Please note: State agencies that contact job applicants do not usually request personal or financial information via text message or over the phone in connection with your response to a job posting. If you are contacted for such information by these methods, or any other method, please verify the identity of the individual before transmitting such information to that person.
Note: For questions about the job posting, please contact the agency that posted this position by using the contact information provided on the "Contact" tab for the position.

Review Vacancy

Date Posted 07/22/21

Applications Due08/01/21

Vacancy ID89175

AgencyInformation Technology Services, Office of

TitleInformation Technology Specialist 2 (Information Security) Ref #18602

Occupational CategoryI.T. Engineering, Sciences

Salary Grade18

Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)

Salary RangeFrom $56604 to $71980 Annually

Employment Type Full-Time

Appointment Type Permanent

Jurisdictional Class Non-competitive Class

Travel Percentage 0%

Workweek Mon-Fri

Hours Per Week 37.50


From 9 AM

To 5 PM

Flextime allowed? No

Mandatory overtime? No

Compressed workweek allowed? Yes

Telecommuting allowed? Yes

County Albany

Street Address W. Averell Harriman State Office Campus, Building 5, 4th Floor

City Albany


Zip Code12207

Minimum Qualifications Bachelor’s degree* with at least 15 credit hours in cyber security, information assurance, or information technology.

*Substitution: Bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience.

Preferred Qualifications:

• Bachelor's Degree with a concentration or major in Information Security, Cyber Security, Digital Forensics, Information Assurance, or a related field.

• Certificate in Information Security Fundamentals (e.g., Security+, GSEC, CISF, GISF)

• 1+ years’ experience in technical writing

• Possess a working knowledge of:

o Information Security (CIA triad, Information Classification, Risk Management, Incident Response, Vulnerability Management, Security Architecture & Engineering).
o Computer programming and scripting.
o Database maintenance.
o Computer networks, intrusion detection systems, routers, firewalls, operating systems, network vulnerability assessments, web application vulnerability assessments, computer programming and scripting.

Duties Description Under the direction of senior team members within the Chief Information Security Office/Governance, Risk, & Compliance/Vulnerability Management section, this position will be a member of the Vulnerability Management team that provides vulnerability scanning services for ITS Portfolios, their client agencies, and other New York State entities government entities. The incumbent will perform platform maintenance on scanning platforms, web server, and database server. The incumbent will also develop, interpret, and deliver vulnerability scan reports, and assist with the development of process automation within the section.

The position requires communicating orally and in writing with various individuals including management, users, vendors, and other IT staff. The incumbent will have to work with ITS teams and upper-level agency management to help them understand the vulnerability data and provide input on corrective actions.

The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, ITS, or other NYS government entities.

Specific duties include, but are not limited to:
• Maintain vulnerability scanning tools including tool configuration, scan configuration, and report generation.
• Oversee the scheduling of scans in coordination with owners and custodians to ensure minimal impact to operational activities.
• Ensure appropriate owners and custodians are receiving scan reports and results.
• On behalf of owners and custodians, interpret scan results and determine appropriate remediation steps in coordination with other members of Risk Management and Integrated Security Services.
• Use SQL to obtain relevant data in the creation of reports.
• Use python and command line (batch) coding skills to help automate routine and special operational tasks.
• Assist with incident response activities including initiating mitigation and tracking of vulnerabilities
• Monitors and stays aware of information security industry trends, tools, and techniques.
• Performs additional duties as required.

Additional Comments Approval to fill these positions is pending with Division of the Budget (DOB). Background check and fingerprinting are required.

Some positions may require additional credentials or a background check to verify your identity.

Name Louise C. Nails

Telephone 518-473-5282

Fax 518-402-4924

Email Address


Street 26th Floor, Corning Tower, ESP

City Albany

State NY

Zip Code 12242


Notes on ApplyingTo apply, please submit a resume and cover letter to Louise C. Nails, no later than August 1, 2021, indicating you are applying for Information Technology Specialist 2 (Information Security) Ref: #18602. Please clearly indicate how you meet the minimum qualifications for this position. Your Social Security number may be required to confirm your eligibility.

Printable Version