NYS Office of Information Technology Services
Information Technology Specialist 3 Information Security
NYS Office of Information Technology Services, Albany, New York, United States
Description
ITS provides operational support to state agencies on a 24x7x365 basis; some positions may be required to provide this critical service at any time.
Duties Description Under the support of a Manager Information Technology Services 1 or 2 (Information Security), the Information Technology Specialist 3 (Information Security), SG-23 will support the day‑to‑day operations of an information security unit for a dedicated agency to support the confidentiality, integrity, and availability of the agency’s information assets.
The position requires availability during off‑shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, or ITS.
Specific Duties Include, But Are Not Limited To
Assist with the implementation of information security and compliance programs.
Evaluate and resolve security threats to agency information systems.
Serve as an information security provider for the Dedicated Support Team and provide recommendations on system and contract alignment with agency and State information security policies.
As needed, participate in meetings and communicate agency needs and expectations with agency stakeholders, Chief Technology Office (CTO) representatives, and team members.
Maintain familiarity with each client agency’s business functions and requirements.
Assist each agency in complying with NYS information security policies and standards, protocols, cybersecurity best‑practices, and regulatory requirements related to cybersecurity.
Assist each agency in evaluating, understanding, and appropriately managing information security risks.
Respond to incidents that pose a security risk.
Assist with advising agency on security considerations related to procurement of products and services.
Support each agency in maintaining information classification for IT systems and solutions and data sets in alignment with NYS policy.
Ensure security engineering and architecture considerations are addressed in services and systems designs.
Pursuant to approved protocols and processes, disseminate threat information to support ITS teams and agencies.
Respond to security incidents, including investigating attacks and breaches.
Analyze threats and compliance requirements, advise management, and develop plans for risk mitigation and compliance. Pursuant to approved protocols and processes, elevate security concerns and report incidents to the applicable entities for review and action in an appropriate manner.
Promote and contribute to the development of information security awareness and programs to benefit the agencies.
Contribute to the development of NYS policies and standards.
Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security.
Assist with project security for ITS and supported agency projects and initiatives.
Monitor and remain aware of information security industry trends, tools, and techniques.
Perform additional duties as required.
Qualifications Minimum Qualifications
Non‑competitive: five years of information technology, cybersecurity or information assurance experience.
Substitutions: a bachelor’s or higher‑level degree in any field; 15 semester credit hours in computer science or a related field substitute for three years of required experience; any bachelor’s substitutes for two years; an associate degree with 15 semester credit hours substitutes for one year; a master’s degree or higher substitutes for one year.
Preferred Qualifications
Applicable information security certificates such as CISSP, CISM, etc.
Experience in one or more of the following areas:
applying network, system or application security
security policy/standard/guideline development, implementation or interpretation
conducting risk assessments and evaluating information technology systems for security controls (SSDLC)
information security incident response
excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding
demonstrated critical thinking, problem solving and analytical skills
demonstrated skill in facilitating meetings, listening and negotiating between multiple stakeholders to drive results
Additional Comments ITS will not offer permanent employment to any candidate unless the candidate provides documentation that they are authorized to accept work in the United States on a permanent basis. It is the policy of ITS not to hire F1 or H1 visa holders for permanent employment or to sponsor non‑immigrant aliens for temporary work authorization visas or for permanent residence.
Some positions may require fingerprinting.
Some positions may require up to 25% travel and/or lifting up to 50 lbs. Some positions are pending Civil Service approval. Details of position(s) will be described further if you are selected for an interview.
Eligible positions located in New York City receive an additional $3,400 downstate adjustment location pay with regular annual salary. Positions located in the Mid‑Hudson receive an additional $1,650 adjustment location pay.
Benefits Benefits of working for NYS: a generous benefits package worth 65% of salary, including:
Holiday & Paid Time Off – thirteen (13) paid holidays annually
Thirteen (13) days of paid vacation leave annually
Five (5) days of paid personal leave annually
Thirteen (13) days of paid sick leave annually for PEF
Three (3) days of professional leave annually to participate in professional development
Health care benefits – employees and dependents can choose among a variety of affordable health insurance programs
Family dental and vision benefits at no additional cost
Additional benefits include New York State Employees’ Retirement System (ERS) membership, NYS deferred compensation, access to NY 529 and NY ABLE college savings programs, USDA savings bonds, and Public Service Loan Forgiveness (PSLF). And many more.
