Skip to Main Content

Cybersecurity Policy Analyst

DoIT Cyber Policy and Strategy Planner I

Recruitment #24-004728-0001

Go Back View Benefits

Introduction

The Department of Information Technology (DoIT) provides support to state agencies, the Executive Office of the Governor, the Governor's coordinating offices, and a variety of independent agencies within the Executive Branch.

Striving to provide the highest level of customer service to its internal and external customers, DoIT supports Maryland's agencies and commissions through its leadership and strategic direction for Information Technology and Telecommunications, establishing a long range, target technology architecture, encouraging cross agency collaboration and advocating best practices for operations and project management.

GRADE

STD 0023

LOCATION OF POSITION

100 Community Place
Crownsville, Maryland 21032

POSITION DUTIES

The Policy Analyst will assist the Policy Manager in developing and maintaining Statewide cybersecurity plans, strategies, and policies to support and align with organizational cybersecurity initiatives and regulatory compliance. This position will support the Office of Security Management (OSM) in the creation, updating, maintenance, regular review, and implementation of cyber-related policies. The Policy Analyst will oversee the execution of policies, communication to state agencies, and any supporting compliance activities.

Position duties include but are not limited to:

  • Assist the Policy Manager in developing and maintaining Statewide cybersecurity plans, strategies, and policies.
  • Oversee the execution of policies, communication to state agencies, and any supporting compliance activities.
  • Assist the Cybersecurity Policy Manager in reviewing current state cybersecurity policies, standards, and guidelines
  • Maintain and update the State IT Security Manual and guidance documents as needed.
  • Assist Cybersecurity Policy Manager in performing compliance assessments 
  • Hold work sessions and meetings to assist in policy, standards and guideline creation.
  • Gather industry standard IT and cybersecurity requirements for use in policies, standards and guidelines.
  • Work with Privacy Officers to understand the policies that govern their function and activities

MINIMUM QUALIFICATIONS

Experience: Four years of experience in Information security as it relates to policy creation regarding compliance, legislation, governance programs and/or supporting internal audits.

Notes:

1. Candidates may substitute a bachelor’s degree in IT security management, IT management, information security, political science, business management, communications, or public administration with cybersecurity experience or a related field for up to two years of the required experience.

DESIRED OR PREFERRED QUALIFICATIONS

Preference will be given to applicants who possess the following preferred qualification(s). Include clear and specific information on your application regarding your qualifications.
  • Working knowledge of industry-standard information security frameworks, such as one of the following: NIST, ISO, CIS, COBIT. 
  • Experience in performing security or compliance assessments or audits.

SPECIAL REQUIREMENTS

1. Employees in this classification may be subject to call-in 24 hours a day and, therefore, may be required to provide the employing agency with a telephone number where the employee can be reached. Employees may be furnished with a pager or cell phone.

2. Applicants for this classification may handle sensitive data. This will require a full-scope background investigation before the appointment. A criminal conviction may be grounds for rejection of the applicant.

3. Employees may occasionally be required to travel to field locations and must have access to an automobile in the event a state vehicle cannot be provided. A standard mileage allowance will be paid for the use of a privately owned vehicle.

SELECTION PROCESS

Please make sure that you provide sufficient information on your application to show that you meet the qualifications for this recruitment.
All information concerning your qualifications must be submitted by the closing date. We will not consider information submitted after this date. 
Successful candidates will be placed on the eligible (employment) list for at least one year. 

EXAMINATION PROCESS

The examination will consist of a rating of your education, training, and experience as presented on your application and as they relate to the requirements of the position.
You may be asked to complete a supplemental questionnaire. The supplemental questionnaire may be used as part of the rating process. Therefore, it is important that you provide complete and accurate information on your application. 

BENEFITS

FURTHER INSTRUCTIONS

Online applications are highly recommended. However, if you are unable to apply online, the paper application and supplemental questionnaire may be submitted to: 

Department of Budget and Management, Recruitment and Examination Division, 301 W. Preston St., Baltimore, MD 21201. Paper application materials must be received in our office by the closing date for the recruitment. No postmarks will be accepted.

For questions regarding this recruitment, please contact the DBM Recruitment and Examination Division at Application.Help@maryland.gov or 410-767-4850, MD TTY Relay Service 1-800-735-2258.

We thank our Veterans for their service to our country.

People with disabilities and bilingual candidates are encouraged to apply.

As an equal opportunity employer, Maryland is committed to recruitment, retaining and promoting employees who are reflective of the State's diversity.




Powered by JobAps