New York State
Manager Information Technology Services 1 Infomation Security
New York State, New York, New York, us, 10261
Duties Description Under the direction of senior leadership within the Office of Information Technology ServicesChief Information Security OfficeCyber Command Center, the incumbent will serve as Senior Security Operations Center (SOC) Use Case and Content Developer and be responsible for creation of procedures, implementation of processes and development of Use Cases and Contents for managing and maintaining NYSOC systems. The candidate will work closely with management, analysts, and threat intelligence team to create SIEM rules and analytic tool automations to improve event monitoring and response. The incumbent will lead the development of use cases, rules, log source, application maintenance and updates. The candidate will collaborate with internal and external teams on SIEM functional requirements: logging, event collection, normalization, correlation, storage, system access, reporting, and customization.This position requires the incumbent to possess a solid understanding of the current cyber threat landscape, the tactics, techniques, tools, and procedures commonly leveraged, and the steps necessary to swiftly identify and contain a potential cyber threat. Additionally, this position requires an incumbent to act with a great deal of independence in alignment with agency and upper-level management strategic direction.Due to the nature of the work performed by the SOC, this position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities as needed. This position is available and can be filled in any of the following NYSOC locations: Latham, Rochester, or New York City. Additional information on work schedule will be discussed at time of interview.If eligible, positions located in New York City will receive an additional $3,400 downstate adjustment location pay with regular annual salary. Positions located in the Mid-Hudson will receive an additional $1,650 adjustment location pay.
to permanent non-competitive and the official probationary period will begin.
Specific duties include, but are not limited to:
The Senior Use Case and Content Developer will work closely with management, analysts, and threat intelligence team to create SIEM rules and analytic tool automations to improve event monitoring and response.
Work with internal and client ticketing and knowledge base systems for Incident and Problem tracking as well as procedures.
Monitor the SIEM and Incident Management systems performance.
Develop use cases, rules, log source, application maintenance and updates
Provide training to other technical staff members
Configure custom log sources for SOC applications, and management
Collaborate with internal and external teams on SIEM functional requirements: logging, event collection, normalization, correlation, storage, system access, reporting, and customization
Coordinate change management processes for testing and validating systems to production
Review log sources, alerts, and integrations for auditing
Conduct research, analysis, and correlation across a wide variety of SOC processes, procedures, and use cases
Review cases escalated by SOC analysts to investigate, contain and remediate
Plan and recommend modifications or adjustments based on testing results or system environment
Identify new use cases and playbooks that need to be developed based on incident reviews
Document and elevate incidents using information gathered from a variety of sources
Create technical reports and executive summaries related to cyber security incidents and events.
Provide guidance and input on active projects to help identify and resolve issues/problems to ensure successful outcomes are achieved
May supervise subordinate staff in the proper performance of their duties and perform the full range of administrative supervisory responsibilities.
Minimum Qualifications Non-competitive: Seven years of information technology, cybersecurity, or information assurance experience*, including one year at the supervisory level.*Substitutions:A bachelor’s or higher-level degree in any field including or supplemented by 15 semester credit hours in computer science or related field substitutes for three years of required experience; any bachelor’s substitutes for two years of required experience.An associate degree with 15 semester credit hours in computer science or related field may substitute for one year of required experience. Candidates in a bachelor’s degree program with at least 15 semester credit hours in computer science or related field may substitute such credits for one year of required experience.A master’s degree or higher in computer science or related field substitutes for one year of required experience.
Additional Comments ITS will not offer permanent employment to any candidate unless the candidate provides documentation that they are authorized to accept work in the United States on a permanent basis. It is the policy of ITS not to hire F1 or H1 visa holders for permanent employment or to sponsor non-immigrant aliens for temporary work authorization visas or for permanent residence.Some positions may require fingerprinting.Some positions may require up to 25% travel and/or lifting up to 50 lbs. Some positions are pending Civil Service approval. Details of position(s) will be described further if you are selected for an interview.If eligible, positions located in New York City will receive an additional $3,400 downstate adjustment location pay with regular annual salary. Positions located in the Mid-Hudson will receive an additional $1,650 adjustment location pay.
Benefits of Working for NYS Generous benefits package, worth 65% of salary, including: Holiday & Paid Time Off
Thirteen (13) paid holidays annually
Up to Thirteen (13) days of paid vacation leave annually
Up to Five (5) days of paid personal leave annually
Up to Thirteen (13) days of paid sick leave annually for PEF.
