Review Vacancy
AgencyInformation Technology Services, Office of
TitleInformation Technology Specialist 3 Information Security - 11081
Occupational CategoryI.T. Engineering, Sciences
Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)
Salary RangeFrom $86681 to $109650 Annually
Appointment Type Contingent Permanent
Duties Description This position will be a member of the Vulnerability & Threat Response section within the Chief Information Security Office (CISO). Under the direction of the senior team members of the Vulnerability & Threat Response section, the incumbent will help drive identification and remediation of high critical vulnerabilities actively being targeted by threat actors. These efforts will be run as response activities with urgency.
Vulnerability & Threat Response includes identification of vulnerabilities, identification of systems in scope, developing tracking mechanisms, following up with custodians to ensure remediation, and reporting to CISO and ITS Executive management on progress of remediation effort to protect and defend New York State’s infrastructure.
The position requires analytical expertise and experience related to cyber security threats and protective measures. The incumbent must demonstrate attention to detail and critical thinking. The incumbent must be able to communicate clearly with subordinate staff regarding work priorities and performance. The incumbent will have to work with CISO and IT teams to resolve technically complex and politically sensitive issues under pressure.
The position requires availability during off-shift hours to participate in critical vulnerability & threat response activities and to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, or ITS.
Specific duties include, but are not limited to:
• Work with Threat Intel and Threat Hunting teams to monitor various threat intelligence feeds along with industry and government sources such as the CISA Known Exploited Vulnerabilities list to identify vulnerabilities requiring response level activities.
• Identify in-scope systems leveraging various tools (e.g., vulnerability scanners, EDR, cyber exposure management, SIEM, Inventory/CMDB).
• Develop tracking tools and documentation to support response activities.
• Communicate and coordinate with various custodial teams to determine and monitor remediation activities.
• Maintain accurate tracking of threat response activities to ensure transparency, accountability, and executive visibility.
• Design and implement automation and reporting processes to improve operational efficiency, including automated email notifications, remediation guidance distribution, and weekly threat reporting.
• Coordinate and manage cyber risk remediation programs and projects as a security lead. Provide technical leadership, track milestones, and ensure timely project delivery through collaboration with engineering, infrastructure, and application teams alongside project management leads.
• As assigned, perform the full range of supervisory responsibilities.
Minimum Qualifications Information Technology Specialist 3 (Information Security)
Non-competitive: five years of information technology, cybersecurity, or information assurance experience**.
**Substitutions: A bachelor's or higher-level degree in any field including or supplemented by 15 semester credit hours in computer science or related field substitutes for three years of required experience; any bachelor’s substitutes for two years of required experience. An associate degree with 15 semester credit hours in computer science or related field may substitute for one year of required experience. Candidates in a bachelor’s degree program with at least 15 semester credit hours in computer science or related field may substitute such credits for one year of required experience. A master’s degree or higher in computer science or related field substitutes for one year of required experience.
Additional Comments ITS will not offer permanent employment to any candidate unless the candidate provides documentation that they are authorized to accept work in the United States on a permanent basis. It is the policy of ITS not to hire F1 or H1 visa holders for permanent employment or to sponsor non-immigrant aliens for temporary work authorization visas or for permanent residence.
Some positions may require fingerprinting.
Some positions may require up to 25% travel and/or lifting up to 50 lbs. Some positions are pending Civil Service approval. Details of position(s) will be described further if you are selected for an interview.
If eligible, positions located in New York City will receive an additional $3,400 downstate adjustment location pay with regular annual salary. Positions located in the Mid-Hudson will receive an additional $1,650 adjustment location pay.
to permanent non-competitive and the official probationary period will begin.
Benefits of Working for NYS Generous benefits package, worth 65% of salary, including:
Holiday & Paid Time Off
• Thirteen (13) paid holidays annually
• Up to Thirteen (13) days of paid vacation leave annually
• Up to Five (5) days of paid personal leave annually
• Up to Thirteen (13) days of paid sick leave annually for PEF.
• Up to three (3) days of professional leave annually to participate in professional development
Health Care Benefits
• Eligible employees and dependents can pick from a variety of affordable health insurance programs
• Family dental and vision benefits at no additional cost
Additional Benefits
• New York State Employees’ Retirement System (ERS) Membership
• NYS Deferred Compensation
• Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds
• Public Service Loan Forgiveness (PSLF)
• And many more.
The Office of Information Technology Services is an equal opportunity employer, and we recognize that diversity in our workforce is critical to fulfilling our mission. We encourage all individuals with disabilities to apply.
Some positions may require additional credentials or a background check to verify your identity.
Email Address PostingResponses@its.ny.gov
Address
Swan Street Building, Core 4, Floor 1
Notes on ApplyingTo apply for this position, please submit a cover letter and resume clearly indicating how you qualify. Ensure that you include the vacancy ID in the subject of your email for prompt routing. Your Social Security number may be required to confirm eligibility.