Review Vacancy
AgencyInformation Technology Services, Office of
TitleDeputy Director of Information Security Engineering, Information Security Manager, M4, ref#5784
Occupational CategoryI.T. Engineering, Sciences
Bargaining UnitM/C - Managerial/Confidential (Unrepresented)
Salary RangeFrom $123793 to $156224 Annually
Appointment Type Contingent Permanent
Street Address Harriman State Office Campus, Building 5, Albany
With the possibility of New York City or other locations statewide
Minimum Qualifications Bachelor’s degree with at least 15 credit hours in cyber security, information assurance or information technology and six years of information technology experience, including five years of information security or information assurance experience and four years at a supervisory level or two years at a managerial level.
Bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience. Experience solely in information security or information assurance may substitute for the general information technology experience.
Preferred qualifications:
• Applicable Information Security certificate(s) such as CISSP, CISM, etc.
• Experience in one or more of the following areas:
o Leading information security teams
o Applying and implementing network, system, or application security
o Security policy/standard/guideline development, implementation, or interpretation
o Conducting risk assessments and evaluating information technology systems for security controls (SSDLC)
o Process development, improvement, and measurement
o Information security incident response
o Developing metrics and key performance indicators
• Strong understanding of enterprise IT environments, including but not limited to system administration, network architecture, operating systems, endpoint detection and response tools, and network-based security solutions (e.g., IDS/IPS, firewalls).
• Strong understanding of the foundations of Information Security, such as the CIA triad, information classification, identity and access management, risk management, vulnerability management, secure architecture and engineering, network security, software development security, etc.
• Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding
• Demonstrated critical thinking, problem solving and analytical skills
• Demonstrated skill in facilitating meetings, listening, and negotiating between multiple stakeholders to drive results
Duties Description Under the direction of the Director of Information Security Engineering, within the Chief Information Security Office/Information Security Engineering section, this position will assist with the oversight the Information Security Engineering Bureau which consists of four security sections. The position will supervise three or more Senior Information Security Officers SG-29 who lead teams supporting the security needs of multiple ITS groups and the overall IT environment. The incumbent will act as a senior member of the Chief Information Security Office Leadership Team, helping shape and implement the strategic vision for cyber security within NYS.
The position requires an incumbent to act with a great deal of independence in alignment with agency and upper-level management strategic direction. The position requires communicating orally and in writing with various individuals including executive management, users, vendors, and other IT staff. The incumbent must be able to communicate clearly with subordinate staff regarding work priorities and performance. The incumbent will have to work with ITS teams and upper-level agency management to resolve technically complex and politically sensitive issues under pressure.
The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, or ITS.
Duties include, but are not limited to:
• Assist with the direction of the Information Security Engineering Bureau in developing, deploying, and maintaining procedures in accordance with State and agency information security policies and standards. Monitor compliance and take appropriate action as needed.
• Perform administrative and strategic functions to assist the CISO Leadership team in managing the operations of the Chief Information Security Office.
• Oversee development and implementation of the Information Security Engineering Bureau’s information security risk management program.
• Oversee resolution of security threats to agency information systems.
• Serve as information security expert and evaluate systems and contracts for alignment with agency and State information security policies.
• Monitor and remain aware of information security industry trends, tools and techniques.
• Perform the full range of supervisory responsibilities.
Additional Comments The Office of Information Technology Services is an equal opportunity employer, and we recognize that diversity in our workforce is critical to fulfilling our mission. We encourage all individuals with disabilities to apply.
Background check and fingerprinting are required.
Benefits of Working for NYS
Generous benefits package, worth 65% of salary, including:
• Holiday & Paid Time Off
• Thirteen (13) paid holidays annually
• Up to thirteen (13) days of paid vacation leave annually
• Up to five (5) days of paid personal leave annually
• Up to thirteen (13) days of paid sick leave annually for PEF
• Up to three (3) days of professional leave annually to participate in professional development
Health Care Benefits
• Eligible employees and dependents can pick from a variety of affordable health insurance programs
• Family dental and vision benefits at no additional cost
Additional Benefits
• New York State Employees’ Retirement System (ERS) Membership
• NYS Deferred Compensation
• Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds
• Public Service Loan Forgiveness (PSLF)
• Up to 50% telecommuting
• And many more.
Some positions may require additional credentials or a background check to verify your identity.
Email Address PostingResponses@its.ny.gov
Address
Street Office of Information Technology Services
Human Resources Services - Swan Street Building, Core 4, Floor 1
Notes on ApplyingTo apply, please submit a resume and cover letter indicating that you are applying for the Deputy Director of Information Security Engineering, Information Security Manager, M4, ref#5784. Please include the Posting ID and clearly indicate how you meet the minimum qualifications for this position. Your Social Security number may be required in order to confirm eligibility.
Some positions may require additional credentials or a background check to verify your identity. Selected candidates who are new or returning to NYS service may be required to pay for fingerprinting fees. New York State is an equal opportunity employer.