Cyber Risk Management & Preparedness Specialist
ADMINISTRATOR II (Contractual)
Recruitment #24-002587-0059
Department | Maryland Department of Emergency Management - B |
---|---|
Date Opened | 7/22/2024 3:20:00 PM |
Filing Deadline | 8/7/2024 11:59:00 PM |
Salary | $64,984.00 - $104,954.00/year |
Employment Type |
Full-Time
|
HR Analyst | Kiara Jones |
Work Location |
Anne Arundel
|
Telework Eligible | Yes |
Introduction
MDEM is looking for a diligent, detail-oriented individual who is excited about making Maryland a safer place to live and work by assisting with the Cyber Preparedness Unit.
MDEM’s mission is to proactively reduce disaster risks and reliably manage consequences through collaborative work with Maryland’s communities and partners. MDEM is the department of State government with primary responsibility and authority for emergency preparedness policy, and for coordinating hazard mitigation, incident response, and disaster recovery. MDEM is a national leader in Emergency Management that provides Maryland residents, organizations, and emergency management partners with expert information, programmatic activities, and leadership in the delivery of financial, technical, and physical resources “to shape a resilient Maryland where communities thrive.” We do this by being Maryland's designated source of official risk reduction and consequence management information.
NOTE: This position operates within an on-call rotating schedule according to assignment within the State Emergency Operations Center (SEOC) to attend to all emergencies on a statewide 24/7 basis. This may involve working 12-hour shifts extended periods of time in support of 24-hour consequence management activities.
GRADE
LOCATION OF POSITION
7450 Traffic Dr, Hanover, MD 21076 (COOP Site)
Main Purpose of Job
The Maryland Department of Emergency Management (MDEM) is a primary executive department of State government with primary responsibility and authority for emergency preparedness policy, and for coordinating hazard mitigation, incident response, and disaster recovery. MDEM works to ensure that all Marylanders engage in preparedness activities and that the entire state is more disaster resilient. The Preparedness Branch – Cyber Preparedness Unit is a critical part of MDEM’s mission. This position reports to the Risk Management & Assessment Program Coordinator.
This
position serves the State of Maryland, its State Agencies and Local
Jurisdictions, in the following area:
- Local Jurisdiction Cyber Preparedness Support:
- Support the
Local Cyber Preparedness Program with projects and initiatives to
increase cyber preparedness, including:
- Cyber
Preparedness Planning
- Plan
Development
- Planning
Workshops
- Cyber
Preparedness Training
- Cyber
Preparedness Testing & Exercise
- Provide
technical assistance in support of Local Jurisdiction cyber preparedness
activities.
- Provide cyber
incident management support to Local Jurisdiction Offices of Emergency
Management (OEMs)/Emergency Operations Center (EOCs)
- State Cyber
Preparedness Support:
- Coordinate
with and provide support to the DoIT Office of Security Management
- Provide
support and technical assistance to State agencies emergency management
coordinators.
- MDEM
Information & Communication Technology (ICT) Support:
- Serve as the
Third-Party Risk Analyst within the MDEM ICT Program.
- Support MDEMs
Enterprise Risk Management (ERM) Program with a focus on cybersecurity,
information technology, and third-party risks.
- Develop and
maintain the following risk products:
- Third-Party
Vendor Inventory
- Third-Party
System/Software/Application/Service Inventory
- Third-Party
Risk Assessments
- Third-Party
Service Level Agreement (SLA) Inventory
- Third-Party
Risk Monitoring Reports
- Conduct the
analysis of organization business processes and systems (applications,
data usage, SaaS, etc.) for privacy/security compliance.
- Assist with
the establishment of a Cyber Risk Management Framework with MDEM adhering
to NIST 800-53A, 800-39 & the NIST Risk Management Framework (RMF).
- Ensure
Appropriate Risk Controls with Information Systems and Technology
Procurements
- Develop an
understanding of MDEM’s enterprise architecture
- Serve as the
lead for MDEMs Third Party Risk Management (TPRM) program, to include the
management of:
- Third-Party
Risk Assessment
- Cybersecurity
Risk
- Operational
Risk
- Compliance
Risk
- Reputational
Risk
- Financial
Risk
- Transaction
Risk
- Strategic
Risk
- Supply Chain
Risk
- Third-Party
Vendor Evaluation
- Third-Party
Risk Tiering
- Third-Party
Continuous Monitoring
- Assist with
the development of Risk Awareness Training
- State of
Maryland:
- Support
programs, projects, initiatives, and activities of the Preparedness
Branch and its Units and Programs; and
- Support
programs, projects, initiatives, and activities of MDEM.
- Support
programs, projects, initiatives, and activities of the Governor’s Office
of Homeland Security.
In order to fulfill these
responsibilities, this position requires strong communication, organizational,
and management skills, as well as strong technical and presentation skills.
POSITION DUTIES
Emergency and Disaster response and recovery operations
as needed and/or assigned by Department Secretary, Directors, or Operations
Personnel. Employee will be expected to staff the State
Emergency Operations Center (SEOC) upon activation for consequence management
activities. Employee may be called to duty at
any time, day or night, and is expected to report to the SEOC or assigned
duty location within 2 hours of notification. Employee will attend
training and retain competencies to be appropriately prepared for SEOC
staffing needs including understanding and mastery of all five components of
the National Incident Management System (NIMS) and the Maryland Emergency
Management System (MEMS). Employee will support SEOC activities, which may
involve extended work hours, as well as extraordinary stress levels, given
that a disaster event would occur requiring SEOC activation. Employee
will be expected to perform command and supervisory functions for incident
management needs with competence and reliability under NIMS and MEMS.
