Information Technology Specialist 3 Information Security - 10037

About The Position

Requirements

• Non-competitive: five years of information technology, cybersecurity, or information assurance experience.
• Substitutions: A bachelor's or higher-level degree in any field including or supplemented by 15 semester credit hours in computer science or related field substitutes for three years of required experience; any bachelor's substitutes for two years of required experience. An associate degree with 15 semester credit hours in computer science or related field may substitute for one year of required experience. Candidates in a bachelor's degree program with at least 15 semester credit hours in computer science or related field may substitute such credits for one year of required experience. A master's degree or higher in computer science or related field substitutes for one year of required experience.

Responsibilities

• Facilitate meetings with CISO and ITS management and other personnel to develop the annual Internal Control Testing Plan and monitor successful and timely completion.
• Oversee the assistance provided to ITS management and control-owners with the creation of business processes and supporting flowcharts as it relates to Internal Control requirements.
• In conjunction with control-owners, supervise tests of ITS controls, both technical and cybersecurity controls, providing guidance on responses and recommend process improvements where appropriate.
• Maintain an in-depth knowledge of State and Federal legislative requirements.
• Review State and Federal legislative changes that may impact ITS policy and procedures related to internal controls.
• Assist CISO and ITS management with updating program policies and procedures to enhance internal controls and continue to adhere to the Internal Controls Act of 1987
• Contribute to the review and publication of Cybersecurity policies working closely with the CISO Governance & Compliance team.
• Contribute to the development of management action plans as the result of internal and external audit recommendations.
• Monitor, track, and report on management action plans through to implementation or closing of an Internal Control program recommendation.
• Develop reports to provide management with periodic key performance measures (KPIs).
• Develop and maintain standard operating procedures (SOPs) to support function of the Internal Control program.
• Provide internal control and process improvement consultation and training concerning internal control matters.
• Supervise and manage staff when required.
• Perform additional duties as required.

Benefits

• Thirteen (13) paid holidays annually
• Up to Thirteen (13) days of paid vacation leave annually
• Up to Five (5) days of paid personal leave annually
• Up to Thirteen (13) days of paid sick leave annually for PEF.
• Up to three (3) days of professional leave annually to participate in professional development
• Eligible employees and dependents can pick from a variety of affordable health insurance programs
• Family dental and vision benefits at no additional cost
• New York State Employees' Retirement System (ERS) Membership
• NYS Deferred Compensation
• Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds
• Public Service Loan Forgiveness (PSLF)