Business Analyst III (Security Outreach and Development Analyst)

Job Posting:


Open Until Filled

Position Title:
Business Analyst III (Security Outreach and Development Analyst)


Military Occupation Specialty Code:
Army-25B; Navy-682X; Air Force-3D0X1


Number of Vacancies:

Chief Information Security Office 

Salary Range:
$4917.00 - $6250.00/ monthly

Grant-Funded through 08/31/2021

Hours Worked Weekly:



Agency Address:
300 W. 15th, #1300, Austin, TX 78701

Web site:

Refer Inquiries to:
Human Resources

(512) 463-5920 or (512) 475-4612

  • Select “Apply Online” to apply for the job at
  • You must create a CAPPS Career Section candidate profile or be logged in to apply
  • Update your profile and apply for the job by navigating through the pages and steps
  • Once ready, select “Submit” on the “Review and Submit” page.

Applicants must provide in depth information in the EXPERIENCE & CREDENTIALS section to demonstrate how they meet the position qualifications. Incomplete applications may result in disqualification.

Resumes may be uploaded as an attachment but are not accepted in lieu of the information required in the EXPERIENCE & CREDENTIALS section of the application.

Interview Place/Time: Candidates will be notified for appointments as determined by the selection committee.

Notice: Section 651.005 of the Government Code requires males, ages 18 through 25 years, to provide proof of their
Selective Service registration or proof of their exemption from the requirement as a condition of state employment.

The Department of Information Resources does not exclude anyone from consideration for recruitment, selection, appointment, training, promotion, retention, or any other personnel action, or deny any benefits or participation in programs or activities, which it sponsors on the grounds of race, color, national origin, sex, religion, age or disability.  Please call 512-463-5920 to request reasonable accommodations.

The Texas Department of Information Resources serves a wide variety of customers by providing technology leadership, solutions, and value to State of Texas government agencies, higher education, and local government entities of all sizes to facilitate the fulfillment of their core missions. This role within the Chief Information Security Office combines progressive information security program development, implementation, and management expertise with an opportunity to leverage an entrepreneurial determination to evolve information security within state government.

The individual in this grant funded role will perform advanced (senior-level) analysis work in a variety of functions, such as, planning, implementing, and monitoring security program elements and services that support government organizations throughout the state of Texas in the protection of their information resources. This individual leads the outreach and security development efforts across local government entities, and is responsible for planning, implementing, and managing programs to create cybersecurity materials and develop resources for local governments to improve cybersecurity maturity. The ideal candidate will be a well-rounded professional with a good understanding of information technology and able to support additional developments within the Texas Information Sharing and Analysis Organization (ISAO). Works under limited supervision, with considerable latitude for the use of initiative and independent judgment.

This position relies on grant funding that is contingent upon the availability of appropriated funds as well as the outcome of the annual application review conducted by the Office of the Governor. 

The ideal candidate will have the ability to highlight their strengths in the following functions:
  • Supports the statewide services efforts to assist and implement systems, reports, and programs that deliver services to governmental entities across the state and help DIR and its customers fulfill statutorily mandated deadlines and deliverables.
  • Tracks and ensures delivery of cybersecurity threats, vulnerabilities, information received by DIR to relevant stakeholders via the ISAO.  Assists the division in the implementation of additional tools to deliver ISAO information to stakeholders.
  • Helps provide oversight and governance to governmental entities to assist them in meeting comprehensive infrastructure, facilities, and data security contractual obligations.
  • Works with division staff and external stakeholders on improving the cybersecurity of the state.
  • Ensures division website content is accurate, up-to-date, and effectively communicated. Ensures division email boxes are monitored and maintained.
  • Functions as a cybersecurity generalist able to support and backfill work across the entire team.
  • Advises customers and internal stakeholders on security configuration issues and best practices.
  • Performs other related duties as assigned.

  • Graduation from an accredited four-year college or university with major coursework in information technology security, computer information systems, computer science, management information systems, or a related field.
  • Additional work-related experience may be substituted for formal education on a year-for-year basis.
  • High School diploma or equivalent certificate required.

  • Four (4) years of progressively responsible experience in the IT industry.

  • Experience with operating systems and website technologies.
  • Experience conducting analysis of cybersecurity information, and the ability to prepare and deliver oral and written presentations of that analysis.
  • Experience with State and Federal regulations and standards, including the National Institute of Standards and Technology (NIST) 800 series publications, Texas Administrative Code § 202, and the Federal Information Security Management Act (FISMA)
  • Experience with Texas state government.

  • If not already certified, must obtain within one year of employment a Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), GIAC Security Essentials Certification (GSEC), or similar certification, or serve as a SME on a certification creation committee or equivalent.
  • Certification requirement may be obtained by attending DIR’s InfoSec Academy

  • Knowledge of data communications, networking, operating systems, and systems analysis
  • Knowledge of and ability to apply information security best practices
  • Knowledge of principles, practices, and techniques of management controls and information security protections as applied to state government
  • Knowledge of security incident response processes
  • Knowledge of Texas State government and related information technology processes
  • Knowledge of security metrics, benchmarking activities and expectations, and security operational monitoring processes
  • Ability to handle multiple projects and initiatives
  • Ability to prepare technical issue papers and research reports, and effectively deliver oral presentations and written reports to IT and non-IT management
  • Ability to advise technical and non-technical staff at stakeholder entities
  • Ability to travel as necessary to support agency requirements
  • Ability to understand, follow and convey oral and/or written instructions
  • Ability to establish and maintain effective and cordial working relationships at all organizational levels, including agency management, direct supervisors, co-workers, internal and external customers
  • Ability to communicate both verbally and in writing; in a clear and concise manner
  • Ability to work independently and as part of a team, and to support and contribute to a cohesive team environment
  • Ability to work a flexible schedule to meet required deadlines
  • Ability to work under pressure and exacting schedules to complete assigned tasks
  • Ability to comply with all agency policies and applicable laws
  • Ability to comply with all applicable safety rules, regulations and standards

  • Proficiency in the use of a personal computer and applicable software necessary to perform work assignments e.g. word processing, spreadsheets (Microsoft Office preferred)

  • Regular and punctual attendance
  • Criminal background check

  • Frequent use of a personal computer, copiers, printers and telephones
  • Frequent work under stress, as a team member, and in direct contact with others
  • Frequent standing, walking, sitting, listening and talking
  • Occasional bending and stooping
  • Occasional lifting and climbing