Login

Web Security Analyst (Information System Specialist 7)

Oregon Secretary of State | Salem, OR

Applying to this job will open a new window on the employer's web site to apply there.
Posted Date 1/27/2025
Description

  • omation and containerization tooling (Docker, Kubernetes). 

  

WHAT YOU WILL DO:

The primary purpose of the Web Security Analyst position is to protect our web applications and ensure they are developed and maintained with security in mind. You’ll assess application vulnerabilities and collaborate with teams to promote secure development practices and manage tools to safeguard against emerging threats.

 This is accomplished in part, but not limited to:

  • Operate and manage our dynamic and static application scanning tools to automate the detection of vulnerabilities.

  • Detect security related business logic errors in applications.

  • Monitor and analyze security systems and logs for suspicious activity or breaches.

  • Collaborate closely with development teams to implement and promote secure coding practices.

  • Assist in the configuration and management of our web application firewall to protect against web-based attacks.

  • Contribute to the development and maintenance of security policies, standards, and guidelines.

  • Stay current on emerging web application security threats, vulnerabilities, and best practices, integrating this knowledge into ongoing development and security efforts.

  • Work collaboratively across teams to foster a culture of security awareness and continuous improvement.

For explicit duties, please request a copy of the position description from HR.SOS@SOS.oregon.gov.

 

TO QUALIFY:

Studies have shown that women and people of color are less likely to apply for jobs unless they meet every one of the qualifications listed.  We are most interested in finding the best candidate for the job, and that candidate may be one who comes from a less traditional background.  We would encourage you to apply, even if you don't meet every one of our desired qualifications listed. 

 

Your application must demonstrate education and/or experience in the following:

(a) Seven (7) years of information systems experience in application or software development/engineering. Experience must include responsibilities for planning, designing, developing, and maintaining software in a decoupled architecture. * 

OR

(b) An Associate's degree** or higher in Computer Science, Information Technology, or related field, OR completion of a two (2) year accredited vocational training program in information technology or related field;
AND
five (5) years of information systems experience in application or software development/engineering. Experience must include responsibilities for planning, designing, developing, and maintaining software in a decoupled architecture. *

 

OR
 

(c) A Bachelor's degree** in Information Technology, Computer Science, or related field
AND
three (3) years of information systems experience in application or software development/engineering. Experience must include responsibilities for planning, designing, developing, and maintaining software in a decoupled architecture. *

OR


(d) A Master's degree** in Information Technology, Computer Science, or related field
AND
one (1) year of information systems experience in application or software development/engineering. Experience must include responsibilities for planning, designing, developing, and maintaining software in a decoupled architecture. *

 

*Years of experience in service engineering, microservice, API support or related technologies may substitute for information systems experience if it includes working on application/software development teams to deliver software applications.  

 

**All applicants using their education to meet the position requirements must submit a copy of all transcripts no later than interview to receive credit for college degrees or coursework. Credits must be from an accredited college or university.  Transcripts must include name, coursework and indicate that a degree was obtained.  On-line transcripts are acceptable for application. A copy of official transcripts will be required at time of hire.

 

As the most competitive candidate, your application will demonstrate the following requested skills and experience:

  • Demonstrated skills in communication, verbal and written, with the ability to create presentations of technical subject matter, for both technical and business-technical audiences, that translates critical information effectively.  

  • Strong leadership, interpersonal, and conflict management skills with the ability to establish and maintain effective working relationships with superiors, peers, and other functional teams or business partners. 

  • Planning skills with demonstrated ability to manage and prioritize multiple operational and project tasks at once, including responsibilities under conflicting and time-sensitive deadlines. 

  • Ability to explain complex software development concepts and challenges to general IT team members and complex technical microservice and API concepts to infrastructure and application development teams. This may include translating concepts into tangible prototypes or production systems.  

  • A clear understanding of the relationship between the Software Development Lifecycle (SDLC), front-end and back-end application layers, user interface and user experience, application programming interfaces, and infrastructure automation. 

  • Knowledge of software security best practices and experience implementing security measures into software or services maintained. 

  • General knowledge of data processing techniques and technologies. 

 

ABOUT THE AGENCY:

The Oregon Secretary of State is one of three constitutional offices created at statehood. As an independent constitutional officer, the Secretary of State answers directly and solely to the people of Oregon.

 

The Secretary of State employs approximately 245 full-time, part-time, and temporary employees. The Secretary oversees the functions of seven program divisions: Archives, Audits, Corporation, Elections, Business Services, Information Systems, and Human Resources.

 

OUR MISSION:

Build trust between the people of Oregon and our state government so that public services can make a positive impact in peoples’ lives.

 

OUR VISION:

We envision an Oregon without barriers, where we lead with our values and believe every voice should be heard. We do so by:

  • Building equitable access to our democracy.

  • Making tools easily available to achieve economic success.

  • Ensuring state resources are used sustainably, efficiently and accountable to the public.

  • Honestly acknowledging Oregon’s history.

 

OUR VALUES:

Access for all
We elevate equity through identifying and actively eliminating barriers. 
 

Authenticity
We have integrity and are honest and true to ourselves and others.
 

Clarity 
We share stories, using plain language to increase understanding and impact.
 

Respect
We are committed to serving the people of Oregon and strive to understand all viewpoints. 
 

Service
We are responsive and prioritize the needs of current and future Oregonians we serve. 

 

WHAT’S IN IT FOR YOU:

  • Family Friendly Work Life Balance (paid time off, 12 holidays, 3 personal days, short and long term disability benefits)

  • Take Care of Yourself and Your Family (comprehensive employee benefits, choice of medical plans, vision plan, life insurance, child care flexible spending account, employee assistance program)

  • Celebrate Uniqueness: Diversity and inclusion are cornerstones of our values. We recognize that diversity and inclusion are critical to developing a talented, high-performing workforce and are committed to providing a supportive work environment in which all of our employees can thrive and reach their full potential. We strive to maintain a culture that attracts, develops and retains a diverse workforce that closely mirrors the residents of our community. We learn from and respect the cultures in which we operate and value the uniqueness of individual talents, experiences and ideas.

  • Invest in Your Future: (Pension plan, deferred comp, short and long term disability plan, flexible spending accounts for healthcare and dependent care)

  • Be Appreciated (employee recognition events, agency unique employee recognition program allowing for additional leave options such as vacation buy-out and sick leave roll-over, dynamic employees doing impactful work)

  • ADA: At the Secretary of State, we value community and foster a sense of belonging for our employees

 

ADDITIONAL INFORMATION:

  • Additional applicant screening will depend on the number of qualified applications received. Screening may include skills testing, the results which may be used as part of the applicant evaluation process.

  • Candidates whose background most closely matches the qualifications and required/requested skills of this position will be invited to an interview.

  • Successful candidates must pass a criminal history check. Adverse background data may be grounds for immediate disqualification.

  • Eligible veterans who meet the qualifications will be given veterans' preference.  For further information, please see the following website: Veteran Resources You may also call the Oregon Department of Veterans' Affairs at 1-800-692-9666.

  • The Secretary of State does not offer VISA sponsorships. Within three days of hire, you will be required to complete the US Department of Homeland Security's I-9 form confirming authorization to work in the United States.

  • The salary listed is the non-PERS qualifying salary range. If the successful candidate is PERS qualifying, the salary range will reflect the additional 6%.

 

QUESTIONS?

For additional information you may contact us at HR.SOS@SOS.oregon.gov.
Salary7,013.00 - 11,239.00 Month
Location
Hybrid
Position Type
Full Time
Experience
5-10 years
Job Category
Information Technology

Share this job