Up to three (3) days of professional leave annually to participate in professional development
Health Care Benefits
Eligible employees and dependents can pick from a variety of affordable health insurance programs
Family dental and vision benefits at no additional cost
Additional Benefits
New York State Employees’ Retirement System (ERS) Membership
NYS Deferred Compensation
Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds
Public Service Loan Forgiveness (PSLF)
And many more.
The Office of Information Technology Services is an equal opportunity employer, and we recognize that diversity in our workforce is critical to fulfilling our mission. We encourage all individuals with disabilities to apply.Some positions may require additional credentials or a background check to verify your identity.
New York State
#J-18808-Ljbffr
Specific duties include, but are not limited to:
The Senior Use Case and Content Developer will work closely with management, analysts, and threat intelligence team to create SIEM rules and analytic tool automations to improve event monitoring and response.
Work with internal and client ticketing and knowledge base systems for Incident and Problem tracking as well as procedures.
Monitor the SIEM and Incident Management systems performance.
Develop use cases, rules, log source, application maintenance and updates
Provide training to other technical staff members
Configure custom log sources for SOC applications, and management
Collaborate with internal and external teams on SIEM functional requirements: logging, event collection, normalization, correlation, storage, system access, reporting, and customization
Coordinate change management processes for testing and validating systems to production
Review log sources, alerts, and integrations for auditing
Conduct research, analysis, and correlation across a wide variety of SOC processes, procedures, and use cases
Review cases escalated by SOC analysts to investigate, contain and remediate
Plan and recommend modifications or adjustments based on testing results or system environment
Identify new use cases and playbooks that need to be developed based on incident reviews
Document and elevate incidents using information gathered from a variety of sources
Create technical reports and executive summaries related to cyber security incidents and events.
Provide guidance and input on active projects to help identify and resolve issues/problems to ensure successful outcomes are achieved
May supervise subordinate staff in the proper performance of their duties and perform the full range of administrative supervisory responsibilities.
Minimum Qualifications Non-competitive: Seven years of information technology, cybersecurity, or information assurance experience*, including one year at the supervisory level.*Substitutions:A bachelor’s or higher-level degree in any field including or supplemented by 15 semester credit hours in computer science or related field substitutes for three years of required experience; any bachelor’s substitutes for two years of required experience.An associate degree with 15 semester credit hours in computer science or related field may substitute for one year of required experience. Candidates in a bachelor’s degree program with at least 15 semester credit hours in computer science or related field may substitute such credits for one year of required experience.A master’s degree or higher in computer science or related field substitutes for one year of required experience.
Additional Comments ITS will not offer permanent employment to any candidate unless the candidate provides documentation that they are authorized to accept work in the United States on a permanent basis. It is the policy of ITS not to hire F1 or H1 visa holders for permanent employment or to sponsor non-immigrant aliens for temporary work authorization visas or for permanent residence.Some positions may require fingerprinting.Some positions may require up to 25% travel and/or lifting up to 50 lbs. Some positions are pending Civil Service approval. Details of position(s) will be described further if you are selected for an interview.If eligible, positions located in New York City will receive an additional $3,400 downstate adjustment location pay with regular annual salary. Positions located in the Mid-Hudson will receive an additional $1,650 adjustment location pay.
Benefits of Working for NYS Generous benefits package, worth 65% of salary, including: Holiday & Paid Time Off
Thirteen (13) paid holidays annually
Up to Thirteen (13) days of paid vacation leave annually
Up to Five (5) days of paid personal leave annually
Up to Thirteen (13) days of paid sick leave annually for PEF.
Up to three (3) days of professional leave annually to participate in professional development
Health Care Benefits
Eligible employees and dependents can pick from a variety of affordable health insurance programs
Family dental and vision benefits at no additional cost
Additional Benefits
New York State Employees’ Retirement System (ERS) Membership
NYS Deferred Compensation
Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds
Public Service Loan Forgiveness (PSLF)
And many more.
The Office of Information Technology Services is an equal opportunity employer, and we recognize that diversity in our workforce is critical to fulfilling our mission. We encourage all individuals with disabilities to apply.Some positions may require additional credentials or a background check to verify your identity.
New York State
#J-18808-Ljbffr