Review Vacancy
AgencyInformation Technology Services, Office of
TitleInformation Technology Specialist 2 (Information Security), ref #Roch18
Occupational CategoryI.T. Engineering, Sciences
Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)
Salary RangeFrom $66951 to $85138 Annually
Appointment Type Contingent Permanent
"Other" Explanation Multiple shifts being filled for 24x7x365 operations <br />Additional details on work shift will be discussed at time of interview
Workday
With the possibility of New York City or other locations statewide
Duties Description ITS provides operational support to state agencies on a 24x7x365 basis; some positions may be required to provide this critical service at any time.
This position will be located in Rochester, NY. The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, or ITS. Additional information on shift will be discussed at time of interview.
Under the direction of senior leadership within the Office of Information Technology Services Chief Information Security Office, the incumbent will be a Tier 0 Analyst working in the New York Security Operations Center (NYSOC) participating in the intake and triage of a wide variety of security events for NYSOC subscribers. The incumbent will leverage a variety of threat intelligence sources and indicators of compromise (IOCs) to perform SOC services across a large and diverse multi-entity environment. The incumbent will participate in the ingestion and response to all forms of threat intelligence and vulnerability announcements received from many third parties such as vendors, DHS CISA, MS-ISAC, NYSP, and other sources of open-source intelligence.
This position requires the incumbent to possess a solid understanding of the current cyber threat landscape, the tactics, techniques, tools, and procedures commonly leveraged, and the steps necessary to swiftly identify, and contain a potential cyber threat. Additionally, this position requires an incumbent to act with a great deal of independence in alignment with agency and upper-level management strategic direction.
Due to the nature of the work performed by the SOC, this position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities as needed.
Duties include, but are not limited to:
• Participate in the identification, triage, and escalation of security events.
• Respond to customer phone calls and emails in a professional manner.
• Analyze emails for malicious content and respond to customers with appropriate actions.
• Follow all established procedures, workflows, and tasks related to NYSOC activities.
• Ensure identified incidents are escalated efficiently.
• Create and track tickets are properly in the ticket management system in a timely manner.
• Respond to NYSOC subscriber’s alerts in a timely manner.
• Assist with incident response activities including log and packet analysis.
• Work with teams inside and outside of the NYSOC to resolve incidents.
• Provide input and feedback in the development and revision of standard operating procedures and workflows.
• Provide supporting analysis related to cyber security incidents and events.
• Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security.
• Perform additional duties as assigned.
Minimum Qualifications Information Technology Specialist 2 (Information Security)
Non-competitive: two years* of information technology, cybersecurity, or information assurance experience.
*Substitutions: A bachelor's or higher-level degree including or supplemented by 15 semester credit hours in computer science substitutes for both years of required experience; or a bachelor's or higher-level degree in any field substitutes for one year of required experience; 60 semester credit hours including or supplemented by 15 semester credit hours in computer science substitutes for one year of required experience.
Preferred Qualifications:
The ideal candidate would possess one or more of the following preferred qualifications:
• Certifications in one or more of the following:
• Cyber Defense (e.g., GCIA, GCIH, GCED, GSOM, GSOC, GMON, GCDA)
• Cyber Threat Intelligence (e.g., GCTI, CTIA, CCIP, GOSI)
• Information Security Management (e.g., CISSP, CISM, CCISO)
• 1+ years’ experience in one or more of the following:
• Working as a SOC analyst
• Conducting log analysis (e.g., firewall logs, DNS logs, proxy logs, IDS/IPS logs)
• Using SIEM technologies to support in-depth investigations
• Participating in cyber incident response
• Strong understanding of enterprise IT environments, including but not limited to system administration, network architecture, operating systems, endpoint detection and response tools, and network-based security solutions (e.g., IDS/IPS, firewalls).
• Strong understanding of the foundations of Information Security, such as the CIA triad, information classification, identity and access management, risk management, vulnerability management, secure architecture and engineering, network security, software development security, etc.
• Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.
• Demonstrated critical thinking, problem solving and analytical skills.
Additional Comments This posting may be used to fill multiple positions.
ITS will not offer permanent employment to any candidate unless the candidate provides documentation that they are authorized to accept work in the United States on a permanent basis. It is the policy of ITS not to hire F1 or H1 visa holders for permanent employment or to sponsor non-immigrant aliens for temporary work authorization visas or for permanent residence.
Some positions may require fingerprinting.
Some positions may require up to 25% travel and/or lifting up to 50 lbs. Some positions are pending Civil Service approval. Details of position(s) will be described further if you are selected for an interview.
Positions located in New York City, will receive an additional $3,400 downstate adjustment location pay with regular annual salary. Positions located in the Mid-Hudson will receive an additional $1,650 adjustment location pay.
Benefits of Working for NYS Generous benefits package, worth 65% of salary, including:
Holiday & Paid Time Off
• Thirteen (13) paid holidays annually
• Up to Thirteen (13) days of paid vacation leave annually
• Up to Five (5) days of paid personal leave annually
• Up to Thirteen (13) days of paid sick leave annually for PEF.
• Up to three (3) days of professional leave annually to participate in professional development
Health Care Benefits
• Eligible employees and dependents can pick from a variety of affordable health insurance programs
• Family dental and vision benefits at no additional cost
Additional Benefits
• New York State Employees’ Retirement System (ERS) Membership
• NYS Deferred Compensation
• Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds
• Public Service Loan Forgiveness (PSLF)
• And many more.
The Office of Information Technology Services is an equal opportunity employer, and we recognize that diversity in our workforce is critical to fulfilling our mission. We encourage all individuals with disabilities to apply.
Some positions may require additional credentials or a background check to verify your identity.
Some positions may require additional credentials or a background check to verify your identity.
Email Address PostingResponses@its.ny.gov
Address
Swan Street Building, Core 4, Floor 1
Notes on ApplyingTo apply for this position, please submit a cover letter and resume clearly indicating how you qualify. Ensure that you include the vacancy ID in the subject of your email for prompt routing. Your Social Security number may be required to confirm eligibility.