StateJobsNY

NY HELPNo

AgencyInformation Technology Services, Office of

TitleInformation Technology Specialist 4 (Information Security) Ref #18823

Occupational CategoryI.T. Engineering, Sciences

Salary Grade25

Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)

Salary RangeFrom $88161 to $111111 Annually

Employment Type Full-Time

Appointment Type Contingent Permanent

Jurisdictional Class Non-competitive Class

Travel Percentage 0%

Workweek Mon-Fri

Hours Per Week 37.50

Workday

From 9 AM

To 5 PM

Flextime allowed? No

Mandatory overtime? No

Compressed workweek allowed? Yes

Telecommuting allowed? Yes

County Albany

Street Address Albany - CNSE-ZEN, 201 Fuller Rd.

City Albany

StateNY

Zip Code12202

Minimum Qualifications bachelor’s degree* with at least 15 credit hours in cyber security, information assurance, or information technology; and three years of information technology experience, including two years of information security or information assurance experience**.

*Substitution: bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general
information technology experience.

**Experience solely in information security or information assurance may substitute for the general information technology experience.

Preferred Qualifications:

• Bachelor's Degree with a concentration or major in Information Security, Cyber Security, Digital Forensics, Information Assurance, or a related field.
• 5+ years’ experience in the following areas:
o network defense or network systems
o Computer programming and scripting
o technical writing.
• Certifications in one or more of the following:
o Certificate in Computer Network Defense (e.g., GCIA, GCED, GDAT, GPPA, GCDA, GMON, GWEB, CND, ECIH, GCIH)
o Certificate in Cyber Threat Intelligence (e.g., CTIA, GCTI, CCIP, CSTIR)
o Certificate in Digital Forensics (e.g., ACE, GCFA, GCFE, GREM, GNFA)
o Certificate in Penetration Testing (e.g., GPEN, CEH, GAWN, GWAPT, LPT)
• 3+ years’ experience in the following areas:
o applying and implementing network and/or system security, information security incident response.
o cyber digital forensics.
o log analysis (e.g., firewall logs, DNS logs, proxy logs, IPS/IDS logs)
o using SIEM technologies to support in-depth investigations
o using computer security investigation tools (e.g. FTK).
• Working knowledge of the following:
o computer networks, intrusion detection systems, routers, firewalls, operating systems, network vulnerability assessments, web application vulnerability assessments, computer programming and scripting
o network security solutions (e.g., intrusion detection/prevention systems, firewalls)
o system administration
o vulnerability management
o computer programming and scripting
o Information Security (CIA triad, Information Classification, Risk Management, Incident Response, Vulnerability Management, Security Architecture & Engineering)
• Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.
• Demonstrated critical thinking, problem solving and analytical skills.

Duties Description Under the direction and support senior team members, the incumbent will respond to cyber-attacks and conduct investigations of cyber security events reported by state entities, the Cyber Command Center and other sources. Response efforts may include log analysis, malware analysis, network capture analysis, reverse engineering of malicious code, computer forensics, network forensics, and post intrusion analysis.
The desired candidate should have experience with cyber security, digital forensics, computer networks, intrusion detection systems, routers, firewalls, operating systems, network vulnerability assessments, and web application vulnerability assessments. Other desired skills include computer programming, scripting, databases, database queries, and reporting. Excellent written and verbal communication skills are essential. This position requires off-shift work on an ad-hoc basis and occasional travel.
The incumbent will perform incident response and digital forensic activities as part of cyber incident investigations.
The activities performed include, but are not limited to, the following:
• Supervise and Perform Incident Response and Forensic activities related to computer security incidents.
• Administer and utilize specialized computer investigation tools, techniques, procedures.
• Perform IR coordination efforts with internal and external organizations (i.e.: law enforcement or inspector general)
• Collect/seize evidence and maintain chain of custody
• Perform digital forensic analysis and supervise related tasks for subordinate team members
• Perform malware analysis and supervise related tasks for subordinate team members
• Perform log analysis and supervise related tasks for subordinate team members
• Identify elements discovered during investigations for their potential use as evidence to prove a crime or other violation has been committed
• Perform all phases of research maintenance and support of digital forensics lab infrastructure. This will include but not limited to evidence handling, tracking evidence inventory, setting up and maintaining appropriate hardware and software tools to facilitate incident response, digital forensics, and support ongoing research, including malware analysis and reverse engineering etc.
• Create written technical reports and executive summaries related to cyber security incidents, events and metrics.
• Review work products from subordinate team members
• Develop written standard operating procedures and related processes, and establish workflows to enhance productivity for Cyber Incident Response Team
• Perform the full range of supervisory responsibilities
• Provide training, guidance, and act as a mentor to subordinate team members
• Interface with executive management as required

Additional Comments Background check and fingerprinting are required.

New York State is an equal opportunity employer.

Some positions may require additional credentials or a background check to verify your identity.

Name Melissa Thompson

Telephone 518-473-5282

Fax 518-402-4924

Email Address HRresumes@ogs.ny.gov

Address

Street Office of General Services, Human Resources Management

26th Floor, Corning Tower, ESP

City Albany

State NY

Zip Code 12242

Notes on ApplyingTo apply, please submit a resume and cover letter indicating you are applying for Information Technology Specialist 4 (Information Security) Ref: #18823. In your cover letter, please clearly indicate how you meet the minimum qualifications for this position. Your Social Security number may be required to confirm your eligibility.