IES Security Architect (Project Coordinator) ref#StateJobsNY • United States
Cette offre d'emploi n'est plus disponible
IES Security Architect (Project Coordinator) ref#
StateJobsNY
- United States
- United States
À propos
ITS provides operational support to state agencies on a 24x7x365 basis; some positions may be required to provide this critical service at any time. Under the direction of the IES Deputy Commissioner, the Security Architect will be assigned to the Integrated Eligibility System (IES) and will provide hands-on security experience for building applications, products, and platforms to ensure all are built to security specifications and controls. The incumbent will also provide practical technical solutions to ensure Internal Revenue Service (IRS) Pub 1075 and Social Security Administration (SSA) regulatory compliance. The position will provide each workstream under the IES Program with all security risk management needs following both State and Federal guidelines and will support hiring and subordinate Information Security staff(s) to enable effective delivery of security services to client agencies. The incumbent will act as a member of the IES Leadership Team, helping shape and implement the strategic vision for cyber security within the program. This is a technical role first with the ability to hire for the future. The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, or ITS. Specific duties include, but are not limited to: Core Information Security & Risk Management: Establish Security Architecture: Ownership of security architecture documentation. This documentation is mandated through various NYS and Federal compliance requirements. Risk Identification & Assessment: Proactively finding and evaluating cybersecurity risks. This is about understanding potential threats and vulnerabilities. Risk Remediation: Proposing and communicating practical solutions to address identified risks to executive management. This bridges the gap between technical findings and business decisions. Key Risk Indicators (KRIs): Developing, implementing, and monitoring KRIs for an "IES program" (likely Information, Education, or similar). KRIs are metrics used to track and manage risk levels. Incident Management: Managing and resolving security incidents affecting agency information systems. This is the "firefighting" aspect, responding to breaches or attacks. Technical Support: Providing hands-on technical expertise for various cybersecurity activities, including coordinating penetration testing, analyzing configurations, and assessing vulnerability reports. Develop Security Guidelines: Establish IES Security Guidelines based on NYS and Federal security policy and standard. Team & Resource Management: Collaboration with IES Solution Architects and Enterprise Architecture. Staff & Resource Management: Managing personnel and resources dedicated to Security Services Teams. This involves leadership and operational oversight. Audit Liaison: Acting as the main point of contact for internal and external audits, ensuring readiness, accuracy of responses, and compliance. CISO & Agency Relationship: Maintaining strong working relationships with the Chief Information Security Officer (CISO) within the ITS Agency and Risk/ Security personnel in other Agencies, to align agency security with enterprise strategy. Minimum Qualifications: Eight (8) years of information technology, cybersecurity, or information assurance experience*, including two years at the supervisory level. The following degrees may substitute for the general experience as indicated: Associate's degree and seven years of experience Associate's degree including 15 semester credit hours in computer science and six years of experience Bachelor's degree and six years of experience Bachelor's degree including 15 semester credit hours in computer science and five years of experience Master's degree in computer science or related field substitutes for an additional year of experience Doctorate in computer science or related field substitutes for an additional 2 years of experience Preferred Qualifications: Ability to act with a great deal of independence in alignment with State and Federal Secure system policies. Strong communication skills both orally and in writing (i.e., Security Strategy and Plans, etc.) with various individuals including management, users, Federal and State Stakeholders, vendors, and other IT staff. Ability to communicate clearly with subordinate staff regarding work priorities and performance. Benefits of Working for NYS: Generous benefits package, worth 65% of salary, including: Holiday & Paid Time Off Up to Thirteen (13) paid holidays annually Up to Thirteen (13) days of paid vacation leave annually Up to Five (5) days of paid personal leave annually Up to Thirteen (13) days of paid sick leave annually for PEF. Up to three (3) days of professional leave annually to participate in professional development Health Care Benefits Eligible employees and dependents can pick from a variety of affordable health insurance programs Family dental and vision benefits at no additional cost Additional Benefits New York State Employees' Retirement System (ERS) Membership NYS Deferred Compensation Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds Public Service Loan Forgiveness (PSLF) And many more. Some positions may require additional credentials or a background check to verify your identity.
Compétences linguistiques
- English
Avis aux utilisateurs
Cette offre a été publiée par l’un de nos partenaires. Vous pouvez consulter l’offre originale ici.