28 Information Technology Specialist 4 (Information Security), Item #00702 Jobs in Albany, NY
SORT BY
S
S
S
S
S
S
S
S
T
S
S
T
E
I
I
I
I
I
T
T
I
I
I
S
E
Information Technology Specialist 4 (Information Security), Item #00702
$78k-95k (estimate)
Full Time
9 Months Ago
State Comptroller, Office of the is Hiring an Information Technology Specialist 4 (Information Security), Item #00702 Near Albany, NY
Bachelor’s degree* in Information Security, Cyber Security, Digital Forensics, Information Assurance, or Information Technology related field, OR bachelor's degree with 15 credit hours in Cyber Security, Information Assurance, or Informational Technology AND three years of information technology experience, including two years of information security or information assurance experience.**
- Bachelor’s degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor’s degree on a year-for-year basis; an associate’s degree requires an additional two years of information technology, information security, or information assurance experience.
Duties Description
- Perform cloud security related activities within Microsoft and Oracle environments.
- Research new cloud technologies and security related solutions.
- Provide guidance and knowledge on various Microsoft cloud solutions, including but not limited to, conditional access policies, Intune, SharePoint, OneDrive, Azure, O365, Multi Factor Authentication (MFA), and Privileged Access Management (PAM).
- Implement Data Loss Prevention (DLP) and security best practices.
- Provide guidance and knowledge on Oracle Cloud Infrastructure and related products.
- Evaluate and ensure Office of the State Comptroller’s (OSC) Microsoft Cloud environment meet National Institute of Standard and Technology (NIST) security best practices.
- Review OSC’s adherence to compliance requirements (i.e., CIS Benchmarks, NIST).
- Assist with SharePoint implementation, including security best practices.
- Manage the evaluation of cloud computing vendors and determine the security requirements for cloud projects based on the risks involved.
- Conduct research to determine agency risk related to exploits, vulnerabilities, attack techniques, tools, technology, and best security practices.
- Oversee and perform various security compliance reviews and assessments against current security policies and standards, including guiding subordinates on the assessments they are performing.
- Manage OSC's compliance to the Federal Governments Controlled Unclassified Information (CUI) security requirements.
- Support the Information Security Office (ISO) by researching industry privacy requirements, personal and private information (PPI) requirements and best practices.
- Develop and maintain information security policies and standards.
- Lead information classification exercises on behalf of the ISO.
- Ensure team members are equipped with the knowledge, skills, and ability to support OSC business units with classifying information appropriately.
- Ensure information classification documentation is kept current.
- Propose security recommendations to safeguard OSC’s information assets.
- Manage and review exceptions to security policies and standards.
- Supervise projects requiring ISO participation.
- Supervise and train subordinates on information security.
- Guide OSC’s security awareness program.
- Oversee the writing of security articles related to issues important to OSC.
- Provide support and content for the security awareness program on the ISO website.
- Research security best practices for articles to include in the ISO website.
- Ensure participation, completion, and documentation of OSC’s security awareness training course.
- Plan and supervise the activities of subordinate staff to ensure ISO duties are performed accurately, timely, and according to established priorities and division goals/strategies.
- Communicate objectives and expectations to staff by allocating resources, assigning tasks/projects, reviewing progress/deliverables, and providing constructive feedback.
- Perform the full range of supervisory responsibilities including, but not limited to, development and completion of comprehensive performance evaluations and review of timesheets/telecommuting journals.
- Develop training plans and/or provide staff with training opportunities appropriate to their level of expertise including on-the-job training, vendor sponsored events and formal outside training, as needed.
- Facilitate knowledge transfer across the team.
- Promote collaboration across the organization.
- Address personnel and employee performance issues timely and with discretion.
- Understand and ensure the adherence to all agency policies and standards.
- Inform management of progress, issues, and risks that could affect the completion of objectives, as well as requests outside of assigned duties.
Additional Comments
Knowledge, Skills, and Abilities:
o Microsoft Azure and O365 environments.
o Information Security (CIA triad, Information Classification, Risk Management).
o Information Security Frameworks (NIST Cyber Security Framework, CIS Controls).
o Information Classification.
o Microsoft Intune.
o Microsoft SharePoint.
o Microsoft OneDrive.
o Microsoft Azure.
o Privileged Access Management (PAM).
o Multi Factor Authentication (MFA).
o Implement document labeling and Data Loss Prevention (DLP).
o Creating and updating organization wide security policies and procedures.
o Conditional access policies.
The Office of the New York State Comptroller (OSC) supports telecommuting where it is reasonable to do so based upon the agency’s mission and operational needs. Generally, employees new to OSC will be restricted from telecommuting for at least 8 calendar weeks. After the initial 8 calendar week restriction, if an employee’s duties and work performance are aligned with telecommuting they may be allowed to do so. Upon approval to telecommute, OSC employees may telecommute up to 5 days per pay period.
- Three years of experience working as an information security professional.
- Working knowledge of:
o Microsoft Azure and O365 environments.
o Information Security (CIA triad, Information Classification, Risk Management).
o Information Security Frameworks (NIST Cyber Security Framework, CIS Controls).
o Information Classification.
- Demonstrated experience in one or more of the following areas:
o Microsoft Intune.
o Microsoft SharePoint.
o Microsoft OneDrive.
o Microsoft Azure.
o Privileged Access Management (PAM).
o Multi Factor Authentication (MFA).
o Implement document labeling and Data Loss Prevention (DLP).
o Creating and updating organization wide security policies and procedures.
o Conditional access policies.
- Excellent verbal and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.
- Demonstrated critical thinking, problem solving and analytical skills.
- Demonstrated skill in facilitating meetings, listening, and negotiating between multiple stakeholders to drive results.
The Office of the New York State Comptroller (OSC) supports telecommuting where it is reasonable to do so based upon the agency’s mission and operational needs. Generally, employees new to OSC will be restricted from telecommuting for at least 8 calendar weeks. After the initial 8 calendar week restriction, if an employee’s duties and work performance are aligned with telecommuting they may be allowed to do so. Upon approval to telecommute, OSC employees may telecommute up to 5 days per pay period.
Job Summary
JOB TYPE
Full Time
SALARY
$78k-95k (estimate)
POST DATE
08/11/2023
EXPIRATION DATE
05/30/2024
Show more
Similar Jobs
Popular Articles
Top 10 Things to Avoid Putting on a Job Application
Read Article
How to Describe Your Education in a Resume
Read Article
How to Write a Memorable Cover Letter in 5 Ways
Read Article
4 Personal Finance Tips to Make During Job Transition
Read Article
4 Best Camera Setups for Interview
Read Article
Keeping a Job Search Journal: 9 Types of Journaling You Can Do
Read Article
