Responsibilities
- Perform risk evaluations, threat simulations, and vulnerability examinations for Department of Justice systems.
- Organize code review processes and manage static and dynamic application security testing (SAST/DAST).
- Verify security settings in both cloud-based and on-premises infrastructure.
- Create and update System Security Plans (SSPs) and related compliance records.
- Work with development teams to integrate secure software development lifecycle (SDLC) methods and resolve security flaws.
- Track adherence to Department of Justice, state, and federal cybersecurity regulations including NIST, CJIS, and IRS 1075.
- Maintain awareness of evolving cyber threats, defensive technologies, and industry best practices.
Other
- This position is designated as limited duration, ending on June 30, 2027.
- Finalists are required to complete a thorough employment reference verification and a fingerprint-based criminal history review.
- A driver history evaluation will be conducted for roles that involve operating a state vehicle.
- Any adverse findings from background checks will be reviewed to assess suitability for the role.
