Job Specifications
Working Title: Security Analyst
Job Class: Information Technology Specialist 3
Agency: Minnesota IT Services
Job ID: 91081
Location: St. Paul
Telework Eligible: Yes -
Full/Part Time: Full-Time
Regular/Temporary: Unlimited
Who May Apply: Open to all qualified job seekers
Date Posted: 12/29/2025
Closing Date: 01/09/2026
Hiring Agency/Seniority Unit: Minnesota IT Services
Division/Unit: Enterprise Security
Work Shift/Work Hours: Day Shift
Days of Work: Monday - Friday
Travel Required: No
Salary Range: $33.38 - $54.87 / hourly; $69,697 - $114,568 / annually
Job Class Option: Information Security
Classified Status: Classified
Bargaining Unit/Union: 214 - MN Assoc of Professional Empl/MAPE
FLSA Status: Nonexempt
Designated in Connect 700 Program for Applicants with Disabilities: Yes
The work you'll do is more than just a job.
At the State of Minnesota, employees play a critical role in developing policies, providing essential services, and working to improve the well-being and quality of life for all Minnesotans. The State of Minnesota is committed to equity and inclusion, and invests in employees by providing benefits, support resources, and training and development opportunities.
Join the 2,800+ professionals of Minnesota IT Services (MNIT) who connect Minnesotans to services that will improve their lives. This position will be part of the Enterprise Security team, which embeds security protection statewide.
The Application Security Analyst strengthens the security of software systems and supports program integrity by integrating security throughout the software development lifecycle (SDLC) and developing fraud-detection analytics for benefit programs. This role improves the security posture of applications, reduces vulnerabilities, prevents fraud, and ensures compliance with state and federal standards — protecting sensitive data and public resources.
Primary Responsibilities
Integrate security into each phase of the SDLC and promote secure coding practices with development teams.
Develop fraud-detection controls, risk indicators, and analytic queries to identify suspicious behavior across applications and logs.
Conduct code reviews, vulnerability scans, and remediation coordination with developers and vendors.
Ensure alignment with required security standards and regulations, documenting compliance evidence and resolving gaps.
Automate security testing and monitoring through CI/CD tools, scripts, and platform integrations.
Collaborate across teams (developers, QA, security, vendors, and program staff) to embed security controls and reduce fraud risks.
Produce dashboards, reports, and documentation to support investigations, audits, and security decision-making.
Deliver security guidance and training that improves secure development awareness and reduces recurring vulnerabilities.
This position requires an employee to be onsite at Saint Paul, Minnesota at least 50% of the time, with some opportunity to perform work from a telework location. Telework for Minnesota IT Services is available on a limited basis. Employees will be required to meet current telework eligibility requirements.
Minimum Qualifications
Candidates must clearly demonstrate all of the following qualifications in their resume. Resume tips here.:
Position requires a minimum of three (3) years of IT related experience in application security, secure software development, or fraud detection and analytics within enterprise systems.
Experience must include:
Hands-on experience implementing security practices in the Software Development Life Cycle (SDLC), including secure coding, code review, or security testing.
Experience with vulnerability identification and remediation (such as SAST, DAST, code review, or dependency scanning).
Experience collaborating with developers, IT staff, or security teams to resolve security findings or improve application security controls.
Experience with security standards, frameworks, or compliance requirements (such as NIST, OWASP, IRS Pub 1075, HIPAA, or similar).
Demonstrated ability to communicate clearly and effectively in a manner that facilitates mutual understanding.
Customer-focused approach grounded in active listening, empathy, and solution-oriented problem-solving to deliver positive user experience
Education in Information Technology (IT) or an IT related field may substitute for experience as follows: a master’s degree for eighteen (18) months of experience; a bachelor’s degree for one (1) year; and an associate’s degree for six (6) months.
Preferred Qualifications
Experience with fraud analytics, program integrity, or monitoring for anomalous behavior in benefit or transactional systems.
Experience with secure development practices in modern application platforms (e.g., .NET, Java, or cloud-native architectures).
Experience integrating security tools into CI/CD pipelines or using automation for security monitoring or testing.
Experience with business intelligence or reporting tools (su
About the Company
Minnesota IT Services (MNIT), led by Minnesota's Chief Information Officer, is the Information Technology (IT) agency for Minnesota's executive branch, providing the full range of IT services to over 70 agencies, boards, and commissions. MNIT also makes available a subset of services to other Minnesota government entities and education institutions. MNIT sets IT strategy, direction, policies and standards for the State. We manage over 2,000 distinct applications, both citizen-facing and back-office. We build, maintain and se...
Know more