Position Information

NY HELPYes

AgencyState Comptroller, Office of the

TitleInformation Technology Specialist 2 Information Security, Item # 00706

Occupational CategoryI.T. Engineering, Sciences

Salary Grade14

Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)

Salary RangeFrom $65001 to $82656 Annually

Employment Type Full-Time

Appointment Type Contingent Permanent

Jurisdictional Class Non-competitive Class

Travel Percentage 0%

Schedule

Workweek Mon-Fri

Hours Per Week 37.50

Workday

From 8 AM

To 4 PM

Flextime allowed? No

Mandatory overtime? No

Compressed workweek allowed? No

Telecommuting allowed? Yes

Location

County Albany

Street Address Office of the State Comptroller

110 State Street

City Troy

StateNY

Zip Code12236

Job Specifics

Minimum Qualifications Bachelor’s degree* in Information Security, Cyber Security, Digital Forensics, Information Assurance, or Information Technology related field, OR bachelor's degree with 15 credit hours in Cyber Security, Information Assurance, or Informational Technology AND two years of information security related technology experience**.

* Appropriate information security or information assurance experience may substitute for the bachelor’s degree on a year-for-year basis; an associate’s degree requires an additional two years of information technology, information security, or information assurance experience.

** Experience solely in information security or information assurance may substitute for the general information technology experience.


Non-Competitive Notes:

If the number of interested candidates who meet the promotional qualifications is three or less, the agency; at its discretion, may nominate one or more of the candidates for a noncompetitive promotion without further examination under the provisions of Section 52.7 of the Civil Service Law.

If the number of interested candidates who meet the promotional qualifications is more than three, the agency; at its discretion, may nominate one or more of the candidates for a provisional promotion under the provisions of Section 65 of the Civil Service Law

Duties Description • Assist with the agency’s infrastructure and application vulnerability scanning solutions (external and internal) including performing vulnerability scans, identifying and remediating issues, presenting vulnerability data, and working with the appropriate teams to resolve issues.
• Assist with managing Tenable.sc and Qualys scanning products including their configuration, maintenance, upgrades, and troubleshooting.
• Review and perform analysis on vulnerability scanning results.
• Perform analysis and provide guidance on vulnerabilities disclosures, vulnerabilities reports, and internal assessments.
• Monitor the threat landscape for changes impacting weaknesses, assess the risk to the agency, and work to address the risk with the appropriate technical groups.
• Assist with the agency’s process to deploy and review vulnerabilities on new servers and applications.
• Track compliance issues and verify remediation efforts with the appropriate groups.
• Assist with monitoring OSC’s on-prem and cloud environments for out of compliance patches and misconfigurations impacting security.
• Provide security assistance to the Chief Information Office (CIO) teams in evaluating security controls and provide secure solutions.
• Research security related items for agency projects.
• Assist with meetings on various security related topics (attending, organizing, taking notes, and assessing security controls).
• Assist with gap analysis, determine which policies and standards are not being complied with, work with groups to address areas that need to be improved, etc.

Additional Comments Knowledge, Skills, and Abilities:
• Working knowledge of:
o Information security, offensive security, network vulnerability assessments, and vulnerability scanning.
o Networking, routers, firewalls, and operating systems.
• Ability to maintain sensitive and confidential information.
• Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts.
• Demonstrated critical thinking, problem solving and analytical skills.

Telecommuting:
The Office of the New York State Comptroller (OSC) supports telecommuting where it is reasonable to do so based upon the agency’s mission and operational needs. Generally, employees new to OSC will be restricted from telecommuting for at least 8 calendar weeks. After the initial 8 calendar week restriction, if an employee’s primary residence location, duties, and work performance are aligned with telecommuting and operational needs they may be allowed to do so. Generally, OSC employees may telecommute up to 5 days per pay period but may be approved to telecommute less.

Reasonable Accommodation:
The NYS Office of the State Comptroller provides reasonable accommodations to applicants with disabilities. If you need reasonable accommodation for any part of the application and hiring process, please notify the Division of Human Resources at (518) 474-1924.

Equal Opportunity Employment:
The Office of the NYS Comptroller values a workforce with a broad, diverse range of backgrounds and perspectives. All employees are expected to contribute to a professional environment focused on self-evaluation and improvement, as well as acceptance and support of coworkers.

Some positions may require additional credentials or a background check to verify your identity.

Contact Information

Name Meredith Holmquist

Telephone (518) 474-1924

Fax (518) 486-6723

Email Address Jobs@osc.ny.gov

Address

Street Office of the State Comptroller, Office of Human Resources

110 State street, 12th Floor

City Albany

State NY

Zip Code 12236

 

Notes on ApplyingSubmit a clear, concise cover letter, resume, any unofficial transcripts, and a completed copy of this template, https://www.osc.ny.gov/files/Jobs/docs/00705-information-technology-specialist-2-info-sec-mq-template-september-2024.docx, to https://www.osc.ny.gov/jobs/openings/information-technology-specialist-2-information-security/092433 LINK no later than October 3, 2024.
Unofficial transcripts and/or templates will be required for certain positions. To access this job vacancy,
copy the link above and paste it into your web browser. Documents must be sent as unlocked and
accessible attachments.

Reference Item #00706-MLH on your cover letter for proper routing.

If you have questions about this vacancy, please contact this Division representative:
Division contact: Elizabeth Gifford at CIO_HR@osc.ny.gov
Please also submit a completed copy of this template with your application materials. Interview selection is based solely on the information you provide in this document.