Information Technology Specialist 2
The Information Technology Specialist 2, SG-18 assigned to the Business Integration Services Unit (BISU) will provide technology and support services to the State Police Field Operations. This position will report to the Technical Lieutenant with each Troop's Communications Supervisor providing administrative supervision and coordination as needed. DUTIES:
Ensuring Division compliance with applicable state and federal information security. Actively participating in project and process design, including review of business processes and proposed technology solutions to ensure that they meet Division's technology and security requirements. Participate in Division's audit program to ensure internal and external security program requirements are being carried out effectively and efficiently. Responsible for monitoring information security violations and incidents; conducting inquires, assessing potential damage, and recommending corrective or preventative action, as appropriate in conjunction with ITS. Working with ITS establishing, maintaining and ensuring the implementation of access control policies, procedures and systems that aim to prevent unauthorized access, modification, disclosure, misuse, manipulation or destruction of information stored on computer systems and networks. Review ITS and vendor contracts, service level agreements, memorandum of understanding language, and other documents to verify needs, requirements, and alignment with State Police policies and standards. Establishing and maintaining a program to classify data utilized in Division's business processes based on its need for confidentiality, integrity and/or availability; adhering to Division policies, as well as State and Federal policies. Developing, implementing and administering an agency information security risk assessment program. Establishing and administering an information security awareness program. Representing the NYSP regarding information security matters with other New York State agencies and outside organizations. Determines strategies for system security, system architecture, and for disaster recovery and other methods to maintain continuity of business operations to executive management. Monitoring Division's technology resources for misuse, including audit logs. Analyze Division's information security requirements (including security requirements for hardware, software and architecture that transports, processes and/or stores Division data), make appropriate recommendations and ensure the requirements are met. Acts as information security lead on projects and initiatives to ensure security by design through implementation of the Secure Systems Development Lifecycle (SSDLC). Identifies, evaluates, reports, and advises executive management on cybersecurity risks, with consideration for compliance and regulatory requirements. Additional duties as directed by the Captain - Business Integration Services Unit.
Job Function
The Information Technology Specialist 2, SG-18 assigned to the Business Integration Services Unit (BISU) will provide technology and support services to the State Police Field Operations. This position will report to the Technical Lieutenant with each Troop's Communications Supervisor providing administrative supervision and coordination as needed. DUTIES:
Ensuring Division compliance with applicable state and federal information security. Actively participating in project and process design, including review of business processes and proposed technology solutions to ensure that they meet Division's technology and security requirements. Participate in Division's audit program to ensure internal and external security program requirements are being carried out effectively and efficiently. Responsible for monitoring information security violations and incidents; conducting inquires, assessing potential damage, and recommending corrective or preventative action, as appropriate in conjunction with ITS. Working with ITS establishing, maintaining and ensuring the implementation of access control policies, procedures and systems that aim to prevent unauthorized access, modification, disclosure, misuse, manipulation or destruction of information stored on computer systems and networks. Review ITS and vendor contracts, service level agreements, memorandum of understanding language, and other documents to verify needs, requirements, and alignment with State Police policies and standards. Establishing and maintaining a program to classify data utilized in Division's business processes based on its need for confidentiality, integrity and/or availability; adhering to Division policies, as well as State and Federal policies. Developing, implementing and administering an agency information security risk assessment program. Establishing and administering an information security awareness program. Representing the NYSP regarding information security matters with other New York State agencies and outside organizations. Determines strategies for system security, system architecture, and for disaster recovery and other methods to maintain continuity of business operations to executive management. Monitoring Division's technology resources for misuse, including audit logs. Analyze Division's information security requirements (including security requirements for hardware, software and architecture that transports, processes and/or stores Division data), make appropriate recommendations and ensure the requirements are met. Acts as information security lead on projects and initiatives to ensure security by design through implementation of the Secure Systems Development Lifecycle (SSDLC). Identifies, evaluates, reports, and advises executive management on cybersecurity risks, with consideration for compliance and regulatory requirements. Additional duties as directed by the Captain - Business Integration Services Unit.
Salary Range:
From $61270 to $77912 Annually
Minimum Qualification
A Bachelor's Degree or higher in Computer Science, Computer Information Systems, Management Information Systems, OR A Bachelor's Degree or higher in a related field with eighteen (18) credit hours in Computer Science, OR A total of four (4) years of experience in the following computer-related areas:
network, server, storage, and systems management; telecommunications; IT customer support and training; computer installation; diagnosis and repair; technical writing; computer security; knowledge management; database administration, design and management; internet/intranet development, design, and maintenance; information technology project management; design and development of geographic information systems or computer aided drafting applications; computer programming; business/systems analysis; program design; or program testing. Preference will be given to candidates who possess one or more of the following:
One or more of the following Information Security certifications:
(ISC) Certified Information Systems Security Professional (CISSP) (ISACA) Certified Information Security Manager (CISM) (ISACA) Certified Information Systems Auditor (CISA) Possess knowledge and understanding of the organizational structure, functions, goals, objectives and workflow of Division programs; Possess working knowledge of the implications of applicable laws, rules and regulations governing the Division and its employees as it relates to information security; Possess knowledge and understanding of the major hardware and software systems currently in use by the Division, including their capabilities and limitations; Possess knowledge of trends and current developments in information security; Have experience in program development; including problem identification, research into alternative solutions, selection of a cost-effective solution, implementing procedures, and evaluating the results; Have the ability to organize and present support for recommendations and programs both orally and in writing; Have the ability to work effectively with end users and technology service providers; Experience in remediating Cyber Security Risk based on the NIST Special Publication 800-53r4 security framework, which has been adopted by New York State as the minimal best practices for Information Security.Estimated Salary: $20 to $28 per hour based on qualifications.
