Address
Form of work
SalaryDescription
IT Security Senior Specialist
Full Time | Permanent
Salary Range: $91,776 - $123,468 Annually
This position is telework/hybrid position. Work may be performed from anywhere within the state of Washington. Travel to the Tumwater, WA headquarters office and other areas throughout the state may be required.
Are you an Information Technology security guru with a desire to land a career in public service? Do you strive to collaborate with others to ensure security compliance and best practices are followed? If so, the IT Security Senior Specialist role with the Washington State Department of Corrections may be a great fit for you! The goal of this role is to lead the agency as a subject matter expert in IT security policy and standards.
As an IT Security Senior Specialist, you will perform technical IT audits at all DOC facilities, internal security audits including access management and be responsible for the 3-year OCIO Attestation Audit. In addition, this position is responsible for reviewing current policies and creating new policies, procedures and guidelines where there is a gap in policy.
The candidate of choice will protect the agency by educating DOC employees through strong written policies, procedures, and guidelines. This position also assists in providing Tier 2 and 3 level support for IT investigations and the Electronics Records Discovery Unit in locating, acquiring, handling, and analyzing information following the rules of evidence, legal requirements, and public records requirements.
We are searching for someone who will assume the role of technical expert for IT security written policies, procedures and guidelines, and for the agency wide 365 Enterprise eDiscovery Tools. If you have an interest taking on a lead IT Security role within a large scale agency, while anticipating, analyzing and resolving security issues, we encourage you to apply to become a part of the Department of Corrections IT team!
A completed application packet will include:
- A detailed resume
- A cover letter regarding your interest for this position with our agency
- Three professional references
Duties
We are looking for teammates who share our vision of public service, committed to an equitable and inclusive culture that fosters and inspires excellence, while promoting innovation, engagement, and safety, leading to better outcomes for our incarcerated population, our agency, and our community.
As an IT Security Senior Specialist, some of your duties will include:
- Assuming the role of the agency’s Subject Matter Expert (SME) and lead for Facility IT Technical Audits including:
- Conducting cyber security facility IT technical audits ensuring compliance with OCIO standards, DOC policy and industry best practices
- Developing and creating an IT Security audit checklist that is aligned and linked to current policies and state and federal standards. and industry best practices
- Evaluating the technical configuration on a random sample of IT systems
- Consulting and collaborating with IT staff agency wide and community college IT staff state-wide on the configuration and security of computers used by offenders to ensure physical and technical security
- Developing and Performing Internal Security Audits for Access Management and Attestation Audits that could look like:
- Leading the 3 Year OCIO Attestation Audit
- Leading the Internal IT Access Management Audits
- Ensuring compliance with user roles, access right and privileges, and credentials provided to users
- Creating and updating access management policies and a formalized review procedure
- Providing input on and reviews agency-wide written Information Technology (IT) Cyber Security policy which could include:
- Consulting and collaborating on a new Cyber Security policy that is in alignment with the Washington State Office of the Chief Information Officer (OCIO) policies and standards
- Meeting with business units and stakeholders to determine the best approach in writing new policy or modifying existing policy that supports their business needs and insure secures the network
- Creating and updating Cyber Security instructions, procedures, and guidelines to ensure it is in alignment with the OCIO standards and current business processes
Qualifications
What we need (required qualifications):
- An Associate degree or higher in computer science, information assurance or related field from an accredited institution whose accreditation is recognized by the U.S. Department of Education or the Council for Higher Education Accreditation (CHEA), or a foreign equivalent*
- A minimum of four years dedicated continuous work in information technology.
- A minimum of two years cumulative experience in cyber security with an organization with at least 1 ,000 employees or staff.
- One-year professional IT experience, in a cybersecurity awareness role in addition to the aforementioned qualifications, may satisfy this educational requirement
What will make your application stand out (preferred qualifications):
- Bachelor's degree or higher in Computer Science or related field in information management, information security or cyber security from an accredited institution whose accreditation is recognized by the U.S. Department of Education or the Council for Higher Education Accreditation (CHEA).
- At least one of the following professional Level-2 certifications as defined by the Department of Defense 8570.01 -M Information Assurance Workforce Improvement Program such as Security+, GSEC, SCNP or SSCP.
- At least one of the following computing environment certifications, Certified Risk and Information Systems Controls (CRISC), Global Information Assurance Certifications — Certified Intrusion Analyst (GCIA) or, Certified Incident Handler (GCIH), or EC-Council Certified Security Analyst (ECSA).
