Review Vacancy
AgencyInformation Technology Services, Office of
TitleInformation Technology Specialist 3 (Information Security) Ref #18748/18752
Occupational CategoryI.T. Engineering, Sciences
Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)
Salary RangeFrom $77770 to $98372 Annually
Minimum Qualifications Bachelor’s degree* with at least 15 credit hours in cyber security, information assurance, or information technology; and two years of information technology experience, including one year of information security or information assurance experience**.
*Substitution: bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience.
**Experience solely in information security or information assurance may substitute for the general information technology experience.
Preferred Qualifications:
• Bachelor's Degree with a concentration or major in Information Security, Cyber Security, Digital Forensics, Information Assurance, or a related field.
• Certifications in one or more of the following areas:
o Certificate in Computer Network Defense (e.g., GCIA, GCED, GDAT, GPPA, GCDA, GMON, GWEB, CND, ECIH, GCIH)
o Certificate in Cyber Threat Intelligence (e.g., CTIA, GCTI, CCIP, CSTIR)
o Certificate in Digital Forensics (e.g., ACE, GCFA, GCFE, GREM, GNFA)
o Certificate in Penetration Testing (e.g., GPEN, CEH, GAWN, GWAPT, LPT)
• 2+ years’ experience in technical writing
• 1+ years’ experience in the following areas:
o applying and implementing network and/or system security
o information security incident response
o cyber digital forensics
o log analysis (e.g., firewall logs, DNS logs, proxy logs, IPS/IDS logs)
o using SIEM technologies to support in-depth investigations
o using computer security investigation tools (e.g. FTK)
• Possess a working knowledge in the following areas:
o computer networks, intrusion detection systems, routers, firewalls, operating systems, network vulnerability assessments, web application vulnerability assessments, computer programming and scripting
o network security solutions (e.g., intrusion detection/prevention systems, firewalls)
o system administration
o vulnerability management
o computer programming and scripting
o Information Security (CIA triad, Information Classification, Risk Management, Incident Response, Vulnerability Management, Security Architecture & Engineering)
• Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.
• Demonstrated critical thinking, problem solving and analytical skills.
Duties Description Under the direction of senior team members within the Chief Information Security Office/Cyber Command Center/Security Operations Center, the incumber will participate in team efforts to respond to cyber-attacks and conduct investigations of cyber security events reported to the NYS Cyber Command Center. The incumbent will engage in activities to protect and defend New York State's infrastructure. In addition, the position will act as a liaison to other stakeholders to ensure that systematic activities follow NYS policies and standards and are coordinated with required teams.
The position requires communicating orally and in writing with various individuals including management, users, vendors, and other IT staff. The incumbent will have to work with ITS teams and upper-level agency management to resolve technically complex and politically sensitive issues under pressure.
The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, or ITS.
Specific duties include, but are not limited to:
Engage in first and second-level analysis, remediation and escalation of cyber events, including:
• Monitor cyber incident hotline, email box and service tickets and respond to reported events swiftly.
• Track and document events from initial detection through final resolution.
• Perform triage to include determining scope, urgency, and potential impact.
Engage in cyber incident response activities, including:
• Assist with in-depth analysis (e.g., logs, packet capture, reverse engineering) during cyber investigations.
• Assist in coordinating response efforts with internal (e.g., HR, Legal) and external organizations (e.g., law enforcement, inspector general).
• Help to establish root cause and provide remediation recommendations.
• Engage in digital forensic activities:
• Participate in the collection, seizure, and handling of digital or physical evidence while maintaining and documenting an appropriate chain of custody to maintain integrity.
Additionally, the incumbent will:
• Develop written standard operating procedures and related processes.
• Establish workflows to enhance productivity of the unit.
• Correlate data and performs trend analysis and reporting.
• Create written technical reports and executive summaries related to cyber security incidents and events.
• Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security.
• Perform system programming and scripting required for unit activities and supervises related tasks for subordinate team members.
• Develop and deliver presentations regarding cyber security threats and response and remediation efforts.
• Maintain operational metrics related to quality, accuracy and timeliness of deliverables and performance.
• Perform additional duties as assigned
Additional Comments Multiple positions will be filled from this posting. Background check and fingerprinting are required.
Some positions may require additional credentials or a background check to verify your identity.
Email Address HRresumes@ogs.ny.gov
Address
Street NYS Office of General Services, Human Resources Management
Empire State Plaza, Corning Tower, Floor 26
Notes on ApplyingTo apply, please submit a resume and cover letter indicating that you are applying for the Information Technology Specialist 3 (Information Security) Ref: #18748/18752. Please clearly indicate how you meet the minimum qualifications for this position. Your Social Security number may be required to confirm your eligibility.