THE NEW YORK STATE EDUCATION DEPARTMENT
Chief Information Security Officer 1, M2 (Management/Confidential)
The New York State Education Department's (NYSED) Office of the Chief Privacy Officer is seeking applicants for the position of Chief Information Security Officer 1. Under the direction of the Chief Privacy Officer, the incumbent of this position will ensure that information security policies and procedures are established and implemented to protect the information assets of NYSED, recommend security strategies for NYSED’s information security program and maintain current information security systems. Duties of this position include, but are not limited to, the following:
- Collaborate with other NYSED program offices, to lead, manage, and further develop NYSED’s information security program;
- Develop policies, procedures and programs that ensure compliance with all applicable federal and State laws and industry best practices;
- Evaluate risks that might affect NYSED’s information assets, and recommend improvements;
- Function as an internal consulting resource on information security issues for NYSED leadership and program offices;
- Manage and further develop NYSED’s information security technology assets, to ensure NYSED uses the right tools to proactively protect, shield, and defend its’ information assets from cyber threats and intrusions;
- Proactively monitor NYSED’s information assets to prevent the occurrence of cybersecurity incidents, and to detect adversaries and suspicious and unauthorized events with the goal of containing, mitigating, and reporting incidents as expeditiously as possible;
- Manage and further develop NYSED’s cybersecurity response policies, practices, and processes to minimize impact and ensure compliance with all statutory and applicable NY State agency requirements;
- Manage and further develop NYSED’s disaster recovery and business continuity policies and programs to ensure that business-critical information assets are recovered in the event of a disaster; and
- Lead, manage and further develop NYSED’s workforce information security awareness training program.
The following skills and abilities will be beneficial to successful performance of the job:
- Demonstrated ability to identify, analyze, evaluate, and measure information technology risks and communicate the same to NYSED leadership;
- Excellent written and verbal communication skills for written reports and communication with NYSED leadership and workforce;
- Demonstrated experience creating a comprehensive security compliance plan based on national security standards;
- Certified Information Security Professional (CISSP);
- Excellent analytical and problem-solving skills;
- Ability to work both independently and as a part of a team to deliver quality, on-time work product;
- Ability to work well with people from many different disciplines with varying degrees of technical experience;
- Outstanding organizational skills and attention to detail;
- Understanding of various regulatory and compliance mandates and security standards; and
- Experience developing or reviewing contracts and related procurement documents for compliance with information security policies and statutory requirements.
Candidates must have a bachelor’s degree AND five years of information technology experience, including three years of information security or information assurance experience. Appropriate information security or information assurance experience may substitute for the bachelor’s degree on a year-for-year basis; an associate’s degree requires an additional two years of information technology, information security, or information assurance experience. Experience solely in information security or information assurance may substitute for the general information technology experience.
This will be a permanent, non-competitive appointment. Promotions and transfers may change appointees’ negotiating unit. Applicants should be aware that changes in negotiating units may affect their salary, insurance, and other benefits. Verification of degree and/or transcripts will be required for all candidates at the time of interview. Filling of this position is contingent upon Division of the Budget approval.
*Leads to a maximum salary of $111,005 based on annual performance advances.
Qualified candidates should send a letter of interest and resume by July 31, 2018 to email@example.com (Email submissions preferred). You must include the Box number (PIMS-343/01720) of the position in the subject line of your email and cover letter to ensure receipt of your application.