Ensuring Division compliance with applicable state and federal information security. Actively participating in project and process design, including review of business processes and proposed technology solutions to ensure that they meet Division's technology and security requirements. Participate in Division's audit program to ensure internal and external security program requirements are being carried out effectively and efficiently. Responsible for monitoring information security violations and incidents; conducting inquires, assessing potential damage, and recommending corrective or preventative action, as appropriate in conjunction with ITS. Working with ITS establishing, maintaining and ensuring the implementation of access control policies, procedures and systems that aim to prevent unauthorized access, modification, disclosure, misuse, manipulation or destruction of information stored on computer systems and networks. Review ITS and vendor contracts, service level agreements, memorandum of understanding language, and other documents to verify needs, requirements, and alignment with State Police policies and standards. Establishing and maintaining a program to classify data utilized in Division's business processes based on its need for confidentiality, integrity and/or availability; adhering to Division policies, as well as State and Federal policies. Developing, implementing and administering an agency information security risk assessment program. Establishing and administering an information security awareness program. Representing the NYSP regarding information security matters with other New York State agencies and outside organizations. Determines strategies for system security, system architecture, and for disaster recovery and other methods to maintain continuity of business operations to executive management. Monitoring Division's technology resources for misuse, including audit logs. Analyze Division's information security requirements (including security requirements for hardware, software and architecture that transports, processes and/or stores Division data), make appropriate recommendations and ensure the requirements are met. Acts as information security lead on projects and initiatives to ensure security by design through implementation of the Secure Systems Development Lifecycle (SSDLC). Identifies, evaluates, reports, and advises executive management on cybersecurity risks, with consideration for compliance and regulatory requirements. Additional duties as directed by the Captain - Business Integration Services Unit.
Job Function
The Information Technology Specialist 2, SG-18 assigned to the Business Integration Services Unit (BISU) will provide technology and support services to the State Police Field Operations. This position will report to the Technical Lieutenant with each Troop's Communications Supervisor providing administrative supervision and coordination as needed. DUTIES:
Ensuring Division compliance with applicable state and federal information security. Actively participating in project and process design, including review of business processes and proposed technology solutions to ensure that they meet Division's technology and security requirements. Participate in Division's audit program to ensure internal and external security program requirements are being carried out effectively and efficiently. Responsible for monitoring information security violations and incidents; conducting inquires, assessing potential damage, and recommending corrective or preventative action, as appropriate in conjunction with ITS. Working with ITS establishing, maintaining and ensuring the implementation of access control policies, procedures and systems that aim to prevent unauthorized access, modification, disclosure, misuse, manipulation or destruction of information stored on computer systems and networks. Review ITS and vendor contracts, service level agreements, memorandum of understanding language, and other documents to verify needs, requirements, and alignment with State Police policies and standards. Establishing and maintaining a program to classify data utilized in Division's business processes based on its need for confidentiality, integrity and/or availability; adhering to Division policies, as well as State and Federal policies. Developing, implementing and administering an agency information security risk assessment program. Establishing and administering an information security awareness program. Representing the NYSP regarding information security matters with other New York State agencies and outside organizations. Determines strategies for system security, system architecture, and for disaster recovery and other methods to maintain continuity of business operations to executive management. Monitoring Division's technology resources for misuse, including audit logs. Analyze Division's information security requirements (including security requirements for hardware, software and architecture that transports, processes and/or stores Division data), make appropriate recommendations and ensure the requirements are met. Acts as information security lead on projects and initiatives to ensure security by design through implementation of the Secure Systems Development Lifecycle (SSDLC). Identifies, evaluates, reports, and advises executive management on cybersecurity risks, with consideration for compliance and regulatory requirements. Additional duties as directed by the Captain - Business Integration Services Unit.
Salary Range:
From $61270 to $77912 Annually
Minimum Qualification
A Bachelor's Degree or higher in Computer Science, Computer Information Systems, Management Information Systems, OR A Bachelor's Degree or higher in a related field with eighteen (18) credit hours in Computer Science, OR A total of four (4) years of experience in the following computer-related areas:
network, server, storage, and systems management; telecommunications; IT customer support and training; computer installation; diagnosis and repair; technical writing; computer security; knowledge management; database administration, design and management; internet/intranet development, design, and maintenance; information technology project management; design and development of geographic information systems or computer aided drafting applications; computer programming; business/systems analysis; program design; or program testing. Preference will be given to candidates who possess one or more of the following:
One or more of the following Information Security certifications:
(ISC) Certified Information Systems Security Professional (CISSP) (ISACA) Certified Information Security Manager (CISM) (ISACA) Certified Information Systems Auditor (CISA) Possess knowledge and understanding of the organizational structure, functions, goals, objectives and workflow of Division programs; Possess working knowledge of the implications of applicable laws, rules and regulations governing the Division and its employees as it relates to information security; Possess knowledge and understanding of the major hardware and software systems currently in use by the Division, including their capabilities and limitations; Possess knowledge of trends and current developments in information security; Have experience in program development; including problem identification, research into alternative solutions, selection of a cost-effective solution, implementing procedures, and evaluating the results; Have the ability to organize and present support for recommendations and programs both orally and in writing; Have the ability to work effectively with end users and technology service providers; Experience in remediating Cyber Security Risk based on the NIST Special Publication 800-53r4 security framework, which has been adopted by New York State as the minimal best practices for Information Security.Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
