MANAGEMENT
SERVICE BARGAINING UNIT: M
A Department of Information Technology (DoIT) IT Program Auditor Manager is the managerial level of work in the Office of Security Management (OSM) and tasked with evaluating the effective design and operation of security controls in the environment, both independently and holistically in the context of the system. Positions in this classification supervise lower level DoIT IT Program Auditors.
Employees in this classification receive managerial supervision from an Executive Cyber Leadership Director.
Position placement in this classification is determined by the Classification Job Evaluation Methodology. The use of this method involves comparing the assigned duties and responsibilities of a position to the job criteria found in the Nature of Work and Examples of Work sections of a classification specification.
The DoIT IT Program Auditor Manager differs from the DoIT IT Program Auditor II in that the DoIT IT Program Auditor II performs the full range of duties under general supervision while the DoIT IT Program Auditor Manager has supervisory responsibility for lower-level DoIT IT Program Auditors.
Plans, coordinates, supervises, and evaluates the work of DoIT IT Program Auditors and related support staff;
Develops methods to monitor and measure risk, compliance, and assurance efforts;
Provides ongoing optimization and problem-solving support;
Provides recommendations for possible improvements and upgrades;
Reviews or conducts audits of information technology (IT) programs and projects;
Evaluates the effectiveness of procurement function in addressing information security requirements and supply chain risks through procurement activities and recommend improvements;
Reviews service performance reports identifying any significant issues and variances, initiating, where necessary, corrective actions and ensuring that all outstanding issues are followed up;
Conducts import/export reviews for acquiring systems and software;
Ensures that supply chain, system, network, performance, and cybersecurity requirements are included in contract language and delivered;
Performs other related duties.
Specific educational and
experience requirements are set by the agency based on the essential job
functions assigned to the position.
Class
Descriptions are broad descriptions covering groups of positions used by
various State departments and agencies. Position descriptions maintained
by the using department or agency specifically address the essential job functions
of each position.
Class
Descriptions provide information about the Nature of Work, Examples of
Work, General Requirements and Acknowledgements. The Required
Knowledge, Skills, and Abilities; Minimum Education and Experience
Requirements; Special Requirements; and recruitment and testing procedures are
set by the using agency.
This is a
Management Service classification in the State Personnel Management
System. All positions in this classification are Management Service
positions.
This
classification is not assigned to a bargaining unit, as indicated by the
designation of S (Supervisor), M (Manager), T (Agency Head), U (Board or
Commission Member), W (Student), X (Used by Agency or Excluded by
Executive Order), or Z (Confidential). As provided by State Personnel and
Pensions Article, Section 3-102, special appointment, temporary,
contractual, supervisory, managerial and confidential employees are
excluded collective bargaining. Additionally, certain executive
branch agencies are exempt from collective bargaining and all positions in
those agencies are excluded from collective bargaining.