Cybersecurity Analyst

Job Location:

• The office for this position is located at the Harry S. Truman State Office Building, 301 W High Street, Jefferson City, MO. 65101.

Why you’ll love this position:

Join a highly skilled and mission-driven cybersecurity team as a Cybersecurity Analyst, where your expertise will play a vital role in protecting the state’s digital infrastructure and defending against evolving cyber threats. In this dynamic position, you will work in a fast-paced environment leveraging advanced tools and collaborating with dedicated professionals to strengthen security operations. The role includes participating in an on-call rotation to ensure 24/7 coverage and rapid incident response, managing and implementing a Security Information and Event Management (SIEM) platform, and creating and fine-tuning alerts to deliver precise threat detection while minimizing false positives. You will also partner with SOC team members to continuously improve security posture and operational efficiency.

• Authorization to work in the United States is a prerequisite of employment. The Office of Administration, Information Technology Services Division (ITSD) will not sponsor applicants for work visas.
  
  
• The salary indicated represents a base pay rate. If the individual selected or the position is eligible for a pay differential (e.g., shift, security, or years of service), it will be added to the total compensation in your paycheck. A pay differential does not raise your base pay.

This position is with the Office of Administration, Information Technology Services Division (OA-ITSD) supporting the Office of Cyber Security.

ITSD Core Values - We Innovate and Partner with Passion, Respect, and Integrity United as #OneTeam.

• Monitor and analyze security alerts and events from multiple sources, including SIEM platforms, firewalls, IDS/IPS systems, and endpoint protection tools, to identify potential threats and vulnerabilities.
• Triage and assess security incidents to determine severity and impact.
• Escalate confirmed events to appropriate teams.
• Actively assist in incident response efforts to ensure timely resolution. Documenting event details, actions taken, and resolution steps in ticketing systems.
• Support threat intelligence gathering and correlating findings with internal security events to strengthen detection capabilities.
• Take ownership of onboarding new SIEM integrations, ensuring seamless connectivity and optimal performance. This includes normalizing diverse data streams for consistency and accuracy and correlating that data with other sources within the SIEM to provide comprehensive visibility and actionable insights.
• Manage and optimize SIEM solutions by creating and tuning alerts to improve detection accuracy and reduce false positives, while maintaining SOC documentation, playbooks, and standard operating procedures.
• Participate in regular SOC shift rotations, including nights, weekends, and holidays, to provide continuous coverage and operational support.

Must have:

• Hands-on experience with SIEM platforms, including on-boarding new data sources, normalizing data, and correlating events for comprehensive threat detection.
• Basic understanding of networking concepts, including TCP/IP networks and protocols.
• Strong analytical and problem-solving skills to assess and respond to complex security incidents.
• Excellent written and verbal communication skills for clear documentation and collaboration.
• Ability to work independently and collaboratively in a team setting.
• Willingness to participate in on-call rotations and work flexible hours to support 24/7 operations.

Preferred:

• Experience working in a Security Operations Center or similar cyber security environment.
• Knowledge of IDS/IPS technologies, endpoint protection tools, log analysis, and the MITRE ATT&CK framework.
• Understanding of incident response methodologies and best practices.
• Successful background check results are required for employment in this position. This may include background checks involving a candidate’s name and/or fingerprints and other screenings as needed for the specific position.

Lack of post-secondary education will not be used as the sole basis denying consideration to any applicant.

Knowledge of IT forensic concepts, domain structures, user authentication, and digital signatures. Knowledge of intrusion detection methods and techniques, and internet architecture. Ability to think methodically and critically. Ability to recognize security intrusions and take appropriate action. Ability to research and identify causes of security breaches.

The classification for this position is Cybersecurity Analyst ; click for more information.

The State of Missouri offers an excellent benefits package that includes a defined pension plan, generous amounts of leave and holiday time, and eligibility for health insurance coverage. Your total compensation is more than the dollars you receive in your paycheck. To help demonstrate the value of working for the State of Missouri, we have created an interactive Total Compensation Calculator. This tool provides a comprehensive view of benefits and more that are offered to prospective employees. The Total Compensation Calculator and other applicant resources can be found here .

If you have questions please contact: ITSDRecruiting@oa.mo.gov

• 

• State of Missouri

Show more