NY HELP Yes Agency State Comptroller, Office of the Title Information Technology Specialist 2 Information Security, Item # 00706 Occupational Category I.T. Engineering, Sciences Salary Grade 14 Bargaining Unit PS&T - Professional, Scientific, and Technical (PEF) Salary Range From $65001 to $82656 Annually Employment Type Full-Time Appointment Type Contingent Permanent Jurisdictional Class Non-competitive Class Travel Percentage 0% Workweek Mon-Fri Hours Per Week 37.50 Workday From 8 AM To 4 PM Flextime allowed? No Mandatory overtime? No Compressed workweek allowed? No Telecommuting allowed? Yes County Albany Street Address Office of the State Comptroller 110 State Street City Troy State NY Zip Code 12236 Minimum Qualifications Bachelor’s degree in Information Security, Cyber Security, Digital Forensics, Information Assurance, or Information Technology related field, OR bachelor's degree with 15 credit hours in Cyber Security, Information Assurance, or Informational Technology AND two years of information security related technology experience. Appropriate information security or information assurance experience may substitute for the bachelor’s degree on a year-for-year basis; an associate’s degree requires an additional two years of information technology, information security, or information assurance experience. Experience solely in information security or information assurance may substitute for the general information technology experience.Non-Competitive Notes: If the number of interested candidates who meet the promotional qualifications is three or less, the agency; at its discretion, may nominate one or more of the candidates for a noncompetitive promotion without further examination under the provisions of Section 52.7 of the Civil Service Law.If the number of interested candidates who meet the promotional qualifications is more than three, the agency; at its discretion, may nominate one or more of the candidates for a provisional promotion under the provisions of Section 65 of the Civil Service Law Duties Description Assist with the agency’s infrastructure and application vulnerability scanning solutions (external and internal) including performing vulnerability scans, identifying and remediating issues, presenting vulnerability data, and working with the appropriate teams to resolve issues. Assist with managing Tenable.sc and Qualys scanning products including their configuration, maintenance, upgrades, and troubleshooting. Review and perform analysis on vulnerability scanning results. Perform analysis and provide guidance on vulnerabilities disclosures, vulnerabilities reports, and internal assessments. Monitor the threat landscape for changes impacting weaknesses, assess the risk to the agency, and work to address the risk with the appropriate technical groups. Assist with the agency’s process to deploy and review vulnerabilities on new servers and applications. Track compliance issues and verify remediation efforts with the appropriate groups. Assist with monitoring OSC’s on-prem and cloud environments for out of compliance patches and misconfigurations impacting security. Provide security assistance to the Chief Information Office (CIO) teams in evaluating security controls and provide secure solutions. Research security related items for agency projects. Assist with meetings on various security related topics (attending, organizing, taking notes, and assessing security controls). Assist with gap analysis, determine which policies and standards are not being complied with, work with groups to address areas that need to be improved, etc. Additional Comments Knowledge, Skills, and Abilities: Working knowledge of:o Information security, offensive security, network vulnerability assessments, and vulnerability scanning.o Networking, routers, firewalls, and operating systems. Ability to maintain sensitive and confidential information. Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts. Demonstrated critical thinking, problem solving and analytical skills.Telecommuting: The Office of the New York State Comptroller (OSC) supports telecommuting where it is reasonable to do so based upon the agency’s mission and operational needs. Generally, employees new to OSC will be restricted from telecommuting for at least 8 calendar weeks. After the initial 8 calendar week restriction, if an employee’s primary residence location, duties, and work performance are aligned with telecommuting and operational needs they may be allowed to do so. Generally, OSC employees may telecommute up to 5 days per pay period but may be approved to telecommute less.Reasonable Accommodation: The NYS Office of the State Comptroller provides reasonable accommodations to applicants with disabilities. If you need reasonable accommodation for any part of the application and hiring process, please notify the Division of Human Resources at (518) 474-1924.Equal Opportunity Employment: The Office of the NYS Comptroller values a workforce with a broad, diverse range of backgrounds and perspectives. All employees are expected to contribute to a professional environment focused on self-evaluation and improvement, as well as acceptance and support of coworkers. Some positions may require additional credentials or a background check to verify your identity.Name Meredith Holmquist Telephone (518) 474-1924 Fax (518) 486-6723 Email Address Jobs@osc.ny.gov Address Street Office of the State Comptroller, Office of Human Resources 110 State street, 12th Floor City Albany State NY Zip Code 12236 Notes on Applying Submit a clear, concise cover letter, resume, any unofficial transcripts, and a completed copy of this template, https://www.osc.ny.gov/files/Jobs/docs/00705-information-technology-specialist-2-info-sec-mq-template-september-2024.docx, to https://www.osc.ny.gov/jobs/openings/information-technology-specialist-2-information-security/092433 LINK no later than October 3, 2024.Unofficial transcripts and/or templates will be required for certain positions. To access this job vacancy,copy the link above and paste it into your web browser. Documents must be sent as unlocked and accessible attachments. Reference Item #00706-MLH on your cover letter for proper routing. If you have questions about this vacancy, please contact this Division representative: Division contact: Elizabeth Gifford at CIOHR@osc.ny.gov Please also submit a completed copy of this template with your application materials. Interview selection is based solely on the information you provide in this document.