Equal Opportunity Statement The Office of Information Technology Services is an equal‑opportunity employer and encourages individuals with disabilities to apply.
#J-18808-Ljbffr
Duties Description Under the support of a Manager Information Technology Services 1 or 2 (Information Security), the Information Technology Specialist 3 (Information Security), SG-23 will support the day‑to‑day operations of an information security unit for a dedicated agency to support the confidentiality, integrity, and availability of the agency’s information assets.
The position requires availability during off‑shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, or ITS.
Specific Duties Include, But Are Not Limited To
Assist with the implementation of information security and compliance programs.
Evaluate and resolve security threats to agency information systems.
Serve as an information security provider for the Dedicated Support Team and provide recommendations on system and contract alignment with agency and State information security policies.
As needed, participate in meetings and communicate agency needs and expectations with agency stakeholders, Chief Technology Office (CTO) representatives, and team members.
Maintain familiarity with each client agency’s business functions and requirements.
Assist each agency in complying with NYS information security policies and standards, protocols, cybersecurity best‑practices, and regulatory requirements related to cybersecurity.
Assist each agency in evaluating, understanding, and appropriately managing information security risks.
Respond to incidents that pose a security risk.
Assist with advising agency on security considerations related to procurement of products and services.
Support each agency in maintaining information classification for IT systems and solutions and data sets in alignment with NYS policy.
Ensure security engineering and architecture considerations are addressed in services and systems designs.
Pursuant to approved protocols and processes, disseminate threat information to support ITS teams and agencies.
Respond to security incidents, including investigating attacks and breaches.
Analyze threats and compliance requirements, advise management, and develop plans for risk mitigation and compliance. Pursuant to approved protocols and processes, elevate security concerns and report incidents to the applicable entities for review and action in an appropriate manner.
Promote and contribute to the development of information security awareness and programs to benefit the agencies.
Contribute to the development of NYS policies and standards.
Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security.
Assist with project security for ITS and supported agency projects and initiatives.
Monitor and remain aware of information security industry trends, tools, and techniques.
Perform additional duties as required.
Qualifications Minimum Qualifications
Non‑competitive: five years of information technology, cybersecurity or information assurance experience.
Substitutions: a bachelor’s or higher‑level degree in any field; 15 semester credit hours in computer science or a related field substitute for three years of required experience; any bachelor’s substitutes for two years; an associate degree with 15 semester credit hours substitutes for one year; a master’s degree or higher substitutes for one year.
Preferred Qualifications
Applicable information security certificates such as CISSP, CISM, etc.
Experience in one or more of the following areas:
applying network, system or application security
security policy/standard/guideline development, implementation or interpretation
conducting risk assessments and evaluating information technology systems for security controls (SSDLC)
information security incident response
excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding
demonstrated critical thinking, problem solving and analytical skills
demonstrated skill in facilitating meetings, listening and negotiating between multiple stakeholders to drive results
Additional Comments ITS will not offer permanent employment to any candidate unless the candidate provides documentation that they are authorized to accept work in the United States on a permanent basis. It is the policy of ITS not to hire F1 or H1 visa holders for permanent employment or to sponsor non‑immigrant aliens for temporary work authorization visas or for permanent residence.
Some positions may require fingerprinting.
Some positions may require up to 25% travel and/or lifting up to 50 lbs. Some positions are pending Civil Service approval. Details of position(s) will be described further if you are selected for an interview.
Eligible positions located in New York City receive an additional $3,400 downstate adjustment location pay with regular annual salary. Positions located in the Mid‑Hudson receive an additional $1,650 adjustment location pay.
Benefits Benefits of working for NYS: a generous benefits package worth 65% of salary, including:
Holiday & Paid Time Off – thirteen (13) paid holidays annually
Thirteen (13) days of paid vacation leave annually
Five (5) days of paid personal leave annually
Thirteen (13) days of paid sick leave annually for PEF
Three (3) days of professional leave annually to participate in professional development
Health care benefits – employees and dependents can choose among a variety of affordable health insurance programs
Family dental and vision benefits at no additional cost
Additional benefits include New York State Employees’ Retirement System (ERS) membership, NYS deferred compensation, access to NY 529 and NY ABLE college savings programs, USDA savings bonds, and Public Service Loan Forgiveness (PSLF). And many more.
Equal Opportunity Statement The Office of Information Technology Services is an equal‑opportunity employer and encourages individuals with disabilities to apply.
#J-18808-Ljbffr