Review Vacancy
AgencyInformation Technology Services, Office of
TitleInformation Technology Specialist 4 (Information Security) Ref #18779 Tier 2 JSOC Analyst
Occupational CategoryI.T. Engineering, Sciences
Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)
Salary RangeFrom $88161 to $111111 Annually
Minimum Qualifications Bachelor’s degree* with at least 15 credit hours in cyber security, information assurance, or information technology; and three years of information technology experience, including two years of information security or information assurance experience**.
*Substitution: bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general
information technology experience.
**Experience solely in information security or information assurance may substitute for the general information technology experience.
Preferred qualifications:
• Bachelor's Degree with a concentration or major in Information Security, Cyber Security, Digital Forensics, Information Assurance, or a related field.
• Applicable Information Security certificate(s), including but not limited to:
o Certificate in Computer Network Defense (e.g., GCIA, GCED, GDAT, GPPA, GCDA, GMON, GWEB, CND, ECIH, GCIH).
o Certificate in Cyber Threat Intelligence (e.g., CTIA, GCTI, CCIP, CSTIR).
o Certificate in Information Security Management (e.g., GSLC, GSTRT, GCEIT, CISM, CCISO).
o Certified Information Systems Security Professional (CISSP).
• 3+ years’ experience in technical writing.
• 3+ years’ experience in the following areas:
o Leading a team in related work.
o Applying and implementing network and/or system security.
o Log analysis (e.g. firewall logs, DNS logs, proxy logs, IDS/IPS logs).
o Using SIEM technologies to support in-depth investigations.
• Working knowledge of:
o computer networks, intrusion detection systems, routers, firewalls, operating systems, network vulnerability assessments, web application vulnerability assessments, computer programming and scripting
o network security solutions (e.g., intrusion detection/prevention systems, firewalls)
o system administration
o vulnerability management
o computer programming and scripting
o Information Security (CIA triad, Information Classification, Risk Management, Incident Response, Vulnerability Management, Security Architecture & Engineering)
• Excellent speaking and writing skills. Able to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.
• Demonstrated critical thinking, problem solving and analytical skills.
Duties Description The position will report to the NYS ITS Director of Cyber Command in support of the Joint Security Operations Center (JSOC) activities. The New York JSOC Will Serve as a First-of-its-Kind Hub for Data Sharing and Cyber Coordination Across New York State, New York City, the Five Major Upstate Cities, Local and Regional Governments, Critical Infrastructure and Federal Partners. The incumbent will be a member and leader within a team that performs intake and initial triage of cyber security events. They will be responsible for the oversight and coordination of team activities, provide direction to other analysts, and as the primary escalation point to the Battle Captain. The incumbent will also be expected to ensure that systematic activities are coordinated with required teams and follow JSOC operation protocols.
Duties will include, but are not limited to:
• Serve as team leader for JSOC analysts, providing supervision of team activities related to computer security events for NYS.
• Participate in and provide management oversight for the identification, triage, and escalation of security events.
• Monitor multiple sources (phone, email, automated systems, etc.) for new security events.
• Ensure adherence to all established procedures, workflows, and tasks related to JSOC activities.
• Ensure identified incidents are escalated effectively.
• Ensure that tickets are properly created and tracked in the ticket management system and in a timely manner.
• Ensure that trusted third party notifications are forwarded to the appropriate stakeholders.
• Work with the JSOC ITS Program Manager, Battle Captain and other Senior Analysts to ensure that the standard operating procedures are being created and revised as needed for JSOC functions.
• Create written technical reports and executive summaries related to cyber security incidents and events.
• Identify opportunities to improve security monitoring and operational tasks.
• Provide training, guidance, and act as a mentor to subordinate team members.
• Supervise subordinate team members performing the full range of administrative responsibilities, including performance evaluations, time sheet approval, etc.
• Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security.
• Perform additional duties as assigned.
Additional position requirements:
The position requires communicating with various individuals including management, users, vendors, and other IT staff through spoken and written media. Due to the necessary technical support duties of this position in a 24/7 operation, the incumbent may be required to work various shifts such as weekends and/or nights/evenings.
Additional Comments Some positions may require additional credentials or a background check to verify your identity.
New York State is an equal opportunity employer.
As this position is located in New York City, you will also receive an additional $3,026 downstate adjustment location pay with your regular annual salary.
Some positions may require additional credentials or a background check to verify your identity.
Email Address HRresumes@ogs.ny.gov
Address
Street NYS Office of General Services, Human Resources Management
Empire State Plaza, Corning Tower, Floor 26
Notes on ApplyingPlease submit a clear, concise cover letter and resume, indicating that you are applying for ref#18779, describing how you qualify.