Information Technology Specialist 2 (Information Security) JSOC

Duties Description

Under the direction and support of higher-level team members within the Joint Security Operations Center (JSOC), the incumbent will be a member of a team that performs intake and initial triage of cyber security events. The incumbent will receive computer security alerts from various NYS infrastructures and will work to review, classify, prioritize, and escalate these alerts to the appropriate stakeholders.

The position requires communicating orally and in writing with various individuals including management, users, vendors, and other IT staff. The position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities that may impact sensitive information or critical systems.

Specific duties include, but are not limited to:

• Participate in the identification, triage, and escalation of security events.

• Monitor multiple sources (phone, email, automated systems, etc.) for new security events.

• Follow all established procedures, workflows, and tasks related to JSOC activities.

• Ensure identified incidents are escalated efficiently.

• Ensure that tickets are properly created and tracked in the ticket management system, and in a timely manner.

• Ensure that trusted third party notifications are forwarded to the appropriate stakeholders.

• Maintain an adequate level of current knowledge and proficiency in information security through annual Continuing Professional Education (CPE) credits directly related to information security.

• Perform additional duties as assigned

Minimum Qualifications

bachelor’s degree* with at least 15 credit hours in cyber security, information assurance, or information technology.

*Substitution: bachelor's degree candidates without at least 15 course credits in cyber security, information assurance, or information technology require an additional year of general information technology experience to qualify. Appropriate information security or information assurance experience may substitute for the bachelor's degree on a year-for-year basis; an associate's degree requires an additional two years of general information technology experience.

Preferred Qualifications:

• Bachelor's Degree with a concentration or major in Information Security, Cyber Security, Digital Forensics, Information Assurance, or a related field.

• Certifications in one or more of the following areas:

o Certificate in Computer Network Defense (e.g., GCIA, GCED, GDAT, GPPA, GCDA, GMON, GWEB, CND, ECIH, GCIH)

o Certificate in Cyber Threat Intelligence (e.g., CTIA, GCTI, CCIP, CSTIR)

• 1 years’ experience in technical writing

• 1 years’ experience in the following areas:

o applying and implementing network and/or system security

o information security incident response

o log analysis (e.g., firewall logs, DNS logs, proxy logs, IPS/IDS logs)

o using SIEM technologies to support in-depth investigations

• Possess a working knowledge in the following areas:

o computer networks, intrusion detection systems, routers, firewalls, operating systems, network vulnerability assessments, web application vulnerability assessments, computer programming and scripting

o network security solutions (e.g., intrusion detection/prevention systems, firewalls)

o system administration

o vulnerability management

o computer programming and scripting

o Information Security (CIA triad, Information Classification, Risk Management, Incident Response, Vulnerability Management, Security Architecture & Engineering)

• Excellent oral and written communication skills including the ability to clearly articulate information technology and information security concepts to a varied audience to facilitate wide understanding.

• Demonstrated critical thinking, problem solving and analytical skills.

Additional Comments Multiple positions will be filled from this posting.

Background check and fingerprinting are required.

All Office of Information Technology Services (ITS) employees are required to provide proof of vaccination status through a secure online portal, if vaccinated. Unvaccinated employees may be required to submit weekly tests.

New York State is an equal opportunity employer.

Some positions may require additional credentials or a background check to verify your identity.

Job Type: Full-time

Pay: $61,270.00 - $77,912.00 per year

Benefits:

• Dental insurance
• Employee assistance program
• Flexible schedule
• Flexible spending account
• Health insurance
• Health savings account
• Life insurance
• Paid time off
• Professional development assistance
• Retirement plan
• Tuition reimbursement
• Vision insurance

Schedule:

• 8 hour shift
• Monday to Friday

COVID-19 considerations:
All Office of Information Technology Services (ITS) employees are required to provide proof of vaccination status through a secure online portal, if vaccinated. Unvaccinated employees may be required to submit weekly tests.

Ability to commute/relocate:

• Brooklyn, NY 11201: Reliably commute or planning to relocate before starting work (Required)

Experience:

• Cybersecurity: 1 year (Preferred)

Work Location: One location