Please note: State agencies that contact job applicants do not usually request personal or financial information via text message or over the phone in connection with your response to a job posting. If you are contacted for such information by these methods, or any other method, please verify the identity of the individual before transmitting such information to that person.
Note: For questions about the job posting, please contact the agency that posted this position by using the contact information provided on the "Contact" tab for the position.

Review Vacancy

Date Posted 07/22/21

Applications Due08/01/21

Vacancy ID89173

AgencyInformation Technology Services, Office of

TitleInformation Technology Specialist 4 (Information Security) Ref #18589

Occupational CategoryI.T. Engineering, Sciences

Salary Grade25

Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)

Salary RangeFrom $81446 to $102661 Annually

Employment Type Full-Time

Appointment Type Permanent

Jurisdictional Class Non-competitive Class

Travel Percentage 0%

Workweek Mon-Fri

Hours Per Week 37.50


From 9 AM

To 5 PM

Flextime allowed? No

Mandatory overtime? No

Compressed workweek allowed? Yes

Telecommuting allowed? Yes

County Albany

Street Address W. Averell Harriman State Office Campus, Building 5, 4th Floor

City Albany


Zip Code12207

Minimum Qualifications bachelor’s degree* with at least 15 credit hours in cyber security, information assurance, or information technology; and three years of information technology experience, including two years of information security or information assurance experience**.

*Substitution: bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general
information technology experience.

**Experience solely in information security or information assurance may substitute for the general information technology experience.

Preferred Qualifications:

• Bachelor’s Degree with a concentration or major in Information Security, Cyber Security, Digital Forensics, Information Assurance, or a related field
• Applicable Information Security certificate(s), including but not limited to:
o Certificate in Computer Network Defense (e.g., GCIA, GCED, GDAT, GPPA, GCDA, GMON, GWEB, CND, ECIH, GCIH)
o Certificate in Cyber Threat Intelligence (e.g., CTIA, GCTI, CCIP, CSTIR)
o Certificate in Digital Forensics (e.g., ACE, GCFA, GCFE, GREM, GNFA)
o Certificate in Penetration Testing (e.g., GPEN, CEH, GAWN, GWAPT, LPT)
o Certificate in Information Security Management (e.g., GSLC, GSTRT, GCEIT, CISM, CCISO)
o Certified Information Systems Security Professional (CISSP)

• 3+ years’ experience in technical writing.

• 2+ years’ experience in the following areas:
o Leading a team in related work.
o Applying and implementing network and/or system security.
o Information security incident response.
o Cyber digital forensics.
o Log analysis (e.g. firewall logs, DNS logs, proxy logs, IDS/IPS logs)
o Using SIEM technologies to support in-depth investigations.
o Using computer security investigation tools (e.g. FTK)
Working knowledge of:
o computer networks, intrusion detection systems, routers, firewalls, operating systems, network vulnerability assessments, web application vulnerability assessments, computer programming and scripting
o network security solutions (e.g., intrusion detection/prevention systems, firewalls)
o system administration
o vulnerability management
o computer programming and scripting
o Information Security (CIA triad, Information Classification, Risk Management, Incident Response, Vulnerability Management, Security Architecture & Engineering)

• Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding
• Demonstrated critical thinking, problem solving and analytical skills

Duties Description Under the direction and support of the Manager of Information Technology Services 1 and the Director of Cyber Command, the position will be a member and leader within the team that performs intake and initial triage of cyber security events. The incumbent will be responsible for the technical and process direction of the SOC, provide direction to the analysts, as well as act as a liaison to other stakeholders related to incident response efforts within NY State and local government entities. Incumbent will also be expected to ensure that systematic activities are coordinated with required teams and follow NYS standard and policy.
The position requires communicating orally and in writing with various individuals including management, users, vendors, and other IT staff. The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, or ITS.
Specific duties include, but are not limited to:
• Serve as team leader and mentor for SOC analysts.
• Supervision of SOC activities related to computer security incidents for NYS and various supported local entities.
• Supervise subordinate team members performing the full range of administrative responsibilities, including performance evaluations, time sheet approval, etc.
• Provide management oversight for the identification, triage and response efforts for events or incidents.
• Manage escalation procedures, workflows and tasks related to SOC activities.
• Ensure identified incidents are escalated timely to CIRT for deeper analysis, resolution and mitigation.
• Ensure that SOC serves as the primary liaison with the portfolio information security staff and coordinate with other security teams with NY state for effective and efficient IR tasks.
• Perform scripting required to automate various processes within SOC.
• Ensure the tickets related to events and incidents are tracked in the ticket management system and tracked to closure in a timely manner.
• Ensure that trusted third party notifications are forwarded to the proper stakeholders in a timely manner.
• Work with the SOC Manager and other Senior Analysts to ensure that the standard operating procedures are being created for various SOC functions
• Ensure that all standard operating procedures and are being followed.
• Identify opportunities to improve security monitoring and operational tasks.
• Provide training, guidance, and act as a mentor to subordinate team members.

Additional Comments Approval to fill this position is pending with Division of the Budget (DOB). Background check and fingerprinting are required.

Some positions may require additional credentials or a background check to verify your identity.

Name Louise C. Nails

Telephone 518-473-5282

Fax 518-402-4924

Email Address


Street 26th Floor, Corning Tower, ESP

City Albany

State NY

Zip Code 12242


Notes on ApplyingTo apply, please submit a resume and cover letter indicating that you are applying for the Information Technology Specialist 4 (Information Security) Ref: #18589. Please clearly indicate how you meet the minimum qualifications for this position. Your Social Security number may be required to confirm your eligibility.

Printable Version