Information Security Manager

POSTED ON 9/2/2022 CLOSED ON 10/13/2022

Job Posting for Information Security Manager at Information Technology Services, Office of

Bachelor’s degree with at least 15 credit hours in cyber security,
information assurance or information technology and six years of information technology experience, including five years of information security or information assurance experience and four years at a supervisory level or two years at a managerial level.

Note: Bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience. Experience solely in information security or information assurance may substitute for the general information technology experience.

Preferred Qualifications:

  • Master’s degree with a concentration or major in:
o Information Security, Cyber Security, Digital Forensics, or a related field.
o Business Administration, Public Administration, or a related field.

  • Certificates in one or more of the following:
o Information Security Fundamentals (e.g., Security , GSEC, CISF, GISF)
o Information Security Management (e.g., GSLC, GSTRT, GCEIT, CISM, CCISO)
o Information Security Risk Management (e.g., CRISC, CAP, GCCC, CCSLP)
o Certified Information Systems Security Professional (CISSP)

  • 5 or more years of experience in the following:
o Leading a team in related work.
o Applying and implementing network and/or system security.
o Information security incident response.
o Security policy/standard/guideline development, implementation, or interpretation.
o Technical writing
o Conducting risk assessments and evaluating information technology systems for security controls (Secure Systems Development Lifecycle).
o Compliance assessments, audit support/response, and compliance/audit remediation.
o Developing metrics and key performance indicators.
o Process development and process improvement.

  • Possessing a working knowledge of the following:
o Government security and privacy mandates/regulatory compliance (e.g., HIPAA, PCI, IRS Pub 1075, CJIS).
o Information Security (CIA triad, Information Classification, Risk Management, Incident Response, Vulnerability Management, Security Architecture & Engineering).
o Business intelligence, data analysis, data modeling, data visualization, and data presentation.
o Information Security Frameworks (NIST Cyber Security Framework, CIS Controls, ISO 2700 series).
o IT Management Frameworks (ITIL, COBIT).
o Project Management

  • Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.

  • Demonstrated critical thinking, problem solving and analytical skills.

  • Demonstrated skill in facilitating meetings, listening, and negotiating between multiple stakeholders to drive results.
Duties Description
Under the direction of the Chief Information Security Officer, within the Chief Information Security Office/Integrated Security Services the position will oversee the Integrated Security Services Bureau which consists of the Information Security Engineering, Security Service Teams, and Risk Management Sections. The position will supervise three or more Manager of Information Technology Services 2 [SG 29] who are responsible for over 30 staff. The incumbent will act as a senior member of the Chief Information Security Office Leadership Team, helping shape and implement the strategic vision for cyber security within NYS.

The position requires an incumbent to act with a great deal of independence in alignment with agency and upper-level management strategic direction. The position requires communicating orally and in writing with various individuals including executive management, users, vendors, and other IT staff. The incumbent must be able to communicate clearly with subordinate staff regarding work priorities and performance. The incumbent will have to work with ITS teams and upper-level agency management to resolve technically complex and politically sensitive issues under pressure.

The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information, critical systems, NYS agencies, or ITS.

Specific duties include, but are not limited to:
  • Performs administrative and strategic functions to assist the Chief Information Security Officer in managing the operations of the Chief Information Security Office:
o Sets long-term information security goals and vision; builds strategies and goals with IT and business partners; and directs the future development of long-term information security strategies;
o Provides leadership, vision and direction for innovative problem solving (usually on a Statewide basis) and anticipates future needs in relation to cyber security industry trends;

  • Directs the Integrated Security Services Bureau in developing, deploying and maintaining procedures in accordance with State and agency information security policies and standards. Monitors compliance and takes appropriate action as needed.

  • Oversees development and implementation of the Integrated Security Services Bureau’s information security risk management program.

  • Oversees resolution of security threats to agency information systems.

  • Serves as information security expert, and evaluates systems and contract for alignment with agency and State information security policies

  • Monitors and stays aware of information security industry trends, tools and techniques.

  • Manages staff and resources dedicated to the Integrated Security Services Bureau

  • Maintains an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security

  • Assists CISO with overall management of division activities as needed
Additional Comments

Additional information regarding salary will be discussed at time of interview. Background check and fingerprinting are required.

All Office of Information Technology Services (ITS) employees are required to be tested weekly for COVID-19 unless they are fully vaccinated. Employees who are vaccinated must provide proof of vaccine status through a secure online portal.

New York State is an equal opportunity employer.

 Apply for this job

 Receive alerts for other Information Security Manager job openings

Report this Job

Salary.com Estimation for Information Security Manager in Albany, NY
$141,242 to $178,787

Sign up to receive alerts about other jobs that are on the Information Security Manager career path.

Click the checkbox next to the jobs that you are interested in.

Income Estimation: 
$139,595 - $176,702
Income Estimation: 
$153,057 - $221,740
Income Estimation: 
$128,401 - $158,694

Sign up to receive alerts about other jobs with skills like those required for the Information Security Manager.

Click the checkbox next to the jobs that you are interested in.

This job has expired.

Job openings at Information Technology Services, Office of

Information Technology Services, Office of
Hired Organization Address Albany, NY Full Time
Seven years of experience managing large, complex contracts with a value greater than $50,000,000, including one year of...
Information Technology Services, Office of
Hired Organization Address Albany, NY Full Time
Must be a US citizen or foreign national eligible to work in the United States Must be 18 years of age or older Must be ...
Information Technology Services, Office of
Hired Organization Address Albany, NY Full Time
Current New York State employee with one year or more of permanent, contingent-permanent or 55b/c service in a position ...
Information Technology Services, Office of
Hired Organization Address Albany, NY Full Time
Bachelor’s degree* with at least 15 credit hours in cyber security, information assurance, or information technology; an...

Not the job you're looking for? Here are some other Information Security Manager jobs in the Albany, NY area that may be a better fit.

Manager Information Technology Services 2 (Information Security)

Homeland Security and Emergency Services, Division..., Albany, NY

Information Technology Specialist 2 (Information Security)

Homeland Security and Emergency Services, Division..., Albany, NY