State of Maryland

MANAGEMENT SERVICE          BARGAINING UNIT: M

A Department of Information Technology (DoIT) IT Program Auditor Manager is the managerial level of work in the Office of Security Management (OSM) and tasked with evaluating the effective design and operation of security controls in the environment, both independently and holistically in the context of the system. Positions in this classification supervise lower level DoIT IT Program Auditors.

Employees in this classification receive managerial supervision from an Executive Cyber Leadership Director.

Position placement in this classification is determined by the Classification Job Evaluation Methodology. The use of this method involves comparing the assigned duties and responsibilities of a position to the job criteria found in the Nature of Work and Examples of Work sections of a classification specification.

The DoIT IT Program Auditor Manager differs from the DoIT IT Program Auditor II in that the DoIT IT Program Auditor II performs the full range of duties under general supervision while the DoIT IT Program Auditor Manager has supervisory responsibility for lower-level DoIT IT Program Auditors.

Plans, coordinates, supervises, and evaluates the work of DoIT IT Program Auditors and related support staff;

Develops methods to monitor and measure risk, compliance, and assurance efforts;

Provides ongoing optimization and problem-solving support;

Provides recommendations for possible improvements and upgrades;

Reviews or conducts audits of information technology (IT) programs and projects;

Evaluates the effectiveness of procurement function in addressing information security requirements and supply chain risks through procurement activities and recommend improvements;

Reviews service performance reports identifying any significant issues and variances, initiating, where necessary, corrective actions and ensuring that all outstanding issues are followed up;

Conducts import/export reviews for acquiring systems and software;

Ensures that supply chain, system, network, performance, and cybersecurity requirements are included in contract language and delivered;

Performs other related duties.

Specific educational and experience requirements are set by the agency based on the essential job functions assigned to the position.

Class Descriptions are broad descriptions covering groups of positions used by various State departments and agencies.  Position descriptions maintained by the using department or agency specifically address the essential job functions of each position. 

Class Descriptions provide information about the Nature of Work, Examples of Work, General Requirements and Acknowledgements.  The Required Knowledge, Skills, and Abilities; Minimum Education and Experience Requirements; Special Requirements; and recruitment and testing procedures are set by the using agency.

This is a Management Service classification in the State Personnel Management System.  All positions in this classification are Management Service positions. 

This classification is not assigned to a bargaining unit, as indicated by the designation of S (Supervisor), M (Manager), T (Agency Head), U (Board or Commission Member), W (Student), X (Used by Agency or Excluded by Executive Order), or Z (Confidential).  As provided by State Personnel and Pensions Article, Section 3-102, special appointment, temporary, contractual, supervisory, managerial and confidential employees are excluded collective bargaining.  Additionally, certain executive branch agencies are exempt from collective bargaining and all positions in those agencies are excluded from collective bargaining.