Share this Job


Date:  Dec 2, 2022


The State Personnel System is an E-Verify employer. For more information click on our E-Verify Website.

Requisition No: 743904 

Agency: Management Services

Working Title: SENIOR INCIDENT RESPONDER - 72004158

Position Number: 72004158 

Salary:  $90,000.00 - $110,000.00 

Posting Closing Date: 12/18/2022 

Senior Incident Responder

Florida Digital Service

State of Florida Department of Management Services

This position is located in Tallahassee, FL

(This position will not be filled until a Budget Amendment is formally approved)


Florida Digital Service:

The Florida Digital Service (FL[DS]) was established to propose innovative solutions that securely modernize state government, including technology and information services, to achieve value through digital transformation and interoperability, and to fully support the state’s cloud-first policy. It is also the lead entity responsible for enterprise cybersecurity.


Position Overview and Responsibilities:

The Senior Cyber Defense Incident Responder conducts in-depth analysis of security events and requires the ability to identify indicators of Attack (IOAs) and indicators of compromise (IOCs), perform intrusion and root cause analysis, and proactively take actions to mitigate potential damage to the enterprise. This includes, but is not limited to, the following:

  • Leads analysis and mitigations to security incidents by leveraging detection/response platforms, following security incident response policies, procedures, and playbooks. Conducts analysis, evaluating anomalous/suspicious activity and identifies root cause for security events using endpoint detection and response (EDR) solutions, security information and event management systems (SIEMs), intrusion detection systems, firewall logs, other endpoint, and network security systems and/or logs. Perform advanced threat hunting, malware analysis, and reverse engineering to actively seek out and mitigate anomalies in data. Conducts searches across enterprise systems and networks for IOAs and utilizing IOCs obtained from investigation artifacts or threat intelligence sources. Escalates cybersecurity events according to playbooks and standard operation procedures (SOPs).
  • Leads security incident analysis and determines the scope and impact of incidents, performing real-time analysis of business operations and resources affected, to appropriately assess the risk level of incidents. Develops plans and leads with containment and remediation of threats during incidents. Leads coordination and facilitation of external partner involvement during and after security incidents, to act as a liaison between external entities and state agencies. Participate in the design and execution of vulnerability assessments, penetration tests, and security audits.
  • Effectively supervises performance of direct reports to ensure division and agency performance goals are met or exceeded and complies with the Department’s employment policies and procedures and the State’s statutes and rules.
  • Prepares initial, updates, and final analysis reports for security incidents. Security Incident Analysis Reports based on findings and artifacts discovered during incident investigations.
  • Provide after business hours support in response to security alerts and investigations.


Knowledge, Skills, and Abilities:

  • Knowledge of computer networking concepts and protocols, and network security methodologies.
  • Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
  • Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
  • Knowledge of cybersecurity and privacy principles.
  • Expert knowledge of industry best practices and frameworks (e.g., NIST, MITRE ATT&CK).
  • Ability to work extremely well under pressure while maintaining a professional image and approach.
  • Ability to perform independent analysis of complex problems and distill relevant findings and root causes.
  • Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner.
  • Ability to collect and analyze security incident artifacts across several technology platforms and tools.
  • Develop and publish security incident analysis reports.


Minimum Qualifications:

  • Undergraduate degree in engineering, computer science, or information technology. Graduate degree preferred.
  • Desirable certifications: Security+, CEH, or equivalent certifications.
  • Highly desirable certifications: GCIH, ECIH, CSIH, or equivalent certifications.
  • Ability to sit for extended periods of time. Ability to stand for extended periods of time.
  • Ability to drive and/or fly for long distances. Ability to lift, push and pull up to 30lbs.


Our Organization and Mission:

The Florida Department of Management Services (DMS) is a customer-oriented agency responsible for managing various business-related functions throughout state government. Under the direction of Governor Ron DeSantis and DMS’ Executive Leadership Team, the agency oversees the real estate, procurement, human resources, group insurance, retirement, telecommunications, private prisons, and fleet and federal property assistance programs utilized throughout Florida’s state government. DMS is relied upon to establish, maintain and improve the business processes used by state employees to create a better, not bigger government.  DMS facilitates the delivery of these programs and services and provides tools and training to bolster the efficiency and effectiveness of the state’s workforce. It is against this backdrop that DMS strives to demonstrate its motto, “We serve those who serve Florida.” Under the leadership of DMS Secretary Pedro Allende, DMS’ employees embody four pillars on a daily basis: establishing a process-oriented mindset; challenging the status quo; creating efficiencies; and respecting state employees.


Special Notes:
DMS is committed to successfully recruiting and onboarding talented and skilled individuals into its workforce. We recognize the extensive training, experience and transferrable skills that veterans and individuals with disabilities bring to the workforce.  Veterans and individuals with disabilities are encouraged to contact our recruiter for guidance and answers to questions through the following provided email addresses:
An individual with a disability is qualified if he or she satisfies the skills, experience, and other job related requirements for a position and can perform the essential functions of the position with or without reasonable accommodation. Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must contact the DMS Human Resources (HR) Office at (850) 488-2707. DMS requests applicants notify HR in advance to allow sufficient time to provide the accommodation.
Successful completion of background screening will be required for this position.

Criminal background investigation including fingerprinting and statewide and national criminal history records check per Section 110.1127 Florida Statutes, Chapter 435 Florida Statutes, and the Federal Bureau of Investigation’s CJIS Security Policy CJISD-ITS-DOC-08140-4.5

Pursuant to F.S. 215.422 every officer or employee who is responsible for the approval or processing of vendors’ invoices or distribution of warrants to vendors are mandated to process, resolve, and comply as section 215.422 requires

The State of Florida is an Equal Opportunity Employer/Affirmative Action Employer, and does not tolerate discrimination or violence in the workplace.

Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must notify the agency hiring authority and/or People First Service Center (1-866-663-4735). Notification to the hiring authority must be made in advance to allow sufficient time to provide the accommodation.

The State of Florida supports a Drug-Free workplace. All employees are subject to reasonable suspicion drug testing in accordance with Section 112.0455, F.S., Drug-Free Workplace Act.

Nearest Major Market: Tallahassee