Maryland.gov Phone Directory State Agencies Online Services

Job Seekers

IT SYSTEMS TECHNICAL SPECIALIST

SECURITY ASSESSMENT & AUDIT LEAD (FULL-TIME CONTRACTUAL)

Recruitment #24-004488-0018

Department

MDH Deputy Secretary for Operations

Date Opened

9/9/2024 11:59:00 PM

Filing Deadline

9/23/2024 11:59:00 PM

Salary

$37.65 - $63.13/hour

Employment Type

Full-Time

HR Analyst

Latosha Keene

Work Location

Baltimore City

Telework Eligible

Yes

Go Back View Benefits

Introduction

GRADE

LOCATION OF POSITION

MDH Office of Internal Controls, Audit Compliance and Information Security (IAC/S)

201 W. Preston Street

Baltimore, MD 21201

Main Purpose of Job

The main purpose of this full-time contractual position will be to report to the Chief Information Security Officer (CISO) as a part of the Information Security Division within the Office of Internal Controls, Audit Compliance and Security (IAC/S).

This position will also lead the Security Assessment Program by planning and coordinating the annual security assessment for MDH and its vendors, including evaluating risks and communicating all security related audit findings with technical and non-technical MDH stakeholders; defining, developing, and implementing Security Assessment Program reports, metrics, and dashboards.

In addition, this position will create reports of security assessments with risk assessments and provide recommendations, review and resolve findings which are false positives, and provide evidence and guidance on validation procedures and required artifacts.

PLEASE NOTE:

Effective May 15, 2024, an employee may be required to come into the office 2 days a week. This hybrid schedule will be agreed upon between the appointing authority, supervisor and employee and can be subject to change. The employee in this position must adhere to the updated Maryland State Telework Policy effective 5/15/24 and the updated IAC/S Telework Policy effective 5/22/24.

IAC/S employees are required to disclose secondary employment: All employment (compensated and uncompensated) outside the Department. An individual may not be employed with or receive compensation outside the Department that would create a conflict of interest, an appearance of a conflict of interest, or impair the impartiality and independence of judgment of the individual. See MDH Policy 01.05.10 for additional details.

MINIMUM QUALIFICATIONS

Experience: Seven years of experience designing, developing, testing, implementing and maintaining application, communication, database or operating systems software.

Notes:

1. Candidates may substitute graduation from an accredited high school or possession of a high school equivalency certificate and thirty credit hours from an accredited college or university in Computer Science, Computer Technology, Management Information Systems or other information technology-related field to include coursework in application, communication, database or operating systems software technology for four years of the required experience.

2. Candidates may substitute graduation from an accredited high school or possession of a high school equivalency certificate and one year of experience designing, developing, testing, implementing and maintaining application, communication, database or operating systems software for four years of the required experience.

3. Candidates may substitute experience operating computer systems; or scheduling, controlling input and output to process data on computer systems; or evaluating, implementing and maintaining computer hardware and software; or converting data from project specifications by developing program code using generally accepted computer programming languages on a year-for-year basis for a high school education.

4. Candidates may substitute the possession of a Bachelor's degree from an accredited college or university in Computer Science, Computer Information Technology, Management Information Systems or other information technology-related field to include coursework in application, communication, database or operating systems software technology and three years of experience designing, developing, testing, implementing and maintaining application, communication, database or operating systems software for the required experience.

5. Candidates may substitute U.S. Armed Forces military service experience as a commissioned officer in the Computer Systems Operations classifications or Computer Systems Operations specialty codes in the Information Technology field of work on a year-for-year basis for the required experience.

DESIRED OR PREFERRED QUALIFICATIONS

The desired candidate should possess experience designing, developing, testing, implementing and executing cybersecurity or information security assessments following industry standard frameworks such as NIST.

The desired candidate should possess experience with the following:

Information Security Governance
Network Security
Application Security
Incident Response
Risk Management
Security Assessments
Security Assessment Tools
Cloud Security

The desired candidate should also possess job related security or industry certifications including but not limited to the following:

CompTIA Security+
CompTIA Cybersecurity Analyst (CySA+)
Certified Information Security Manager (CISM)
Certified in Risk and Information Systems Control (CRISC)
Certified Information Systems Auditor (CISA)
GIAC Security Essentials (GSEC)
Certified Information Security Systems Professional (CISSP)

SELECTION PROCESS

Applicants who meet the minimum (and selective) qualifications will be included in further evaluation. The evaluation may be a rating of your application based on your education, training and experience as they relate to the requirements of the position. Therefore, it is essential that you provide complete and accurate information on your application. Please report all related education, experience, dates and hours of work. Clearly indicate your college degree and major on your application, if applicable. For education obtained outside the U.S., any job offer will be contingent on the candidate providing an evaluation for equivalency by a foreign credential evaluation service prior to starting employment (and may be requested prior to interview).

Complete applications must be submitted by the closing date. Information submitted after this date will not be added.

Incorrect application forms will not be accepted. Resumes will not be accepted in lieu of a completed application.

Candidates may remain on the certified eligible list for a period of at least one year. The resulting certified eligible list for this recruitment may be used for similar positions in this or other State agencies.

BENEFITS

Contractual employees who work for an agency covered under the State Employee and Retiree Health and Welfare Benefits Program, have a current employment contract and work 30 or more hours a week (or on average 130 hours per month) may be eligible for subsidized health benefits coverage for themselves and their dependents. As a contractual employee, you will be responsible for paying 25% of the premiums for your medical and prescription coverage, including any eligible dependents you have enrolled. The State of Maryland will subsidize the remaining 75% of the cost for these benefits. You can also elect to enroll in dental coverage, accidental death and dismemberment insurance, and life insurance, but will be responsible to pay the full premium for these benefits.

Leave may be granted to a contractual employee who has worked 120 days in a 12 month period. This leave accrues at a rate of one hour for every 30 hours worked, not to exceed 40 hours per calendar year.

FURTHER INSTRUCTIONS

Online applications are highly recommended. However, if you are unable to apply online, the paper application (and supplemental questionnaire) may be submitted to MDH, Recruitment and Selection Division, 201 W. Preston St., Room 114-B, Baltimore, MD 21201. Paper application materials must be received by 5 pm, close of business, on the closing date for the recruitment, no postmarks will be accepted.

If additional information is required, the preferred method is to upload. If you are unable to upload, please fax the requested information to 410-333-5689. Only additional materials that are required will be accepted for this recruitment. All additional information must be received by the closing date and time.

For questions regarding this recruitment, please contact the MDH Recruitment and Selection Division at 410-767-1251.

If you are having difficulty with your user account or have general questions about the online application system, please contact the MD Department of Budget and Management, Recruitment and Examination Division at 410-767-4850 or Application.Help@maryland.gov.

Appropriate accommodations for individuals with disabilities are available upon request by calling: 410-767-1251 or MD TTY Relay Service 1-800-735-2258.

We thank our Veterans for their service to our country.

People with disabilities and bilingual candidates are encouraged to apply.

As an equal opportunity employer, Maryland is committed to recruitment, retaining and promoting employees who are reflective of the State's diversity.

45 Calvert Street, Annapolis, MD 21401

300-301 West Preston Street, Baltimore, MD 21201

Toll Free (800) 705-3493