Please note: State agencies that contact job applicants do not usually request personal or financial information via text message or over the phone in connection with your response to a job posting. If you are contacted for such information by these methods, or any other method, please verify the identity of the individual before transmitting such information to that person.
Note: For questions about the job posting, please contact the agency that posted this position by using the contact information provided on the "Contact" tab for the position.

Review Vacancy

Date Posted 08/16/17

Applications Due08/27/17

Vacancy ID43083

NY HELPNo

AgencyInformation Technology Services, Office of

TitleProject Assistant, NS (Equated to SG-23), Ref. #18439

Occupational CategoryI.T. Engineering, Sciences

Salary GradeNS

Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)

Salary RangeFrom $0 to $90876 Annually

Employment Type Full-Time

Appointment Type Temporary

Jurisdictional Class Competitive Class

Travel Percentage 0%

Workweek Mon-Fri

Hours Per Week 37.5

Workday

From 9 AM

To 5 PM

Flextime allowed? No

Mandatory overtime? No

Compressed workweek allowed? No

Telecommuting allowed? No

County Albany

Street Address AESB 80 South Swan Street, Floor 7

City Albany

StateNY

Zip Code12210

Minimum Qualifications Five or more years of experience in Information Security and Project Management, including experience in the following:
• Conducting HIPAA audits and risk assessments in a senior or lead role.
• Creating cyber security policies, standards, guidelines, and associated procedures.
• Participating in Cyber Incident Response in a senior or lead role.


The following degrees, preferably in Information Security, Computer Science, or related discipline, may substitute for the general experience as indicated:
• Associate’s degree and four years of experience
• Associate’s degree including 15 semester credit hours in computer science or related field and three years of experience
• Bachelor’s degree and three years of experience
• Bachelor’s degree including 15 semester credit hours in computer science or related field and two years of experience
• Master’s degree in computer science or related field substitutes for an additional year of experience
• Doctorate in computer science or related field substitutes for an additional two years of experience


Preferred Qualifications:
• Experience in remediating Cyber Security Risk based on the NIST Special Publication 800-53r4 security framework, which has been adopted by New York State as the minimal best practices for Information Security
• One or more of the following Information Security certifications
o (ISC)² Certified Information Systems Security Professional (CISSP)
o ISACA Certified Information Security Manager (CISM)
o ISACA Certified Information Systems Auditor (CISA)
• Work well independently as well as part of a team within a fast-paced environment to analyze, design, and deliver rapid solutions
• Communicate effectively with both technical and non-technical individuals to effectively describe and develop user requirements and technical capabilities for stakeholders and developers

Duties Description The Public Safety Cluster (PSC) is tasked with measuring and facilitating compliance with the NIST Special Publication 800-53 family of controls by three of its customer agencies, the Department of Criminal Justice Services (DCJS), the Division of State Police, and the Department of Homeland Security and Emergency Services (DHSES).

Under the direction of a Manager Information Technology Services 1, SG27 within the Public Safety Cluster (PSC) Information Security Office (ISO) located in Albany, the Project Assistant will function as the lead technician for incident response and will direct customer security services.

Duties performed by the Project Assistant in support of these efforts include, but are not limited to, the following:
• Develop a program to achieve compliance with NIST SP 800-53r4 with DCJS, NYSP, and DHSES.
o Function as the lead resource and subject matter expert on the interpretation and implementation of NIST security controls.
o Meet with Agency Risk Coordinators, Executive staff, and other key personnel to explain the controls and what must be done to implement them.
o Ensure the creation of necessary policies and procedures, in conjunction with Agency staff.
o Develop a Plan of Action with Milestones (POAM) for implementation, and assess the effectiveness of the control implementation.
o Prepare a Continuity Book as a final collection of all completed policies and procedures.
• Lead HIPAA risk assessment and audit activities within PSC.
• Engage with other PSC and ITS Enterprise staff as needed to gather information, resolve issues, and implement new procedures related to security issues.
• Meet with PSC and Agency management and business directors to brief them on project status, provide regular reports.
o Serve as point of contact for PSC Agency questions and concerns related to cyber security
• Serve as the lead resource for PSC cyber incident response.
o Work closely with EISO Cyber Incident Response Team (CIRT), State Police, and FBI as necessary
o Provide frequent updates during incidents
o Prepare a detailed incident report outlining all aspects of the incident, including lessons learned and recommendations moving forward.

Additional Comments Some positions require fingerprinting.

Some positions may require additional credentials or a background check to verify your identity.

Name Amy Sacco

Telephone 518-473-0398

Fax 518-402-4924

Email Address HR.Recruitment@its.ny.gov

Address

Street NYS Office of IT Services

Empire State Plaza, PO Box 2062

City Albany

State NY

Zip Code 12220

 

Notes on ApplyingPlease submit a clear, concise cover letter and resume indicating that you are applying for Project Assistant, Ref. #18439 and describing how you meet the minimum qualifications no later than August 27, 2017.

Printable Version