NY HELPNo

AgencyInformation Technology Services, Office of

TitleInformation Technology Specialist 3 Information Security

Occupational CategoryI.T. Engineering, Sciences

Salary Grade23

Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)

Salary RangeFrom $86681 to $109650 Annually

Employment Type Full-Time

Appointment Type Contingent Permanent

Jurisdictional Class Non-competitive Class

Travel Percentage 0%

Workweek Mon-Fri

Hours Per Week 37.5

Workday

From 8 AM

To 5 PM

Flextime allowed? No

Mandatory overtime? No

Compressed workweek allowed? No

Telecommuting allowed? Yes

County Albany

Street Address 31 British American Blvd

City Albany

StateNY

Zip Code12110

Duties Description ITS provides operational support to state agencies on a 24x7x365 basis; some positions may be required to provide this critical service at any time.

Under the direction of a Manager of Information Technology Services within the Dedicated Support Division / Department of Health Bureau/Product Development section, the Information Technology Specialist 3 (Information Security), SG-23 position play a critical role in ensuring the security of our application systems. The successful candidate will be responsible for designing, implementing, and maintaining security controls throughout the application development lifecycle. This role requires a deep understanding of application security principles, secure coding practices, vulnerability management, and incident response. The Senior AppSec Engineer will collaborate with development, operations, and other stakeholders to integrate security into business processes and promote a strong security culture.

• Design, implement, maintain, and operate security controls and countermeasures within application systems.
• Analyze and recommend security controls and procedures during the acquisition, development, and change management lifecycle of information systems, including secure coding practices, security testing, and vulnerability management.
• Integrate security into business processes related to application usage.
• Monitor applications for security incidents and vulnerabilities and develop monitoring capabilities.
• Respond to security incidents, including investigating attacks and breaches.
• Manage authentication and authorization mechanisms within applications.
• Analyze threats and compliance requirements, advise management, and develop plans for risk mitigation and compliance.
• Develop and maintain security policies, procedures, and standards related to application security.
• Develop and administer training programs to promote secure coding practices and security awareness among developers.
• Perform Full Range of Supervisory Duties

Minimum Qualifications Required Qualifications:

• Significant experience in application security engineering.
• Hands-on experience with cloud platforms (e.g., AWS or Azure).
• Experience in production environments like Kubernetes.
• Familiarity with container-based virtualization technology like Docker.
• Knowledge of DevOps tools and techniques.
• Experience implementing software engineering practices for SDLC.
• Experience building and maintaining complex Linux cloud environments.
• Knowledge of common authentication technologies, security controls, and standard application security tools.
• Experience applying DevOps standards, industry cloud, and security standards and best practices.
• Excellent communication and collaboration skills.



Non-competitive: five years of information technology, cybersecurity, or information
assurance experience**.

**Substitutions:
A bachelor's or higher-level degree in any field including or supplemented by 15
semester credit hours in computer science or related field substitutes for three years of
required experience; any bachelor’s substitutes for two years of required experience.
An associate degree with 15 semester credit hours in computer science or related field
may substitute for one year of required experience. Candidates in a bachelor’s degree
program with at least 15 semester credit hours in computer science or related field may
substitute such credits for one year of required experience.
A master’s degree or higher in computer science or related field substitutes for one year
of required experience.

Additional Comments ITS will not offer permanent employment to any candidate unless the candidate provides documentation that they are authorized to accept work in the United States on a permanent basis. It is the policy of ITS not to hire F1 or H1 visa holders for permanent employment or to sponsor non-immigrant aliens for temporary work authorization visas or for permanent residence.

Some positions may require fingerprinting.

Some positions may require up to 25% travel and/or lifting up to 50 lbs. Some positions are pending Civil Service approval. Details of position(s) will be described further if you are selected for an interview.

If eligible, positions located in New York City will receive an additional $3,400 downstate adjustment location pay with regular annual salary. Positions located in the Mid-Hudson will receive an additional $1,650 adjustment location pay.

For the duration of the NY HELPS Program, this title maybe filled via a non- competitive appointment, which means no examination is required but all candidates must meet the minimum qualifications of the title for which they apply. At this time, agencies may recruit and hire employees by making temporary appointments. In May 2024, if a temporary NY HELPS employee is satisfactorily performing in the position, the appointment will be changed from temporary pending Civil Service Commission Action to permanent non-competitive and the official probationary period will begin.

At a future date (within one year of permanent appointment), it is expected employees hired under NY HELPS will have their non-competitive employment status converted to competitive status, without having to compete in an examination. Employees will then be afforded with all of the same rights and privileges of competitive class employees of New York State. While serving permanently in a NY HELPS title, employees may take part in any promotion examination for which they are qualified.

Benefits of Working for NYS Generous benefits package, worth 65% of salary, including:
Holiday & Paid Time Off
• Thirteen (13) paid holidays annually
• Up to Thirteen (13) days of paid vacation leave annually
• Up to Five (5) days of paid personal leave annually
• Up to Thirteen (13) days of paid sick leave annually for PEF.
• Up to three (3) days of professional leave annually to participate in professional development

Health Care Benefits
• Eligible employees and dependents can pick from a variety of affordable health insurance programs
• Family dental and vision benefits at no additional cost

Additional Benefits
• New York State Employees’ Retirement System (ERS) Membership
• NYS Deferred Compensation
• Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds
• Public Service Loan Forgiveness (PSLF)
• And many more.

The Office of Information Technology Services is an equal opportunity employer, and we recognize that diversity in our workforce is critical to fulfilling our mission. We encourage all individuals with disabilities to apply.

Some positions may require additional credentials or a background check to verify your identity.

Name ITS Human Resources

Telephone 518-473-0398

Fax 518-402-4924

Email Address PostingResponses@its.ny.gov

Address

Street Empire State Plaza

Swan Street Building, Core 4, Floor 1

City Albany

State NY

Zip Code 12220

Notes on ApplyingTo apply for this position, please submit a cover letter and resume clearly indicating how you qualify. Ensure that you include the vacancy ID in the subject of your email for prompt routing. Your Social Security number may be required to confirm eligibility.