Information Security Officer - Revenue - Lottery - Kanawha
Listed on 2026-02-16
-
IT/Tech
Cybersecurity, Information Security
Division: WV Lottery - IT Office
Location:
900 Pennsylvania Ave. Charleston, WV 25302
Under general supervision, monitors security systems, networks, and endpoints for threats and anomalies; safeguard data, infrastructure, and application; respond to alerts and incidents. Conduct vulnerability assessments, risk analyses, and security audits; recommend remediation actions. Investigate security incidents and breaches, document findings, and implement mitigation strategies, lead forensic investigations and incident response exercises.
Develop and maintain the Disaster Recover (DR) plan, Incident Response (IR) plan, and Crisis Management (CM) plan to ensure organizational resilience. Facilitate the Business Continuity (BC) planning process in collaboration with business units, ensuring plans are up to date and tested. Develop, implement, and enforce cybersecurity policies, procedures, and best practices. Analyze security event data logs, conduct vulnerability assessments and threat intelligence to identify risks and patterns of attack.
Ensure compliance with applicable cybersecurity standards, frameworks, and regulatory requirements. Perform cybersecurity training and execute awareness campaigns for employees. Other duties as assigned.
Applicants are subject to an extensive background investigation by the WV Lottery Security Division. No person shall be appointed, employed, or continue to serve in any position or employment with the commission who has been convicted of any violation of the lottery law or of any felony or any crime related to theft or gambling. The commission shall remove or discharge any person so convicted.
ClickThe APPLY Link To Apply Online Instructions To Applicant
You must submit an application for each position of interest.
Your complete work history is used to qualify you for positions. Please be as detailed as possible and list all of your past employment in the Work Experience section of your application or you may attach it to your application with a resume.
If you have not previously submitted a copy of your official transcript or diploma, or licensure or training earned, you may attach it to your application or email it to applicant services
If you have already submitted copies of these documents with other applications, please do not resubmit. You may contact Staffing & Recruitment at if you have any questions.
If you would like to be notified of jobs of this nature or in other categories, please complete our Job Interest Card.
Minimum QualificationsTraining: Bachelor's Degree from a regionally accredited four‑year college or university.
Substitution: Up to two years experience as described below may substitute for the required training on a year‑for‑year basis.
Experience: Six years of full‑time or equivalent part‑time paid experience in computer science, information security, software engineering, information technology auditing, network administration, or other related information technology field.
Substitution- Master's Degree from a regionally accredited college or university may substitute for two (2) years of the required experience.
- Each professional information security certification or license from a nationally recognized professional organization, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), or Certified Information Security Manager (CISM), or other technical certifications at the discretion of the Office of Technology Chief Information Security Officer may be substituted for one year of work experience.
- Each technical or specialist certification, such as Systems Security Certified Practitioner (SSCP), Network + Certification, FBI Computer Analysis Response Team (CART) Field Examiner Certification, Computer Hacking Forensic Investigator (CHFI), or other technical certifications at the discretion of the Office of Information Technology Chief Information Security Officer may be substituted for six months of work experience.
- Successful completion of twenty‑four (24) semester credits or 384 hours of industry recognized/authorized/certified information security training / seminars, related to ISO job…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).