Information Technology Specialist 2 (Information Security) Ref #18891R (JSOC)
Under the direction and support of higher-level team members within the Joint Security Operations Center (JSOC), the incumbent will be a member of a team that performs intake and initial triage of cyber security events. The incumbent will receive computer security alerts from various NYS infrastructures and will work to review, classify, prioritize, and escalate these alerts to the appropriate stakeholders. The position requires communicating orally and in writing with various individuals including management, users, vendors, and other IT staff. The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information or critical systems. Specific duties include, but are not limited to:
o Participate in the identification, triage, and escalation of security events. o Monitor multiple sources (phone, email, automated systems, etc.) for new security events. o Follow all established procedures, workflows, and tasks related to JSOC activities. o Ensure identified incidents are escalated efficiently. o Ensure that tickets are properly created and tracked in the ticket management system, and in a timely manner. o Ensure that trusted third party notifications are forwarded to the appropriate stakeholders. o Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security. o Perform additional duties as assigned
Job Function
Under the direction and support of higher-level team members within the Joint Security Operations Center (JSOC), the incumbent will be a member of a team that performs intake and initial triage of cyber security events. The incumbent will receive computer security alerts from various NYS infrastructures and will work to review, classify, prioritize, and escalate these alerts to the appropriate stakeholders. The position requires communicating orally and in writing with various individuals including management, users, vendors, and other IT staff. The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information or critical systems. Specific duties include, but are not limited to:
o Participate in the identification, triage, and escalation of security events. o Monitor multiple sources (phone, email, automated systems, etc.) for new security events. o Follow all established procedures, workflows, and tasks related to JSOC activities. o Ensure identified incidents are escalated efficiently. o Ensure that tickets are properly created and tracked in the ticket management system, and in a timely manner. o Ensure that trusted third party notifications are forwarded to the appropriate stakeholders. o Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security. o Perform additional duties as assigned
Salary Range:
From $61270 to $77912 Annually
Minimum Qualification
bachelor's degree with at least 15 credit hours in cyber security, information assurance, or information technology. Substitution:
bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience. Preferred
Qualifications:
o Bachelor's Degree with a concentration or major in Information Security, Cyber Security, Digital Forensics, Information Assurance, or a related field. o Certifications in one or more of the following areas:
o Certificate in Computer Network Defense (e.g., GCIA, GCED, GDAT, GPPA, GCDA, GMON, GWEB, CND, ECIH, GCIH) o Certificate in Cyber Threat Intelligence (e.g., CTIA, GCTI, CCIP, CSTIR) o 1
years' experience in technical writing o 1
years' experience in the following areas:
o applying and implementing network and/or system security o information security incident response o log analysis (e.g., firewall logs, DNS logs, proxy logs, IPS/IDS logs) o using SIEM technologies to support in-depth investigations o Possess a working knowledge in the following areas:
o computer networks, intrusion detection systems, routers, firewalls, operating systems, network vulnerability assessments, web application vulnerability assessments, computer programming and scripting o network security solutions (e.g., intrusion detection/prevention systems, firewalls) o system administration o vulnerability management o computer programming and scripting o Information Security (CIA triad, Information Classification, Risk Management, Incident Response, Vulnerability Management, Security Architecture & Engineering) o Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding. o Demonstrated critical thinking, problem solving and analytical skills.Estimated Salary: $20 to $28 per hour based on qualifications.
o Participate in the identification, triage, and escalation of security events. o Monitor multiple sources (phone, email, automated systems, etc.) for new security events. o Follow all established procedures, workflows, and tasks related to JSOC activities. o Ensure identified incidents are escalated efficiently. o Ensure that tickets are properly created and tracked in the ticket management system, and in a timely manner. o Ensure that trusted third party notifications are forwarded to the appropriate stakeholders. o Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security. o Perform additional duties as assigned
Job Function
Under the direction and support of higher-level team members within the Joint Security Operations Center (JSOC), the incumbent will be a member of a team that performs intake and initial triage of cyber security events. The incumbent will receive computer security alerts from various NYS infrastructures and will work to review, classify, prioritize, and escalate these alerts to the appropriate stakeholders. The position requires communicating orally and in writing with various individuals including management, users, vendors, and other IT staff. The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information or critical systems. Specific duties include, but are not limited to:
o Participate in the identification, triage, and escalation of security events. o Monitor multiple sources (phone, email, automated systems, etc.) for new security events. o Follow all established procedures, workflows, and tasks related to JSOC activities. o Ensure identified incidents are escalated efficiently. o Ensure that tickets are properly created and tracked in the ticket management system, and in a timely manner. o Ensure that trusted third party notifications are forwarded to the appropriate stakeholders. o Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security. o Perform additional duties as assigned
Salary Range:
From $61270 to $77912 Annually
Minimum Qualification
bachelor's degree with at least 15 credit hours in cyber security, information assurance, or information technology. Substitution:
bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience. Preferred
Qualifications:
o Bachelor's Degree with a concentration or major in Information Security, Cyber Security, Digital Forensics, Information Assurance, or a related field. o Certifications in one or more of the following areas:
o Certificate in Computer Network Defense (e.g., GCIA, GCED, GDAT, GPPA, GCDA, GMON, GWEB, CND, ECIH, GCIH) o Certificate in Cyber Threat Intelligence (e.g., CTIA, GCTI, CCIP, CSTIR) o 1
years' experience in technical writing o 1
years' experience in the following areas:
o applying and implementing network and/or system security o information security incident response o log analysis (e.g., firewall logs, DNS logs, proxy logs, IPS/IDS logs) o using SIEM technologies to support in-depth investigations o Possess a working knowledge in the following areas:
o computer networks, intrusion detection systems, routers, firewalls, operating systems, network vulnerability assessments, web application vulnerability assessments, computer programming and scripting o network security solutions (e.g., intrusion detection/prevention systems, firewalls) o system administration o vulnerability management o computer programming and scripting o Information Security (CIA triad, Information Classification, Risk Management, Incident Response, Vulnerability Management, Security Architecture & Engineering) o Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding. o Demonstrated critical thinking, problem solving and analytical skills.Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
