Please note: State agencies that contact job applicants do not usually request personal or financial information via text message or over the phone in connection with your response to a job posting. If you are contacted for such information by these methods, or any other method, please verify the identity of the individual before transmitting such information to that person.
Note: For questions about the job posting, please contact the agency that posted this position by using the contact information provided on the "Contact" tab for the position.

Review Vacancy

Date Posted 01/25/19

Applications Due02/25/19

Vacancy ID63720

AgencyHealth, Department of

TitleChief Information Security Officer 1 - 95000

Occupational CategoryEnforcement or Protective Services

Salary Grade662

Bargaining UnitM/C - Management / Confidential (Unrepresented)

Salary RangeFrom $87818 to $111005 Annually

Employment Type Full-Time

Appointment Type Permanent

Jurisdictional Class Non-competitive Class

Travel Percentage 0%

Workweek Mon-Fri

Hours Per Week 37.5

Workday

From 8:30 AM

To 4:30 PM

Flextime allowed? No

Mandatory overtime? No

Compressed workweek allowed? No

Telecommuting allowed? No

County Albany

Street Address Office of Quality and Patient Safety

ESP, Corning Tower

City Albany

StateNY

Zip Code12237

Minimum Qualifications Non-Competitive: bachelor’s degree* and five years of information technology experience, including three years of information security or information assurance experience.
*Appropriate information security or information assurance experience may substitute for the bachelor’s degree on a year-for-year basis; an associate’s degree requires an additional two years of information technology, information security, or information assurance experience. Experience solely in information security or information assurance may substitute for the general information technology experience.

Preferred Qualifications: Strong organizational, communications, and interpersonal skills. Experience with: All payer security and privacy requirements, as well as relevant National Institute of Standards and Technology (NIST) security standards and Security Policies & Standards required by CMS (Medicaid, Medicare, Children’s Health Insurance Program); System vulnerability testing; Security risk assessments; Access management; Developing or managing a system security plan (SSP) that meets national standards and policies (such as CMS’ Minimum Acceptable Risk Standards for Exchanges Version 2.0 SSP, NIST Special Publication 800-111, NIST SP 800-53, Health Insurance Portability and Accountability Act Compliance, Health Information Technology for Economic and Clinical Health Act, FIPS 140-2 compliance, and Federal Information Processing Standard Publication 199); Reviewing penetration testing and result reports, all payer vulnerability scans reports, and patch management reports; Developing and implementing incident response testing and responding to all critical events (e.g., outages, incidents, data breaches); All Payer, SPARCS and Vital Statistics data, including Data Use policies and practices; Providing oversight to complex governmental systems developed and/or operated by health information technology contractors; and all phases of database and application development in a health-related organization, including ensuring information security.

Duties Description The CISO 1 position will work within the Division of Information and Statistics (DIS) and will ensure essential security and oversight of the All Payer Database (APD). Because the APD architecture is being developed to assume data intake and hosting functionality currently provided by multiple independent systems, the CISO 1 will be responsible for overseeing a growing portfolio of systems that support transfer, intake, processing, and storing, of health care information. The CISO 1 will be responsible for overseeing the application of State and national security standards; implementing security controls to meet State and national standards; and granting access to and providing information security specific to the APD, Statewide Planning and Research Cooperative System (SPARCS), Vital Statistics (VS), Medicaid Data Mart, Open Data programs, data intake systems, and public and commercial health insurance program enrollment and term segment information.

Additional Comments Permanent, full-time, non-competitive appointment.

Some positions may require additional credentials or a background check to verify your identity.

Name Human Resources Management Group - BL/CISO1/95000

Telephone 5184861812

Fax 5184733395

Email Address resume@health.ny.gov

Address

Street ESP, Corning Tower

City Albany

State NY

Zip Code 12237

 

Notes on ApplyingSubmit resume to Human Resources Management Group, BL/CISO1/95000, Room 2217, Corning Tower Building, Empire State Plaza, Albany, New York 12237- 0012, or fax to (518)473-3395, or by email to resume@health.ny.gov, with Reference Code BL/CISO1/95000 included in the subject line. Failure to include the required information in the subject line of your email or fax may result in your resume not being considered for this position. Resumes will be accepted until February 25, 2019.

Printable Version