Information Systems Security Officer - Hybrid (66650) (66924) - (24140768)
Helena is surrounded by rolling hills and lofty mountains and is tucked below the Continental Divide. Located halfway between Glacier National Park and Yellowstone National Park, Helena is a where small-town living collides with outdoor adventure. Learn more about moving to and/or living in Helena, Montana here.
In this position you will be afforded the opportunity to telework, however there will be required weekly in-office day(s) in Helena. Specific conditions will be outlined as part of the job offer and must adhere to state policy.
Security Services is a fun place to do serious work. We utilize best practice standards and frameworks to deliver high quality security services to state agencies. We use sophisticated technologies to solve complex problems. We value collaboration, teamwork, and respect. We promote a culture where our employees can both learn and teach. We provide professional development opportunities that lead to career advancement and fulfillment. Our mission is to protect citizens’ data.
We are hiring one or more mid-level and senior-level Information System Security Officer (ISSO) positions. We are looking for people that have a background in security or risk management seeking to advance their career and protect citizens’ data. Success in this role will require you to proactively develop and implement effective security solutions in a dynamic Enterprise information technology environment facing sophisticated and persistent threats from global cyber threat actors. This position leads security assessment and planning activities and partners with business and technology employees in state agencies to categorize information systems and to select, implement, assess, authorize and monitor complex security controls. Additionally, this position serves as the subject-matter-expert to mentor other ISSOs and advise external stakeholders on policy as well as State and Federal rules and regulations. The extent of leadership scope and responsibility depends on education, experience and expertise.
The ISSO position is primarily responsible for performing the steps in the NIST Risk Management Framework; other responsibilities include, but are not limited to:
We are looking for people that have a passion for cybersecurity, a commitment to continuous learning, and a desire to protect citizen’s data.
This position can be hired as a mid-level or senior-level ISSO, depending on experience, education, and expertise.
If hired as a mid-level ISSO, you will be required to take the CGRC exam during the first year of your employment if you do not already have the CAP or CGRC certification. If hired as a senior-level ISSO, you will be required to already have the CAP or CGRC certification. Additional training requirements will vary based on your specific skillsets and the team’s specific needs at the time of hiring. Training courses may include the ISC2 Governance, Risk and Compliance course, RSA Archer courses, SANS cybersecurity courses, or other training related to this role. Specific training requirements will be discussed at the time of hiring.
This position is classified by the NICE Framework as Risk Management: Oversees, evaluates, and supports the documentation, validation, assessment, and authorization processes necessary to assure that existing and new information technology systems meet the organization's cybersecurity and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives.
The following knowledge, skills, and abilities are required to be successful in this job:
This position resides in a Montana Federation of Public Employees bargaining unit.
Does this sound like you?
Please tell us how and why by submitting your resume and cover letter. (Please Note: You do not need to complete the “work experience” or the “education & certifications” portion of the application process in our recruiting system. You only need to upload the requested documentation.)
What can you expect from us in return for your hard work?
o Work/life Balance
o Health Coverage
o Retirement plans
o Paid Vacation and Sick Leave and Holidays
o And more…
Other important information to be aware of.
Applicant Pool Statement: If another department vacancy occurs in this job title within six months, the same applicant pool may be used for the selection. Training Assignment: Not Applicable
76,000.00 - 90,000.00 Yearly
Telework Eligibility: Telework Eligible (Full-time telework is not available. Telework schedule must be supervisor approved.) Benefits Package Eligibility: Health Insurance, Paid Leave & Holidays, Retirement Plan
: 1 Employee Status: Regular Schedule: Full-Time
: Standard
: Day Job
: Yes, 5 % of the Time
: Helena
Agency: Department of Administration Union: Montana Federation of Public Employees
: Mar 12, 2024, 3:40:41 PM
: Ongoing
Required Application Materials: Cover Letter, Resume
Contact Name: Shannon Voss | Contact Email: Shannon.voss2@mt.gov | Contact Phone: 406-444-5583 The State of Montana has a decentralized human resources (HR) system. Each agency is responsible for its own recruitment and selection. Anyone who needs a reasonable accommodation in the application or hiring process should contact the agency's HR staff identified on the job listing or by dialing the Montana Relay at 711. Montana Job Service Offices also offer services including assistance with submitting an online application.
State government does not discriminate based on race, color, national origin, religion, sex, sexual orientation, gender identity or expression, pregnancy, childbirth or medical conditions related to pregnancy or childbirth, age, physical or mental disability, genetic information, marital status, creed, political beliefs or affiliation, veteran status, military service, retaliation, or any other factor not related to merit and qualifications of an employee or applicant.
Read Full Description