Office of State Finance - Job - Information Security Compliance Technician

Information Security Compliance Technician

Unclassified
OSF Job Posting: #200822
Posting Date: 28 May, 2008
Salary Commensurate with Education and Experience

The Office of State Finance Information Services Division is seeking an Information Security Compliance Technician. This is a full time position in STATE GOVERNMENT and will be eligible for a generous total rewards package. Benefits include medical, dental, life, and disability insurance products as well as defined benefit and defined contribution retirement plans, wellness program with financial incentive, and tuition reimbursement. Employees earn 3 weeks paid annual and 3 weeks sick leave in the first year as well as enjoy 10 paid holidays annually, flexible work hours, comp time, and longevity pay.

POSITION PURPOSE

The purpose of this position is to plan, develop and manage OSF’s information security education and training program. This individual will assist state entities with the development and implementation of their security plans, policies and procedures. This individual will work closely with state entities to ensure continued business operations by applying their knowledge and experience to develop curriculum and proactively educate management and staff about security policies, procedures and guidelines, including the techniques required to recover and resume business operations. A thorough understanding of technical principles, concepts and technologies needed to achieve compliance with state policies, procedures and guidelines is required.

PRINCIPAL ACTIVITIES

• Develop and deliver education curriculum to provide training in the areas of information security policies, procedures, standards and guidelines that will ensure the security of state assets and the privacy of personal information throughout the State.

• Develop awareness of information security requirements through seminars, training programs, one-on-one discussions, brochures, Web pages and/or newsletters.

• Assist with the development, implementation and testing of security plans to protect against fraudulent access, viruses, sabotage, external and internal intrusions in all areas where computer equipment and operations are used in support of State business.

• Assist State entities in the development and testing of business continuity and disaster recovery plans.

• Assist State entities in the development and testing of incident reporting and incident response plans.

• Assist State entities in the development of remediation plans to mitigate vulnerabilities identified during risk assessments.

• Establish measurement criteria to assess the success or failure of information security programs.

MINIMUM QUALIFICATIONS

Bachelor’s Degree (B.A.) in Computer Sciences, Information Systems or Business; and at least three years professional-level experience in the development of education and training programs, including the knowledge of how to develop testing procedures to validate technology plans is required. A thorough understanding of operating systems, telecommunications concepts, data security, mainframe, server and microcomputer operations are desirable qualifications. An equivalent combination of education and experience substituting one year of experience in design, development or support of business systems; data security; disaster recovery and continuity planning; Computer Science; Information Technology or closely related field for each required year of education. Certifications in areas of security, networks and business continuity are desirable.

Preference may be given to applicants who possess the following:

Certifications in the areas of security, networks and business continuity.

Application Procedures

Formal application procedures may be found at the following link:

Application Procedures