Review Vacancy
AgencyInformation Technology Services, Office of
TitleDirector of Security Operations, Information Security Manager, M4, ref#5960
Occupational CategoryI.T. Engineering, Sciences
Bargaining UnitM/C - Managerial/Confidential (Unrepresented)
Salary RangeFrom $123793 to $156224 Annually
Appointment Type Contingent Permanent
Street Address Harriman State Office Campus, Building 5, Albany
With the possibility of New York City or other locations statewide
Minimum Qualifications Bachelor’s degree with at least 15 credit hours in cyber security, information assurance or information technology and six years of information technology experience, including five years of information security or information assurance experience and four years at a supervisory level or two years at a managerial level.
Bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience. Experience solely in information security or information assurance may substitute for the general information technology experience.
Preferred qualifications:
• Bachelors or Master’s degree with a concentration or major in Information Security, Information Technology, or a related field.
• Certifications in one or more of the following:
· Cyber Defense (e.g., GCIA, GCIH, GCED, GSOM, GSOC, GMON, GCDA)
· Cyber Threat Intelligence (e.g., GCTI, CTIA, CCIP, GOSI)
· Information Security Management (e.g., CISSP, CISM, CCISO)
• 5+ years’ experience in one or more of the following:
· Leading a team in related work
· Applying and implementing network and/or system security
· Process development and process improvement
· Technical writing
• 3+ years’ experience in one or more of the following:
· Developing metrics and key performance indicators
· Managing or performing cybersecurity incident response
• Strong understanding of enterprise IT environments, including but not limited to system administration, network architecture, operating systems, endpoint detection and response tools, and network-based security solutions (e.g., IDS/IPS, firewalls).
• Strong understanding of the foundations of Information Security, such as the CIA triad, information classification, identity and access management, risk management, vulnerability management, secure architecture and engineering, network security, software development security, etc.
• Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.
• Demonstrated critical thinking, problem solving and analytical skills.
Duties Description Under the direction of the senior team members within the Chief Information Security Office (CISO), the incumbent will serve as the Director of the Security Operations Bureau. The Security Operations Bureau is responsible for the oversight and operations of a variety of operational security tools and functions to help ensure they are providing optimal protections for ITS and its client agencies. The incumbent will provide direction and support for all security operations activities and staff within the bureau, as well as subject matter expertise. The incumbent will act as a member of the Chief Information Security Office Leadership Team, helping shape and implement the strategic vision for cyber security within NYS.
The position requires an incumbent to act with a great deal of independence in alignment with CISO leadership and Office of Information Technology Services (ITS) strategic direction. The position requires technical expertise in a broad range of areas to permit working directly with technical teams throughout ITS. The position requires communicating orally and in writing with various individuals including management, users, vendors, and other IT staff. The incumbent must be able to communicate clearly with subordinate staff regarding work priorities and performance. The incumbent will have to work with various teams and stakeholders to resolve technically complex and politically sensitive issues under pressure.
The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, or ITS.
Duties include, but are not limited to:
• Lead and direct all the activities within the Security Operations bureau.
• Manage the team responsible for coordination of operational security technology and processes, including but not limited to vulnerability scanning, IDS/IPS, endpoint security, web application firewalls, and similar systems.
• Serve as an information security expert and evaluates systems and contract for alignment with agency and State information security policies for systems developed or procured by ITS.
• Supervise staff in the proper performance of their duties. Monitor progress, review major initiatives and projects and take appropriate action as needed.
• Participate in the review and evaluation of new security tools for potential use within ITS, make recommendations on how to further increase security posture.
• Ensure that all communications, processes, and teams within Security Operations are done in consideration of the operational concerns and workloads of peer teams throughout CISO and ITS, and that always staff maintain the collaborative attitude and open communications required to successfully carry out the mission of CISO and ITS.
• Monitor and remain aware of information security industry trends, tools, and techniques.
• Perform additional duties as required.
Additional Comments The Office of Information Technology Services is an equal opportunity employer, and we recognize that diversity in our workforce is critical to fulfilling our mission. We encourage all individuals with disabilities to apply.
Background check and fingerprinting are required.
Benefits of Working for NYS
Generous benefits package, worth 65% of salary, including:
• Holiday & Paid Time Off
• Thirteen (13) paid holidays annually
• Up to thirteen (13) days of paid vacation leave annually
• Up to five (5) days of paid personal leave annually
• Up to thirteen (13) days of paid sick leave annually for PEF
• Up to three (3) days of professional leave annually to participate in professional development
Health Care Benefits
• Eligible employees and dependents can pick from a variety of affordable health insurance programs
• Family dental and vision benefits at no additional cost
Additional Benefits
• New York State Employees’ Retirement System (ERS) Membership
• NYS Deferred Compensation
• Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds
• Public Service Loan Forgiveness (PSLF)
• Up to 50% telecommuting
• And many more.
Some positions may require additional credentials or a background check to verify your identity.
Email Address PostingResponses@its.ny.gov
Address
Street Office of Information Technology Services
Human Resources Services - Swan Street Building, Core 4, Floor 1
Notes on ApplyingTo apply, please submit a resume and cover letter indicating that you are applying for the Director of Security Operations, Information Security Manager, M4, ref#5960. Please include the Posting ID and clearly indicate how you meet the minimum qualifications for this position. Your Social Security number may be required in order to confirm eligibility.
Some positions may require additional credentials or a background check to verify your identity. Selected candidates who are new or returning to NYS service may be required to pay for fingerprinting fees. New York State is an equal opportunity employer.