Employee is expected to support ongoing recovery operations as it relates to
their specific Branch roles/responsibilities. Employee may be required to
report to an alternate location to perform SEOC duties in support of MEMS
stakeholders or in the event of a Continuity of Operations Program (COOP)
Plan activation. Employee may be called to duty at any time, day or
night, and is expected to report to the SEOC or assigned duty location within
2 hours of notification. |
Support the Local Cyber Preparedness Program: This
position coordinates with projects and initiatives to increase cyber
preparedness, including:
·
Cyber Preparedness Training ·
Cyber Preparedness Testing &
Exercise
|
Cyber Risk Management & Preparedness: This
position serves as the Third-Party Risk Analyst & Preparedness Specialist
within the Cyber Preparedness Unit to develop and maintain the following risk
products:
This
position will also support the Risk Management and Assessment coordinator
with ensuring that MDEM’s risk management process is being effectively
conducted across the three tiers of organization, mission/business processes,
and information systems |
Third Party Risk Management: This position serves as the
lead for MDEM’s Third Party Risk Management (TPRM) program. This includes the
management/completions of
|
Risk Control Measurements:
|
Preparedness Branch Support: This
position supports the Prepared Branch, Branch sponsored activities as well as
the Branch’s units including the Planning & Assessment Unit, Training
& Exercise Unit, State Continuity Program Unit, the Radiological
Emergency Preparedness Unit, and the State Special Events Program. |
Support the Department’s statewide activities: This
position supports Department activities including developing, promoting, and
implementing assigned plans, documents, and other materials related to the
Maryland Emergency Management System. This may include, but not be limited
to, conducting capability assessments, and developing operational plans.
Provide support and assistance for the development and delivery of training
and exercise. |
Support MDEM’s strategic goals and objectives for
emergency management. |
Support Maryland’s strategic goals and objectives for
homeland security. |
Support and participate in Consequence Management
Directorate and overall Agency initiatives and programs, as
assigned by the Preparedness Branch Manager, Consequence Management Director,
Deputy Executive Director, and/or the Secretary. Support the MEMA Consequence
Management, Disaster Risk Reduction, and Mission Support Directorates as
needed. |
MINIMUM QUALIFICATIONS
Education: Graduation from an accredited high school or
possession of a high school equivalency certificate.
Experience: Five years of administrative staff or
professional work.
Notes:
1. Candidates may substitute 30 credit hours from an accredited
college or university for each year up to four years of the required
experience.
2. Candidates may substitute the possession of a Bachelor's degree
from an accredited college or university and one year of experience in
administrative staff or professional work for the required experience.
3. Candidates may substitute the possession of a Master's degree
from an accredited college or university for the required experience.
4. Candidates may substitute U.S. Armed Forces military service
experience as a commissioned officer involving staff work related to the
administration of rules, regulations, policy, procedures and processes, or
overseeing or coordinating unit operations or functioning as a staff assistant
to a higher-ranking commissioned officer on a year-for- year basis for the
required experience.
DESIRED OR PREFERRED QUALIFICATIONS
·
Certification as a Certified Risk Management Professional (CRMP) or
similar certification.
·
Experience with Cyber Preparedness
·
Experience with Third-Party Risk Management (TPRM)
·
Experience with Database Management
·
Experience with Training Delivery
·
Experience engaging a diverse set of stakeholders to include senior
leadership.
·
Experience working independently or collaboratively on Department
projects.
·
Experience exercising independent judgment and initiative in projects
relation to Department objectives.
·
Experience preparing and presenting findings and recommendations in
clear, concise reports.
·
Experience solving problems, thinking critically and analytically,
visualizing data, develop products, and communicating clearly and effectively.
LICENSES, REGISTRATIONS AND CERTIFICATIONS
SELECTION PROCESS
EXAMINATION PROCESS
BENEFITS
Contractual employees who work for an agency covered under the State Employee and Retiree Health and Welfare Benefits Program, have a current employment contract and work 30 or more hours a week (or on average 130 hours per month) may be eligible for subsidized health benefits coverage for themselves and their dependents. As a contractual employee, you will be responsible for paying 25% of the premiums for your medical and prescription coverage, including any eligible dependents you have enrolled. The State of Maryland will subsidize the remaining 75% of the cost for these benefits. You can also elect to enroll in dental coverage, accidental death and dismemberment insurance, and life insurance, but will be responsible to pay the full premium for these benefits.
Leave may be granted to a contractual employee who has worked 120 days in a 12-month period. This leave accrues at a rate of one hour for every 30 hours worked, not to exceed 40 hours per calendar year.
FURTHER INSTRUCTIONS
Online applications are highly recommended. However, if you are unable to apply online, the paper application and supplemental questionnaire may be submitted to: Maryland Department of Emergency Management, 5401 Rue Saint Lo Drive, Reisterstown, MD 21136. Paper application materials must be received in our office by the closing date for the recruitment. No postmarks will be accepted.
For questions regarding this recruitment, please call 410-702-3714, or email kiara.jones@maryland.gov.
Appropriate accommodations for individuals with disabilities are available upon request by calling: MD TTY Relay Service 1-800-735-2258.
We thank our Veterans for their service to our country. People with disabilities and bilingual candidates are encouraged to apply.
As an equal opportunity employer, Maryland is committed to recruitment, retaining and promoting employees who are reflective of the State's diversity.
Click on a link below to apply for this position:
Fill out the Supplemental Questionnaire and Application NOW using the Internet. | Apply Online |
View and print the Supplemental Questionnaire. | This recruitment requires completion of a supplemental questionnaire. You may view and print the supplemental questionnaire here. |
Apply via Paper Application. | You may also download and complete the Paper Application here. |