MicroNet Template

Cybersecurity Analyst

Posted: 03/13/2026
Information Technology

CYBERSECURITY ANALYST
INNOVATION AND TECHNOLOGY
CITY OF WORCESTER


The City of Worcester is seeking qualified applicants for a Cybersecurity Analyst in the Innovation and Technology Department. The Cybersecurity Analyst plays a critical role in protecting the municipality’s digital infrastructure. Under the direction of the Cybersecurity Manager, this position is responsible for the day-to-day operation of security tools, identifying and responding to threats, and supporting compliance with local, state, and federal regulations. The Cybersecurity Analyst collaborates with IT, legal, public safety, and other departments to reduce risk, enhance resilience, and ensure the secure delivery of public services.
The ideal candidate is a mid-level cybersecurity professional with 3–5 years of hands-on experience with SIEM, firewalls, and endpoint tools, who is skilled in real-time threat detection, incident response, and regulatory compliance. They communicate clearly with both technical and non-technical teams and are driven by public service—protecting municipal systems and keeping Worcester’s community secure.
 
This position is in-person in Worcester, MA; relocation costs are not covered, but candidates outside the area are encouraged to apply.
 
Bilingual applicants are encouraged to apply.
 
ESSENTIAL ELEMENTS:
  • Participate in the planning and design of enterprise security architecture and business continuity/disaster recovery plans under the direction of the Cybersecurity Manager.
  • Contribute to the development and maintenance of cybersecurity policies, standards, baselines, guidelines, and procedures.
  • Stay current with industry trends, threat intelligence, and emerging technologies to inform security strategy.
  • Recommend and assist in the selection of new security solutions or enhancements to existing tools.
  • Perform deployment, integration, and initial configuration of new or upgraded security solutions in accordance with best practices and internal standards.
  • Maintain detailed knowledge of the IT security industry, including awareness of new threats and mitigation techniques.
  • Monitor and maintain the secure configuration and operation of all in-place security solutions and monitor security posture of other IT assets (e.g., workstations, servers, network devices).
  • Analyze logs and alerts from SIEM, IDS/IPS, and endpoint protection systems to detect and respond to threats in real time.
  • Conduct vulnerability assessments, penetration tests, and security audits; coordinate remediation with system owners.
  • Maintain operational baselines and ensure compliance with internal security documentation.
  • Provide on-call support for security-related incidents and user inquiries.
  • Lead or assist in incident response activities, including containment, investigation, documentation, and post-incident reviews.
  • Maintain and test the incident response and disaster recovery plans.
  • Track and report on key risk indicators (KRIs) and security metrics to IT leadership.
  • Ensure systems and processes comply with applicable regulations (e.g., CJIS, HIPAA, MA 201 CMR 17.00).
  • Assist with internal and external audits, including evidence collection and remediation tracking.
  • Maintain documentation for security controls, risk assessments, and audit readiness.
  • Partner with departments to assess cybersecurity needs for new applications and services.
  • Work closely with and support the Cybersecurity Training & Support Specialist.
  • Participate in regional cybersecurity working groups and information-sharing initiatives.
 REQUIRED KNOWLEDGE, SKILLS AND ABILITIES:
  • Proficiency with SIEM platforms (e.g., Splunk, Microsoft Sentinel).
  • Familiarity with cloud security (e.g., Microsoft 365, Azure AD).
  • Ability to prioritize and execute tasks in high-pressure environments.
  • Strong interpersonal skills to engage and coordinate with employees at all levels and across all departments.
  • Strong understanding of IP, TCP/IP, DNS, VPNs, and secure network architecture.
  • Experience with vulnerability management tools (e.g., Tenable, Qualys) and patch management.
  • Proven analytical and problem-solving abilities.
  • Strong written, oral, and interpersonal communication skills.
  • Ability to present technical concepts in business-friendly language.
  • Highly self-motivated, detail-oriented, and collaborative.
  • Regular onsite attendance is required.
  • Working knowledge of operating systems and commercial applications used in municipal environments.
 MINIMUM REQUIREMENTS:
  • Bachelor’s degree in Cybersecurity, Computer Science, or a related field; OR
    • An equivalent combination of education, training and three (3) years of experience which provide the required knowledge, skills and abilities to perform the required duties of the position will be considered in lieu of the above-mentioned requirements.
  • Three (3) years of experience in cybersecurity.
  • Two (2) years of experience with SIEM platforms (e.g., Splunk, Microsoft Sentinel).
  • Two (2) years of experience with vulnerability management tools and patch management.
  • Experience with firewalls, and endpoint protection tools.
  • At least one industry-recognized certification (CompTIA Security+, GIAC Security Essentials (GSEC), Microsoft Certified Systems Administrator: Security, Associate of (ISC)² or CISSP (Associate level acceptable), e.g.)
  • Must be eligible for CJIS clearance and pass a background check.
  • Reliable transportation to travel between required locations in a timely manner
  • Valid driver’s license
PREFERRED QUALIFICATIONS:
  •  Two (2) years of work with public sector data systems and regulatory requirements (e.g., CJIS, HIPAA, MA 201 CMR 17.00).
  • Five (5) years of experience in cybersecurity
  • Two (2) years of experience in cloud security (e.g., Microsoft 365, Azure AD).
  • Two (2) years of experience working with operating systems and/or commercial software applications commonly used in municipal environments
 
SALARY RANGE: $93,232 - $122,661 annually, full-time, exempt, with an excellent benefits package. 
 
To apply, please visit: www.worcesterma.gov/employment or send resume and cover letter to: City of Worcester, 455 Main Street, Room 109, Worcester, MA 01608. OPEN UNTIL FILLED, applications received prior to or on FRIDAY, MARCH 27, 2026, will receive preference. Preference is given to Worcester residents. The City of Worcester is an equal opportunity, affirmative action employer. Women, minorities, people with disabilities and protected veterans are encouraged to apply. Direct inquiries to: City Hall, Human Resources, Room 109, 508-799-1030, Hiring@worcesterma.gov.

 

Cybersecurity Analyst
City of Worcester

Additional Postings available from City of Worcester

Payroll and Time Tracking Analyst

Deputy Assessor

Part-time Circulation Assistant

Youth Worker II

Assistant Site Coordinator

Mentorship Leadership Experience Assistant Program Coordinator

Site Coordinator

Director of Veterans Services

Human Resources Intern

Senior Accountant

Career Counselor