|Department||Employment Security Commission|
|Date Opened||11/6/2018 08:00:00 AM|
|Filing Deadline||11/26/2018 11:59:00 PM|
|Salary||$55,000.00 - $70,000.00 Annual Hiring Range|
|Full or Part Time||
This position is located at the Will Rogers Memorial Office Building, OKC.
May under-fill position with a Level II
Annual Hiring Range, Level II and Level III: $55,000.00 - $70,000.00
GENERAL JOB DESCRIPTION
Responsible for: Develop/administer/oversee Information Technology (IT) security systems, tools, policies, and procedures required to protect critical state assets with the primary focus on the integrity of the OESC infrastructure and processes required for delivering IT security applications/services to appropriate authorities/parties.
Duties may include focus on:
IT network and internet security, incident response and management, forensic security investigations, auditing, security product management, business continuity and disaster recovery planning, telecommunications and IT security tools for IT defense in depth, and IT security policy and procedures.
ADDITIONAL FACTORS WHICH WILL BE CONSIDERED FOR THE OPENING:
1) Certification as an information systems security professional/auditor/manager from an accredited certification organization, such as ISC2, ISACA or SANS.
2) Certification as ethical hacker from an accredited certification organization, such as EC-Council.
3) MIS (Management Information System) or Computer Science degree.
Applicants must be willing and able to fulfill all job-related travel normally associated with this position. It may include overnight or out of state travel.
• Experience identifying, trouble-shooting, and resolving security issues related to network devices, servers and PCs.
• Proficiency in network scanning, vulnerability assessment, and network penetration testing tools.
• A minimum of two years of experience in the configuration and support of intrusion detection and intrusion prevention systems.
• IT experience.
“THE OKLAHOMA EMPLOYMENT SECURITY COMMISSION IS AN EQUAL OPPORTUNITY EMPLOYER”
Job Family Level Descriptors: Security Technician for the OESC
Level II -
This is the career level where employees are assigned responsibilities at the full performance level for: perform technical duties involving applying information security concepts to a policy, project or system; incident response; perform internal and external research; collect, maintain and analyze data and log files; provide input to improve procedures of protocol and follow it; perform triage; implement patches, security signature and application updates; preform security audits to vulnerability on agency systems; plan and coordinate installation of new or modified hardware, software and configuration of security tools and services; maintain existing policies, SOPs, reference manuals, and information sources.
Knowledge, Skills and Abilities –
Knowledge of basic and comprehensive information security and security tools; understanding of security vulnerabilities; basic and advanced networking skills; ability to interpret customer requirements into technical solutions; basic understanding of agency business; follow prescribed procedures.
Ability is required to prioritize tasks; communicate technical security concepts to all level of staff; work independently.
Skills are required in written communication, verbal communication, critical thinking skills, customer relation skills, business-results orientation, influence and relationship management.
Education and Experience -
Requirements include an associate’s degree in Information Security or Management Information systems from an accredited college or university; or a comparable vocational or technical education course resulting in certification in information security or two years of information security experience; or an equivalent combination of education and experience to equal two years.
Level III -
This is the specialist level where employees are assigned responsibility for performing advanced technical work. This may include independent responsibility for applying information security process improvement to policy, project or system; reviews audits, security incidents, vulnerability scans to recommend platform improvement; may provide limited guidance to lower level staff mentorship; security program coordination; performs security planning and strategies; evaluate existing and proposed architecture change to meet security needs and mission requirements; designs and oversees construction of signatures that triggers security event alerts; reverse engineer and/or conduct root cause analysis.
Knowledge, Skills and Abilities -
Those identified in Level II plus Knowledge of mastery level of networking knowledge; forecasting security solutions; influencing process improvement; understanding of statewide business impact, business process and leadership concepts.
Ability to train/provide direction to others; instills leadership concepts; coordinate and build consensus across organization.
Skills are required in decision making, organizational awareness, and learning agility.
Education and Experience -
Requirements include a bachelor’s degree in Information Security or Management Information systems from an accredited college or university; or four years of Information Security experience.
Veteran’s preference points apply only for initial appointment in the classified service.