- Experience in network security audits and compliance monitoring for wireless devices, modems, encryption systems, IT cyber security policies, programs, standards and procedures.
- Knowledge of applicable laws (e.g., Electronic Communications Privacy Act, Foreign Intelligence Surveillance Act, Protect America Act, search and seizure laws, civil liberties and privacy laws, etc.), statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code), Presidential Directives, executive branch guidelines, and/or administrative/criminal legal guidelines and procedures relevant to work performed
- Knowledge in performing IT security audits.
- At least one of the following computing environments certifications, Certified Information Systems Auditor (CISA), Certified Risk and Information Systems Controls (CRISC), Global Information Assurance Certifications – Certified Intrusion Analyst (GCIA) or, Certified (GCIH), or EC-Council Certified Security Analyst (ECSA)
Supplemental Information
Vision: Working together for safer communities.
Mission: Improving public safety by positively changing lives.
Our Commitment: To operate a safe and humane corrections system and partner with others to transform lives for a better Washington.
DOC is an equal opportunity employer and does not discriminate on the basis of race, creed, color, national origin, sex, marital status, sexual orientation, gender identity, gender expression, age, honorably discharged veteran, veteran status, genetic information, or the presence of any sensory, mental or physical disability or the use of a trained guide dog or service animal by a person with a disability.
IMPORTANT NOTES:
- Please include a minimum of three (3) professional references with your application. A professional reference is defined as an individual who has been paid to supervise your work and can attest to your work performance, technical skills, and job competencies. If you do not have any or sufficient professional references, please include non-related professionals, such as educators or other professional associates.
**Please note: Phone number AND email address are required for all professional references. - A background check including criminal record history will be conducted prior to a new hire. Information from the background check will not necessarily preclude employment but will be considered in determining the applicant’s suitability and competence to perform in the position.
- Employees may work directly with or near incarcerated individuals in a potentially hazardous setting. Please consider this when deciding whether to apply.
- We are committed to maintaining a drug and alcohol-free work environment, and our employees are expected to comply with all state and federal laws. A pre-employment drug test may be administered as part of the selection process, and applicants who test positive for any controlled substances, will be disqualified from consideration.
- Oleoresin Capsicum (OC) is an aerosol pepper spray made available as a means of self-defense and/or de-escalation. Applicants with sensitivities or allergies are encouraged to ask about the level of exposure they could expect in this position.
- Animal care projects are a common component of most Washington State prisons, including dog and cat programs. Applicants with animal sensitivities or allergies are encouraged to ask about the level of exposure they could expect in this position.
- Tuberculosis (TB) is a priority health issue for DOC employees. The successful candidate may be required to provide valid proof of a baseline TB skin test within 60 days from the date of hire. When positive tests result, further information, testing and treatment will also be required. Employment is not contingent upon test results.
- Foreign equivalent degrees awarded outside the United States must have a credential evaluation report attached to your application. You may request the required evaluation/documentation from www.wes.org and www.aice-eval.org. Until this documentation is provided, you will not be selected to move forward in the hiring process.
Telework Details
This position may be allocated for telework. Work may be performed from your home or another offsite location within the state of Washington using a reliable internet or cellular hotspot service at that time. Employees are expected to perform assigned duties in a safe manner, to take proper care all state-issued equipment, and maintain confidentiality of all information in possession while working offsite. Employees will be required to commute to a Department of Corrections facility or field office as business requires, to potentially include components of the onboarding process. Some offices will have a “drop in” area available, however, a dedicated workspace within a DOC facility will not be provided.
What We Offer:
As an employee of the Department of Corrections, your work-life integration is a priority. Washington State employees are offered one of the most inclusive and competitive benefits packages in the nation. Besides comprehensive family insurance for medical, dental, and vision, these perks also may include:
- Remote/telework/flexible schedules (depending on position)
- Up to 25 paid vacations days a year
- 8 hours of paid sick leave per month
- 12 paid holidays a year
- Generous retirement plan
- Flex Spending Accounts
- Dependent Care Assistance
- Deferred Compensation and so much more!
For questions about this recruitment, or to request reasonable accommodation in the application process, please email mackenzie.conley@doc1.wa.gov or call us at 509-630-9160. For TTY service, please call the Washington Relay Service at 7-1-1 or 1-800-833-6388.
