Review Vacancy
AgencyInformation Technology Services, Office of
TitleInformation Technology Specialist 3 (Information Security) Ref #18750
Occupational CategoryI.T. Engineering, Sciences
Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)
Salary RangeFrom $77770 to $98372 Annually
Minimum Qualifications Bachelor’s degree* with at least 15 credit hours in cyber security, information assurance, or information technology; and two years of information technology experience, including one year of information security or information assurance experience**.
*Substitution: bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience.
**Experience solely in information security or information assurance may substitute for the general information technology experience.
Preferred Qualifications:
• Bachelor’s degree with a concentration or major in Computer Science, Information Technology, or a related-field.
• 1+ years’ experience in technical writing
• Experience in IT systems and architecture with a focus on database development and/or application development.
• Demonstrated critical thinking, problem solving and analytical skills.
Duties Description Under the direction of senior team members, within the Chief Information Security Office/Information Security Engineering/Risk Management Team, the position will be a member of a Risk Management Team that identifies, standardizes, prioritizes, initiates remediation and tracks cyber security risks across ITS supported agencies. The incumbent will provide support the existing risk management processes and system and implement and support an enterprise Governance, Risk Management and Compliance (GRC) tool and implementation of processes. This individual will also work with Portfolio Information Security Officers to support their clients in reporting and advancing their security posture.
The position requires management of staff, strong verbal and written communication skills, and integration with various individuals and groups, including management, users, vendors, and other IT staff. The incumbent will have to work with ITS teams and upper-level agency management to resolve technically complex and politically sensitive issues under pressure.
Specific duties may include, but are not limited to:
• Support of existing Risk Assessment system, including XML data migration
• Conversion of Risk Assessment data into GRC Tool Vulnerability and Risk Tracking registers
• Report tracking and metric reporting of completed Risk Assessments
• Support implementation of GRC Archer
• Provide Level 3 support for Application system
o Understand and Develop Architectural Design of system for support
o Assist with Data mapping tasks within GRC tool
o Assist with design and implementation of workflows within system
o Documenting system specifications & user manuals
o Provide training sessions on GRC system to users and subordinate staff
o Testing use cases – write test plans and carry out testing on application system updates
o Build new business functionality and configure modules within the GRC tool as required.
o Map existing application risk assessment data to the new GRC tool
o Migrate data from existing application system database to Archer
o Implement reporting and dashboards with GRC tool
o Utilize programming skills to support Archer including API Scripts , Python and Selenium.
Additional Comments Background check and fingerprinting are required.
Some positions may require additional credentials or a background check to verify your identity.
Email Address HRresumes@ogs.ny.gov
Address
Street NYS Office of General Services, Human Resources Management
Empire State Plaza, Corning Tower, Floor 26
Notes on ApplyingTo apply, please submit a resume and cover letter indicating that you are applying for the Information Technology Specialist 3 (Information Security) Ref: #18750. Please clearly indicate how you meet the minimum qualifications for this position. Your Social Security number may be required to confirm your eligibility.