Review Vacancy
AgencyInformation Technology Services, Office of
TitleManager Information Technology Services 2 Information Security - 9417
Occupational CategoryI.T. Engineering, Sciences
Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)
Salary RangeFrom $118425 to $145039 Annually
Duties Description ITS provides operational support to state agencies on a 24x7x365 basis; some positions may be required to provide this critical service at any time.
Under the direction of the Assistant Director Information Technology Services 2 , within the Dedicated Support Division, under Department of Health Bureau, and Product Development Section the Manager of Information Technology Services 2 Information Security (SG29) will lead and manage the Information Security team. This position is a critical leadership role responsible for the strategic planning, development, implementation security oversight of all IT infrastructure, systems, and security programs for the NYS Department of Health. This position ensures the secure, reliable, and efficient operation of all information technology assets while protecting sensitive data and maintaining robust physical and cybersecurity postures. This position will lead and manage the information security team, conduct comprehensive security risk assessments, respond to security incidents and IT service disruptions, and collaborate extensively with departments to align technology and security initiatives with organizational goals and regulatory requirements.
Duties include by are not limited to:
Develop and execute an integrated IT security strategy aligned with ITS's mission, vision, and goals, focusing on both operational efficiency and robust protection of NYS ITS and DOH assets (e.g. risk assessments, security policies, security awareness training, access controls, data protection, network security, endpoint security, incident response, vulnerability management, compliance, etc.)
• Implement and maintain ITS policies, procedures, and security protocols to protect facilities, personnel, and critical assets.
• Stay abreast of industry best practices, emerging IT trends, cybersecurity threats and regulatory changes in healthcare technology and security, incorporating them into the integrated program.
• Lead security initiatives that enhance operational efficiency and administrative functions while ensuring security by design (e.g. security reviews, application and infrastructure scans, penetration testing, provide input into procurement documentation, incident response, etc.)
• Establish and enforce ITS information security programs that addresses data privacy, integrity, and availability (e.g. data loss prevention programs, encryption programs, identity and access control management, access control and privacy awareness training, data validation and input controls, etc.)
• Conduct regular information security risk assessments, vulnerability analysis, and penetration testing of all IT systems and applications.
• Develop and manage the incident response plan for cybersecurity breaches, data loss and other IT security incidents.
• Recruit, train, mentor, and supervise security personnel, fostering a highly skilled, collaborative and professional team.
• Conduct performance evaluations, provide constructive feedback, and develop professional development plans for staff.
• Serve as a key liaison between IT, information security, agency program, administration, legal, and compliance groups.
• Communicate complex technical and security concepts clearly and effectively to non-technical stakeholders, including senior leadership.
• Perform a full range of supervisory duties for state and contract staff.
Minimum Qualifications Bachelor’s degree* with at least 15 credit hours in cyber security, information assurance or information technology and five years of information technology experience, including four years of information security or information assurance experience and three years at a supervisory level or one year at a managerial level.
* Bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience. Experience solely in information security or information assurance may substitute for the general information technology experience.
Additional Comments ITS will not offer permanent employment to any candidate unless the candidate provides documentation that they are authorized to accept work in the United States on a permanent basis. It is the policy of ITS not to hire F1 or H1 visa holders for permanent employment or to sponsor non-immigrant aliens for temporary work authorization visas or for permanent residence.
Some positions may require fingerprinting.
Some positions may require up to 25% travel and/or lifting up to 50 lbs. Some positions are pending Civil Service approval. Details of position(s) will be described further if you are selected for an interview.
If eligible, positions located in New York City will receive an additional $3,400 downstate adjustment location pay with regular annual salary. Positions located in the Mid-Hudson will receive an additional $1,650 adjustment location pay.
For the duration of the NY HELPS Program, this title maybe filled via a non- competitive appointment, which means no examination is required but all candidates must meet the minimum qualifications of the title for which they apply. At this time, agencies may recruit and hire employees by making temporary appointments. In May 2024, if a temporary NY HELPS employee is satisfactorily performing in the position, the appointment will be changed from temporary pending Civil Service Commission Action to permanent non-competitive and the official probationary period will begin.
At a future date (within one year of permanent appointment), it is expected employees hired under NY HELPS will have their non-competitive employment status converted to competitive status, without having to compete in an examination. Employees will then be afforded with all of the same rights and privileges of competitive class employees of New York State. While serving permanently in a NY HELPS title, employees may take part in any promotion examination for which they are qualified.
Benefits of Working for NYS Generous benefits package, worth 65% of salary, including:
Holiday & Paid Time Off
• Thirteen (13) paid holidays annually
• Up to Thirteen (13) days of paid vacation leave annually
• Up to Five (5) days of paid personal leave annually
• Up to Thirteen (13) days of paid sick leave annually for PEF.
• Up to three (3) days of professional leave annually to participate in professional development
Health Care Benefits
• Eligible employees and dependents can pick from a variety of affordable health insurance programs
• Family dental and vision benefits at no additional cost
Additional Benefits
• New York State Employees’ Retirement System (ERS) Membership
• NYS Deferred Compensation
• Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds
• Public Service Loan Forgiveness (PSLF)
• And many more.
The Office of Information Technology Services is an equal opportunity employer, and we recognize that diversity in our workforce is critical to fulfilling our mission. We encourage all individuals with disabilities to apply.
Some positions may require additional credentials or a background check to verify your identity.
Email Address PostingResponses@its.ny.gov
Address
Swan Street Building, Core 4, Floor 1
Notes on ApplyingTo apply for this position, please submit a cover letter and resume clearly indicating how you qualify. Ensure that you include the vacancy ID in the subject of your email for prompt routing. Your Social Security number may be required to confirm eligibility.