Job Description

Cybersecurity Enterprise Architect

State of Connecticut, Judicial Branch

East Hartford

The State of Connecticut Judicial Branch is seeking an experienced Cybersecurity Enterprise Architect (Information Technology Enterprise Specialist) to join our Cybersecurity unit. In this role, you will be tasked with designing and implementing an advanced Enterprise monitoring solution utilizing Microsoft Sentinel and tuning it with existing security products such as Windows Defender ATP and Palo Alto firewall products. The primary objective of this role is to ensure the security of the enterprise by detecting and preventing cyber threats, while providing valuable data analytics and visualizations for IT stakeholders and leadership. As the successful candidate, you will play a crucial role in shaping the future of the organization\'s cybersecurity strategy.

Duties include, but are not limited to:

• Experience in information security including areas such as Governance, Network and Perimeter Security, EDR/MDR, Identity and Access Management, email security, SIEM, IDS/IPS, Cloud Security.
• Knowledge of how Microsoft 365 technologies interact, primarily Azure Active Directory and Microsoft 365 collaboration workloads with a focus on security.
• Strong Palo Alto firewall skills as well as Palo Alto Networks NGFW, Network ACLs, Azure NSGs, AWS security groups.
• Enable SIEM solution like Microsoft Sentinel data connectors and associated workbooks such as Office 365, Azure logs, Palo Alto firewall, Imperva, Citrix NetScaler, Cisco routers.
• Configuration, maintenance, and support of additional firewall services such as URL filtering, Malware Sandboxing Analysis, Threat Intelligence Feeds, Threat Prevention, User ID.
• Provide Palo Alto firewall log correlation and integration with SIEM solution like MS Sentinel and create dashboards for retroactive security incident investigations.
• Responsible for the technical development of recovery and business continuity plans \xe2\x80\x93 ensures that regardless of incident the security infrastructure can survive system shocks and external or internal events.
• Work closely with Security Architecture and other Technology leaders to define, market and implement the 3\xe2\x80\x935-year technology roadmap inclusive of the security technology platform.
• Support the integration with other security tools such IDS/IPS, SIEM, NACs, VPN with existing systems
• Lead and conduct targeted security risk assessments of Active Directory, Microsoft Azure, network, system, and application technologies against industry (e.g., NIST, CIS, and CSA) and vendor specific (e.g. Microsoft, Palo Alto) best practices.
• Experience building and aligning a security program to a security framework such as NIST-CSF, NIST 800-53, or CIS Critical Security Controls.

Preference will be given to those who possess the following:

8+ years\xe2\x80\x99 experience with Microsoft 365 products.

5+ years of focused Palo Alto security engineering experience.

4+ years of experience with cyber threat hunting, incident response and digital forensics and how various systems can integrate with SIEM solutions.

Knowledge of frameworks like NIST, CIS, CISA, MITRE.

Detailed practical knowledge of Internet protocols, firewalls, proxies, and intrusion detection/prevention systems.

Ability to conduct multi-step breach and investigative analysis to trace the dynamic activities associated with advanced threats.

Experience with cybersecurity\xe2\x80\x99s five functions (Identify, Protect, Defend, Respond and Sustain)

Advanced event analysis leveraging Microsoft Sentinel SIEM

Expert level knowledge to analyze TCP Dumps / Packet Captures using Wireshark

Knowledge of Azure Cloud technologies and M365 security toolsets

Knowledge of Palo Alto Networks NGFW and Azure NSGs

In addition to the preferred qualifications, the successful candidate will have a positive attitude; proficient verbal skills; a collaborative approach to working in a close team environment; willingness to assist and share knowledge with peers and subordinates; strong writing skills, submit reports, proposals, and postmortem analyses.

This position qualifies for hybrid remote work.

Salary Range: $100,844 - $149,805/year \xe2\x80\x93 plus State of Connecticut benefits.

Starting salary may be commensurate with experience.

The State of Connecticut Judicial Branch offers its employees a top notch array of health and retirement benefits including but not limited to paid holidays, vacation, sick and personal leave, group life insurance, 457 Deferred Compensation, voluntary flexible spending account programs, discounted auto and home insurance policies and long and short term disability.

EXPERIENCE AND TRAINING

General Experience: Ten (10) years of experience in information technology (IT), programming, systems/software development or another IT related field demonstrating a growing and broadening base of knowledge and experience.

Special Experience: Two (2) years of the General Experience must have been at the expert working level with responsibility for performing a full range of highly complex technical support functions.

Substitutions Allowed: * College training in management information systems, computer science, electrical engineering or information technology related area may be substituted for the General Experience on the basis of fifteen (15) semester hours equaling six (6) months of experience to a maximum of four (4) years for a Bachelor\xe2\x80\x99s degree.

• A Master\xe2\x80\x99s degree in management information systems, computer science, electrical engineering or information technology related area may be substituted for one (1) additional year of the General Experience.

• Relevant certification in management information systems, computer science, electrical engineering or information technology related area may be substituted for up to six (6) months of the general experience.

SPECIAL REQUIREMENT: Incumbents may be required to travel within the State in the course of their daily work.

Applications must be received by May 30, 2023. Applications must be submitted through the on-line application site at: . Resumes or paper applications will not be accepted.

Careers at the Branch play an essential role for the public and society. Our meaningful, challenging, and interesting positions have a long-lasting effect that serves to advance justice and ultimately provides for the greater good of all.

Please reference the posting number 23-4000-024

AA/EOE
recblid mvr4k02fah0aadrnduxcnd51c9f5er

State of Connecticut Judicial Branch