StateJobsNY
Information Technology Specialist 4 (Information Security)
StateJobsNY, Albany, New York, us, 12237
Cyber Security Analyst
The incumbent of this position will report to the Critical Infrastructure Unit within the Office of Counter Terrorism. Duties include but are not limited to the following: Perform the role of team lead and or team member as assigned, to execute cyber security risk assessments of Industrial Control Systems and Operational Technology. Disseminate actionable strategic and tactical cyber intelligence to customer organizations through periodic or ad hoc reports, briefings, and presentations. Conduct outreach and maintain positive relationships with customer organizations for outreach, to convey assessment-related analysis, and recommendations. Work with sensitive information, requiring the ability to obtain a National Security Clearance. Such as documenting and reporting on cyber security issues and emerging trends affecting our customers, to maintain situational awareness within the unit. Assist in the development of customer-facing cyber security programs which align with industry best practices across domains such as IT asset management, configuration management, cyber security policies and procedures, data governance, access management, endpoint protection, vulnerability management, incident response and security awareness training. Interact with cyber security industry experts to maintain knowledge of cyber trends and techniques, with emphasis on Critical Infrastructure. Participate in professional development opportunities and maintain certifications to validate proficiency. Develop correspondence, draft policy, white papers, standards, bulletins, advisories, and presentations on assigned topics. Perform supervisory functions as required. Design, plan and administer Customer-facing cyber security training and exercises. Perform additional duties as required, including those of an emergency nature such as assisting in disaster response and recovery activities as required and assigned. Regular travel will be required (about 30%), including during evening and weekends, depending on mission and assignment. Assignments may result in a change in working hours, locations, and/or duties. Possession and maintenance of a valid Driver's License issued by the NYS Department of Motor Vehicle is required. Minimum Qualifications NON-COMPETITIVE Bachelor's degree* with at least 15 credit hours in cyber security, information assurance, or information technology; and three years of information technology experience including two years of information security or information assurance experience**. *Substitution: bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate degree requires an additional two years of general information technology experience. **Experience solely in information security or information assurance may substitute for the general information technology experience. Preferred Skills or Qualifications: A clear understanding of computer network communications including the TCP/IP stack, IP addressing, subnetting, and common protocols. A familiarity with the cybersecurity controls and challenges of Industrial Control Systems (ICS/OT). Additional Comments NOTE: Support of operations during times of emergency and disaster from State Emergency Operations Center (EOC), state field offices and/or local deployments may be required, which would result in a change and/or increase in working hours, locations and/or duties. NOTE ON TELECOMMUTING: Employees are required to apply and obtain approval through management to telecommute according to the agency's Telecommuting Program Guidelines.
The incumbent of this position will report to the Critical Infrastructure Unit within the Office of Counter Terrorism. Duties include but are not limited to the following: Perform the role of team lead and or team member as assigned, to execute cyber security risk assessments of Industrial Control Systems and Operational Technology. Disseminate actionable strategic and tactical cyber intelligence to customer organizations through periodic or ad hoc reports, briefings, and presentations. Conduct outreach and maintain positive relationships with customer organizations for outreach, to convey assessment-related analysis, and recommendations. Work with sensitive information, requiring the ability to obtain a National Security Clearance. Such as documenting and reporting on cyber security issues and emerging trends affecting our customers, to maintain situational awareness within the unit. Assist in the development of customer-facing cyber security programs which align with industry best practices across domains such as IT asset management, configuration management, cyber security policies and procedures, data governance, access management, endpoint protection, vulnerability management, incident response and security awareness training. Interact with cyber security industry experts to maintain knowledge of cyber trends and techniques, with emphasis on Critical Infrastructure. Participate in professional development opportunities and maintain certifications to validate proficiency. Develop correspondence, draft policy, white papers, standards, bulletins, advisories, and presentations on assigned topics. Perform supervisory functions as required. Design, plan and administer Customer-facing cyber security training and exercises. Perform additional duties as required, including those of an emergency nature such as assisting in disaster response and recovery activities as required and assigned. Regular travel will be required (about 30%), including during evening and weekends, depending on mission and assignment. Assignments may result in a change in working hours, locations, and/or duties. Possession and maintenance of a valid Driver's License issued by the NYS Department of Motor Vehicle is required. Minimum Qualifications NON-COMPETITIVE Bachelor's degree* with at least 15 credit hours in cyber security, information assurance, or information technology; and three years of information technology experience including two years of information security or information assurance experience**. *Substitution: bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate degree requires an additional two years of general information technology experience. **Experience solely in information security or information assurance may substitute for the general information technology experience. Preferred Skills or Qualifications: A clear understanding of computer network communications including the TCP/IP stack, IP addressing, subnetting, and common protocols. A familiarity with the cybersecurity controls and challenges of Industrial Control Systems (ICS/OT). Additional Comments NOTE: Support of operations during times of emergency and disaster from State Emergency Operations Center (EOC), state field offices and/or local deployments may be required, which would result in a change and/or increase in working hours, locations and/or duties. NOTE ON TELECOMMUTING: Employees are required to apply and obtain approval through management to telecommute according to the agency's Telecommuting Program Guidelines.