Departmental Specialist 13 - Data Protection and Management

State of MichiganLansing, MI
Hybrid

About The Position

The Michigan Department of Health and Human Services (MDHHS) is seeking a Security Specialist to be responsible for the development, implementation, coordination, and evaluation of security, privacy, and regulatory compliance activities. This role ensures MDHHS adherence to federal and state standards, including NIST SP 800-53, IRS Publication 1075, and other applicable frameworks. Key responsibilities include conducting and overseeing System and Organization Controls (SOC) report reviews, coordinating and participating in onsite security and compliance audits, evaluating application security scanning results, and managing all associated Plan of Action and Milestones (POAM) in Keylight to ensure timely remediation. The position also involves developing and maintaining departmental security policies, procedures, and standards; assessing audit findings and risk evaluations; recommending corrective actions; and developing and delivering security, privacy, and compliance training. The incumbent will provide expert guidance to MDHHS leadership, program areas, and technical staff on security requirements, risk mitigation, and regulatory obligations.

Requirements

  • Possession of a bachelor’s degree in any major.
  • Four years of professional experience, including two years equivalent to the experienced (P11) level or one year equivalent to the advanced (12) level.
  • Must apply online via NEOGOV.
  • Relevant experience and/or education must be documented in resume, transcript and/or application.
  • Attach a resume identifying specific experience and dates of employment (month and year, hours per week).
  • Attach a cover letter.
  • If applicable, attach a copy of official transcript(s) (scanned copies accepted; web-based, internet, or unofficial copies are not accepted).
  • Use of artificial intelligence (AI) software of any kind is prohibited in all areas of the selection process.

Nice To Haves

  • Experience with NIST SP 800-53.
  • Experience with IRS Publication 1075.
  • Experience with System and Organization Controls (SOC) report reviews.
  • Experience managing Plan of Action and Milestones (POAM) in Keylight.
  • Experience developing and delivering security, privacy, and compliance training.

Responsibilities

  • Develop, implement, coordinate, and evaluate security, privacy, and regulatory compliance activities.
  • Ensure MDHHS adherence to federal and state standards, including NIST SP 800-53 and IRS Publication 1075.
  • Conduct and oversee System and Organization Controls (SOC) report reviews.
  • Coordinate and participate in onsite security and compliance audits.
  • Evaluate application security scanning results.
  • Manage all associated Plan of Action and Milestones (POAM) in Keylight to ensure required remediation is completed in accordance with established timelines.
  • Develop and maintain departmental security policies, procedures, and standards.
  • Assess audit findings and risk evaluations.
  • Recommend corrective actions to enhance internal controls and strengthen agency compliance posture.
  • Develop and deliver security, privacy, and compliance training.
  • Provide expert guidance to MDHHS leadership, program areas, and technical staff regarding security requirements, risk mitigation, and regulatory obligations.

Benefits

  • Computers provided to perform state work.
  • Phones may be provided for necessary communications.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service