EBR Deputy Delivery Center Information Security Officer (Information Technology Executive 2)
Commonwealth of Pennsylvania•Dauphin County, PA
•Hybrid
About The Position
Step into the dynamic role of EBR Deputy Delivery Center Information Security Officer! As operational second-in-command to the Delivery Center Information Security Officer, you will directly support the management of cybersecurity programs, policies, procedures, and operational security services within the Office for Information Technology’s (IT) Employment, Banking, and Revenue (EBR) Delivery Center. Apply now and share your expertise to shape security practices, support agencies with key fiscal and workforce related missions, and keep essential state systems protected.
Requirements
- Seven years of professional information technology experience and a bachelor’s degree; or Eleven years of professional information technology experience; or An equivalent combination of experience and training.
- Five years of experience supporting information security, cybersecurity, IT risk management, IT compliance, IT audit, security operations, or closely related information technology functions.
- Five years of experience coordinating projects, assessments, audits, remediation activities, or cross-functional initiatives involving technical and business stakeholders.
- Five years of experience interpreting and applying policies, procedures, standards, and compliance requirements in an operational environment.
- Five years of experience preparing reports, summaries, metrics, recommendations, or other documentation for management review.
- Must be able to perform essential job functions.
- Must pass a background investigation and meet Criminal Justice Information Services (CJIS) compliance requirements.
Nice To Haves
- ITIL Foundations certification
Responsibilities
- Guide day-to-day cybersecurity activities to ensure consistent execution, administration, and enhancement of the security program
- Assess risks, review findings, and help coordinate decisions regarding acceptance, mitigation, remediation, or transfer of risk
- Work with technical staff, agency personnel, and other stakeholders to ensure the effective implementation of security requirements into processes, discussions, and deliverables
- Participate in creation, implementation, and review of security policies, procedures, standards, guidance, and operating practices designed to protect sensitive, confidential, and mission critical information
- Help plan, carry out, and analyze incident, audit, assessment, and compliance activities under deadlines
- Ensure adherence to established enterprise incident response procedures; serve as an operational point of contact during security incidents or urgent matters as needed
Benefits
- Telework: You may have the opportunity to work from home (telework) part-time, up to two days per week.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Executive
