Review Vacancy
AgencyInformation Technology Services, Office of
TitleNYSOC Shift Lead, Manager Information Technology Services 1 (Information Security), ref #5324M
Occupational CategoryI.T. Engineering, Sciences
Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)
Salary RangeFrom $103784 to $127830 Annually
Appointment Type Contingent Permanent
"Other" Explanation Additional details on work shift will be discussed at time of interview.<br /><br />First Shift Lead: Monday – Friday, 9 am – 5 pm <br />Second Shift Lead: Wednesday – Saturday, 11 am – 9 pm<br />Third Shift Lead: Sunday – Wednesday, 11 am – 9 pm<br />
Workday
Minimum Qualifications Bachelor’s degree* with at least 15 credit hours in cyber security, information assurance or information technology and four years of information technology experience, including three years of information security or information assurance experience and two years at a supervisory level.
* Bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience. Experience solely in information security or information assurance may substitute for the general information technology experience.
Preferred qualifications:
• Certifications in one or more of the following:
o Cyber Defense (e.g., GCIA, GCIH, GCED, GSOM, GSOC, GMON, GCDA)
o Cyber Threat Intelligence (e.g., GCTI, CTIA, CCIP, GOSI)
o Information Security Management (e.g., CISSP, CISM, CCISO)
• 4+ years’ experience in one or more of the following:
o working as a senior SOC analyst
o conducting log analysis (e.g., firewall logs, DNS logs, proxy logs, IDS/IPS logs)
o using SIEM technologies to support in-depth investigations
• 2+ years’ experience in one or more of the following:
o Working as a SOC manager or team lead
o participating in cyber incident response
• Strong understanding of enterprise IT environments, including but not limited to system administration, network architecture, operating systems, endpoint detection and response tools, and network-based security solutions (e.g., IDS/IPS, firewalls).
• Strong understanding of the foundations of Information Security, such as the CIA triad, information classification, identity and access management, risk management, vulnerability management, secure architecture and engineering, network security, software development security, etc.
• Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.
• Demonstrated critical thinking, problem solving and analytical skills.
Duties Description Under the direction of senior team members within the Office of Information Technology Services\Chief Information Security Office\Security Operations Center, the incumbent will be a team lead participating in and overseeing a team performing intake, triage, response, and escalation of a wide variety of security events and alerts for NYS system statewide. The incumbent will also participate in the ingestion and response to all forms of vulnerability announcements and threat intelligence received from many third parties such as vendors, DHS CISA, MS-ISAC, NYSP, and other sources of open-source intelligence.
This position requires the incumbent to possess an excellent understanding of the current cyber threat landscape, the tactics, techniques, and procedures commonly leveraged, and the steps necessary to swiftly identify and contain a potential cyber threat. This position also requires the incumbent to have a good understanding of the complexity and architecture design commonly employed in large enterprise IT environments. Additionally, this position requires an incumbent to act with a great deal of independence in alignment with agency and upper-level management strategic direction.
Due to the nature of the work performed by the NYSOC, this position requires availability during specified shift hours to ensure appropriate response to security incidents or other critical activities as needed. The shift hours include:
First Shift Lead: Monday – Friday 9 am – 5 pm
Second Shift Lead: Wednesday – Saturday 11 am – 9 pm
Third Shift Lead: Sunday – Wednesday 11 am – 9 pm
Duties include, but are not limited to:
• Lead and participate in the security event intake, triage, response, and escalation process as a team lead and subject matter expert.
• Monitor multiple sources (phone, email, automated systems, etc.) for new security events.
• Ensure staff follow all established procedures, workflows, and tasks related to NYSOC activities.
• Lead and participate in the threat intelligence response and threat hunting program within the NYSOC to ensure a timely and effective response to new cyber threats.
• Contribute to the development and maintenance of NYSOC runbooks, playbooks, standard operating procedures, and performance standards.
• Create and review technical reports and executive summaries related to cyber security incidents and events.
• Supervise subordinate staff in the proper performance of their duties and perform the full range of administrative supervisory responsibilities.
• Support the Managed Security Services contract to ensure all devices are enrolled and functional, and a focus on tuning performance to increase the quality of alerts.
• Participate in the sharing of vulnerability notifications and cyber threat intelligence with various stakeholders throughout NYS.
• Lead and participate in efforts to appropriately tune the detections and performance of multiple security tools such as intrusion detection/intrusion prevention systems (IDS/IPS), endpoint detection and response (EDR) tools, antivirus/antimalware, and security incident and event management (SIEM) to increase the quality of generated alerts.
• Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security.
• Perform additional duties as assigned.
Additional Comments Background check and fingerprinting are required.
Additional details on work shift will be discussed at time of interview.
*Please note, this position may be filled in either NYC or other locations statewide.
Benefits of Working for NYS
Generous benefits package, worth 65% of salary, including:
• Holiday & Paid Time Off
• Thirteen (13) paid holidays annually
• Up to thirteen (13) days of paid vacation leave annually
• Up to five (5) days of paid personal leave annually
• Up to thirteen (13) days of paid sick leave annually for PEF
• Up to three (3) days of professional leave annually to participate in professional development
Health Care Benefits
• Eligible employees and dependents can pick from a variety of affordable health insurance programs
• Family dental and vision benefits at no additional cost
Additional Benefits
• New York State Employees’ Retirement System (ERS) Membership
• NYS Deferred Compensation
• Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds
• Public Service Loan Forgiveness (PSLF)
• Up to 50% telecommuting
• And many more.
Some positions may require additional credentials or a background check to verify your identity.
Email Address PostingResponses@its.ny.gov
Address
Street Office of IT Services Human Resources Management
Empire State Plaza, Swan Street Building, Core 4, 1st Floor
Notes on ApplyingTo apply, please submit a resume and cover letter indicating that you are applying for Manager Information Technology Services 1 (Information Security), Ref#5324M and include the vacancy ID in your subject line. Please clearly indicate how you meet the minimum qualifications for this position. Your Social Security number may be required in order to confirm eligibility.
Some positions may require additional credentials or a background check to verify your identity. Selected candidates who are new or returning to NYS service may be required to pay for fingerprinting fees. New York State is an equal opportunity employer.