DEPUTY CHIEF INFORMATION SECURITY OFFICER - IT SECURITY-MANAGER - PERMANENT - *00850-24

Unclassified - Olympia, WA

posted 3 months ago

Full-time - Mid Level
Olympia, WA

About the position

The Deputy Chief Information Security Officer (CISO) will play a pivotal role in managing the day-to-day tactical personnel and technical resources for the Washington Department of Fish and Wildlife (WDFW). This position is responsible for overseeing the Security Architecture that supports various critical functions including threat detection, incident response, security baseline management, vulnerability identification, patch management, and conducting risk assessments for Agency IT assets. The Deputy CISO will have the opportunity to identify, engineer, plan, and deploy security solutions through the design, implementation, operation, and maintenance phases of IT systems. Collaboration and teamwork are essential, as the Deputy CISO will work closely with all IT staff to enhance the security of the existing information technology infrastructure and services. In this role, the Deputy CISO will manage the Cybersecurity Operations Team, ensuring that personnel priorities and projects align with strategic agency goals. This includes the review and approval of cost-effective cybersecurity solutions, both commercial off-the-shelf and in-house developed. The Deputy CISO will lead the Cybersecurity team in developing, deploying, testing, and creating business processes for agency-level security initiatives that span multiple IT units and may impact agency-wide operations. Close coordination with agency business partners is crucial to minimize operational impacts during the deployment of emerging security technical controls, utilizing industry-standard risk management frameworks and expert knowledge of operational impacts. The Deputy CISO will also define architectural standards for Cybersecurity Engineer activities, providing expert analysis and mentorship to subordinate personnel. This includes making technical and architectural decisions related to Cybersecurity Operations, completing Washington State Office of Cybersecurity (OCS) Design Review documentation, and analyzing vulnerability assessment reports to determine agency risk. As the tactical leader for the Cybersecurity Incident Response Team, the Deputy CISO will provide input on incident classification and lead incident response actions, ensuring effective recovery and continuous improvement through after-action reviews. Additionally, oversight for Disaster Recovery and Continuity of Operations (DR/COOP) will be part of the responsibilities.

Responsibilities

  • Manage the Cybersecurity Operations Team and ensure strategic agency goals are met.
  • Review and approve cost-effective cybersecurity solutions, both commercial and in-house developed.
  • Lead the Cybersecurity team in developing, deploying, testing, and business process development of agency-level security initiatives.
  • Coordinate with agency business partners to minimize operational impacts during the deployment of security controls.
  • Define architectural standards for Cybersecurity Engineer activities and provide mentorship to subordinate personnel.
  • Make technical and architectural decisions related to Cybersecurity Operations.
  • Complete Washington State Office of Cybersecurity (OCS) Design Review documentation.
  • Analyze vulnerability assessment reports to determine agency risk and conduct risk assessments of WDFW systems.
  • Act as the tactical leader for the Cybersecurity Incident Response Team and provide input on incident classification.
  • Lead incident response actions and participate in after-action reviews for continuous improvement.

Requirements

  • Bachelor of Science in Information Technology or equivalent experience (four years of IT experience).
  • Four or more years of recent experience in a medium to large organization providing cybersecurity-related technical support.
  • Six or more years of recent experience with cybersecurity risk assessment methodologies (NIST, HITECH, RMF).
  • Six or more years of recent IT experience including vulnerability scanning, risk assessments, and incident response.
  • Must pass fingerprint and background check due to working with law enforcement and sensitive data.

Nice-to-haves

  • Experience working in cloud-based environments such as AWS and Azure.
  • Experience operating and analyzing logging and monitoring systems, antivirus solutions, and security configurations.
  • Certification(s) in CISSP, Network Certification(s), and Server Certification(s).

Benefits

  • Medical/Dental/Vision for employee & dependent(s)
  • Public Employees Retirement System (PERS)
  • Vacation, Sick, and other Leave
  • 11 Paid Holidays per year
  • Public Service Loan Forgiveness
  • Tuition Waiver
  • Long Term Disability & Life Insurance
  • Deferred Compensation Programs
  • Dependent Care Assistance Program (DCAP)
  • Flexible Spending Arrangement (FSA)
  • Employee Assistance Program
  • Commute Trip Reduction Incentives
  • Combined Fund Drive
  • SmartHealth

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service