Job Description

Title: Network Security Analyst

Agency: Texas Department of Transportation (TxDOT)

Location: 6230 E Stassney Lane, Austin TX 78744

Solicitation: RITM1787839

Duration: On-going, possibly four years

Contract Type: W2 with benefits

Visa requirements: US Citizen, Greencard Holder, EAD. No H1B

Telework Policy: Client site and telework hybrid

Required/Preferred Skill Sets:

• 3 years, Required - Professional IT experience, with hands on exposure to cloud infrastructure, system administration, or vulnerability remediation.
• 3 years, Required - Experience supporting cloud hosted systems in at least one enterprise cloud environment.
• 3 years, Required - Understanding of vulnerability remediation concepts, including patching, configuration hardening, and compensating controls.
• 3 years, Required - Familiarity with IT service management and change processes.
• 3 years, Required - Strong analytical and documentation skills.
• 3 years, Required - Ability to follow defined security and remediation procedures.
• 3 years, Required - Effective communication and collaboration skills.
• 1 year, Preferred - Exposure to enterprise vulnerability management processes and remediation SLAs.
• 1 year, Preferred - Knowledge of cloud security posture management, security baselines, or risk reporting.
• 1 year, Preferred - Relevant cloud or security certifications.

• A Network Security Analyst I will patch and complete vulnerability remediation as they are essential to protect systems, reduce organizational risk, maintain compliance, and ensure reliable operations.
• This asset will provide vulnerability management and compliance to the TxDOT cloud environment.
• Cloud Vulnerability Remediation Engineer is responsible for identifying, assessing, and remediating security vulnerabilities in cloud environments to reduce enterprise risk and maintain compliance with established security policies.
• Focuses on vulnerability remediation activities across cloud infrastructure and platform services, coordinating patching, configuration changes, and compensating controls in alignment with approved vulnerability management and change management processes.
• The role works closely with Cloud Operations, Security, Application, and Risk teams to ensure vulnerabilities are remediated within required timelines and that cloud workloads remain secure, stable, and compliant.

KPI's:

• Review and analyze vulnerability findings affecting cloud hosted resources identified through approved scanning and security tools.
• Assess vulnerability applicability and risk impact for cloud infrastructure, platform services, and supporting components.
• Plan and execute remediation actions, including patching, configuration changes, and security hardening, in accordance with established remediation timelines.
• Validate remediation results and confirm successful closure of assigned vulnerability tasks.
• Perform cloud based patching and update activities for supported workloads using approved processes.
• Implement cloud security configuration changes required to reduce exposure where vendor patches are unavailable.
• Create, update, and maintain remediation tasks and change records in the system of record to support audit and compliance requirements.
• Ensure remediation activities follow established change management, approval, and validation processes.
• Provide remediation status updates and evidence for security reporting, audits, and leadership reviews.
• Support remediation efforts that require temporary mitigations or compensating controls when permanent fixes are not immediately available
• Partner with Security, Cloud Architecture, and Application teams to resolve complex or cross platform vulnerabilities.
• Identify recurring issues, remediation blockers, or process gaps and recommend improvements.
• Support enterprise efforts to reduce technical debt and improve cloud security posture over time.