Review Vacancy
AgencyHomeland Security and Emergency Services, Division of
TitleManager Information Technology Services 2 (Information Security)
Occupational CategoryI.T. Engineering, Sciences
Bargaining UnitPS&T - Professional, Scientific, and Technical (PEF)
Salary RangeFrom $111627 to $136714 Annually
Appointment Type Contingent Permanent
Minimum Qualifications A bachelor’s degree with at least 15 credit hours in cyber security, information assurance or information technology AND five years of information technology experience including four years of information security or information assurance experience AND three years at a supervisory level or one year at a managerial level.
Substitution:
• Bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. An associate degree requires an additional two years of general information technology experience.
• Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis.
• Experience solely in information security or information assurance may substitute for the general information technology experience.
Desired Certifications:
• Cybersecurity and Incident Response (GSEC, GCIH, ECIH, CSIH, CND, GCIP)
• Information Security Management (e.g., GSLC, GSTRT, CISM, CCISO)
• Certified Information Systems Security Professional (CISSP)
• 4+ years' experience in technical writing
• Working knowledge of:
• Project Management
• computer networks with a strong understanding of networking concepts, protocols, services and operating systems (TCP/IP, UDP, DNS, DHCP, HTTP, SMTP, Windows, UNIX, Linux, etc.)
• technical security solutions (e.g., intrusion detection/prevention systems, firewalls)
• Information Security (CIA triad, Information Classification, Risk Management, Incident Response, Vulnerability Management, Security Architecture & Engineering)
• Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.
• Demonstrated critical thinking, problem solving and analytical skills.
Duties Description Duties will include but not limited to:
• Oversee all aspects of a team delivering Tabletop Exercises across New York State, including program and staff development, customer relations management, project management, and staff evaluation.
• Design, plan, and facilitate cyber security tabletop exercises to foster information-sharing and enhance cyber awareness with stakeholders.
• Conduct post-exercise after-action analysis, reporting, and assessment, develop recommendations, and design future exercises to validate improvements.
• Review, analyze, and comment on customer incident response plans and provide suggestions to improve customer incident response efforts.
• Conduct outreach to non-executive agencies, local governments, public authorities, and critical infrastructure entities to discuss cyber security policies, programs, and infrastructure.
• Develop customer-facing cyber security programs which align with industry best practices across domains such as IT asset management, configuration management, cyber security policies and procedures, data governance, access management, endpoint protection, vulnerability management, incident response and security awareness training.
• Liaise with cyber security industry experts to maintain knowledge of cyber trends and techniques.
• Assist team members tasked with customer-facing incident response as they perform analysis to determine root cause and provide guidance to the customer regarding incident containment, eradication, and recovery.
• Provide input to Cyber Incident Response Team (CIRT) members tasked with customer-facing incident response as they develop long term recommendations to Customers post-incident based on “lessons learned.”
• Provide training, guidance, and act as a mentor to subordinate team members.
• Perform full scope of supervisory functions.
• Possession and maintenance of a valid Driver’s License issued by the NYS Department of Motor Vehicles is required.
• The appointed candidate will be required to obtain one of the following certifications during their probationary period; GCIH, CISSP, GCCC, GSTRT.? Failure to obtain one of these certifications will result in termination.? Additional details about the required certifications will be discussed during the job interview.
• Travel will be required to support customer initiatives and engagements.
Additional Comments NOTE: Support of operations during times of emergency and disaster from State Emergency Operations Center (EOC), state field offices and/or local deployments may be required, which would result in a change and/or increase in working hours, locations and/or duties.
NOTE ON TELECOMMUTING: Employees are required to apply and obtain approval through management to telecommute according to the agency’s Telecommuting Program Guidelines.
Some positions may require additional credentials or a background check to verify your identity.
Email Address HRresumes@dhses.ny.gov
Address
Street NYS Division of Homeland Security and Emergency Services, HRM
1220 Washington Ave., Building 7A
Notes on ApplyingPlease submit a cover letter and/or resume detailing how you meet the minimum qualifications. Indicate the Position Title & Vacancy ID number of each position you are applying to.