Information Technology Specialist Information Security - AR

Overview

Information Technology Specialist 2 (Information Security), SG-18 – Under the direction of senior team members within the Chief Information Security Office (CISO) / Cybersecurity Governance & Compliance (CGC) / Access Review section, this analyst will provide in-depth account and entitlement review for ITS and client agencies, ensuring agency compliance with regulatory requirements and standards.

The role requires an incumbent to act independently, aligning with CISO and upper-level management strategic direction. Responsibilities include communicating orally and in writing with stakeholders, working with ITS teams and upper-level management to ensure compliance with review standards, verifying completeness of reviews, resolving issues, and participating in the CISO Incident Response program to address security incidents.

• Participate in meetings to discuss specific requirements for new functionality of the access review application based on client feedback.
• Provide process improvements and recommendations to increase the ease and usability for the end user.
• Monitor, test, and troubleshoot technology issues in the current access review program to ensure it is functioning smoothly.
• Work with leadership on assigned development tasks to maintain current and future access review applications developed in Power App and SharePoint.
• Work with SharePoint databases and write queries to pull data directly from the back-end database.
• Assist the end users with questions or issues regarding the access review process/application.
• Collect, analyze, and summarize status information for upper management.
• Review and identify documentation needed for collecting, analyzing, and normalizing data from technologies to be reviewed in the access review tool.
• Develop and document processes for identifying data needed for access review to be completed.
• Assist with regulatory compliance audit/reviews.
• Perform additional duties as required.

Information Technology Specialist 2 (Information Security)

• Minimum two years of experience in information technology, cybersecurity, or information assurance.
• Substitutions:
  • Two years of experience can be substituted by a bachelor’s or higher-level degree including or supplemented by 15 semester credit hours in computer science.
  • One year of experience can be substituted by a bachelor’s or higher-level degree in any field, or by 60 semester credit hours including or supplemented by 15 semester credit hours in computer science.

• Bachelor’s Degree with a concentration in Information Security, Cybersecurity, Information Technology Management, Digital Forensics, or a related field.
• Applicable Information Security certificates (e.g., Security+, GSEC, CISF, GISF).
• Excellent oral and written communication skills.
• Demonstrated critical thinking, problem solving, presentation, and analytical skills.
• Ability to work with varying degrees of supervision.
• Detail oriented with strong organizational and project management skills.
• Two or more years of experience in: participating on multifaceted teams, project management/application development fundamentals, technical writing, and familiarity with presentation/marketing concepts, access review process and regulatory requirements, Active Directory and/or other entitlement technologies.

ITS will not offer permanent employment to any candidate unless the candidate provides documentation confirming they are authorized to work permanently in the United States. ITS does not hire F1 or H1 visa holders for permanent employment or sponsor non-immigrant aliens for temporary work authorization visas or permanent residence. Some positions may require fingerprinting, up to 25% travel, and/or lifting up to 50 lbs.

Positions are pending Civil Service approval; further details will be provided during the interview process.

• Holiday & Paid Time Off (13 paid holidays annually, up to 13 days of paid vacation annually, up to 5 days of paid personal leave annually, up to 13 days of paid sick leave annually for PEF, up to 3 days of professional leave annually).
• Health Care Benefits – Employees and dependents can choose from a variety of affordable health insurance programs; family dental and vision benefits at no additional cost.
• New York State Employees’ Retirement System (ERS) Membership.
• NYS Deferred Compensation.
• Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds.
• Public Service Loan Forgiveness (PSLF).
• Additional benefits are available.

The Office of Information Technology Services is an equal opportunity employer. We encourage all individuals with disabilities to apply. Applicants will be considered on qualifications, merit, and ability to perform job duties with or without reasonable accommodation.