threats, technologies, and industry best practices.
• Follow established policies while alsoidentifyingopportunities to improve efficiency and automation.
• Work independently with sound judgmentandappropriate escalation.
• Influence outcomes without direct authority and support a positive security culture across the organization.

General office environment; some travel (occasional weekend and evening work), hours worked over 40 in a single week earn comp time.

Benefits include Florida Retirement System, paid parental leave, health insurance, dental insurance, life insurance, long-term disability, paid leave and holidays, professional development, wellness program, and eligible for public service student loan forgiveness program.

Your application will receive careful consideration and, if selected for an interview, you will be contacted to schedule an appointment. St. Johns River Water Management District participates in E-Verify. E-Verify is an internet-based system that allows businesses to determine the eligibility of their employees to work in the Unites States.