PeopleTec is currently seeking a Cybersecurity Engineer to support our Huntsville, AL location.
The qualified candidate will support Distributed Mission Operations architecture for Air Defense Artillery (ADA) units and for National Capital Region Integrated Air Defense System (NCR-IADS) and DIADS. The Joint Air Defense Operations Center Site D (JADOC-D) is located at Redstone Arsenal, AL. Expertise in planning, coordinating, and executing Risk Management Framework (RMF) implementation. Specific duties include: Development of processes to support IA updates to the JADOC-D systems. Candidate will be responsible for reviewing quarterly IA scan results and other information to maintain security posture. Update POA&Ms for systems that have gone through the FISMA process. Create memorandums for Annual Security Review and Risk Acceptances for the DAA, and staff accordingly. Analyze, compile, and support development of plans to correct IA and software deficiencies to meet program objectives for Army Interoperability Certification. Participate in milestone reviews such as SRR, PDR, CDR to ensure IA compliance. Track Problem Change Requests (PCR) that pertain to the security posture. Provide technical recommendations on implementation of controls and mitigations for the specific hardware and software solutions. Develop and maintain IA certification schedules and schedule milestones. Track and communicate IA and software development status, processes, and areas for improvement to Technical and Program leadership. Conduct DIACAP/RMF reviews for each engineering task to determine which IA controls (if any) will be impacted. The candidate shall ensure that all directed applications comply and support the Army's Information Assurance Vulnerability Management (IAVM) program notification and correction processes. Candidate will be responsible for the implementation of all cybersecurity Vulnerability Alerts (IAVA) and anti-virus patches by tracking application status and maintain contact with program offices and users. Conduct security testing required as part of the DoD Risk Mitigation Framework accreditation procedures. Create and maintain all APMS entries. Track IAVA compliance. Implement and execute necessary eMASS entries and updates in support of RMF and DIACAP packages. Review contract packages to ensure that IA requirements and CDRLs are present. Review CDRLs on a quarterly basis. The contractor shall meet the designated Information Assurance level certification IAW DoD 8570.1M Change 2 and Contractor DFAR clause.
Required Skills/Experience:
7+ years of work related experience
Ability to clearly present and communicate technical approaches and findings
Excellent technical writing, written and verbal communication skills
Experience developing complete RMF packages from system categorization through the Authority to Operate (ATO) Engineering, architecture, vulnerability assessment and threat analysis
Experience with implementing STIGs, eMASS, ACAS, and the SCAP In-depth understanding of cyber security policy, tools, threat mitigation, network topologies, and secured networks required Strong understanding of NIST Special Publications, FISMA, OMB requirements, and cyber security best practices
Travel: +/- 5 %
Must be a U.S. Citizen
An active DoD Top Secret clearance is required to perform this work. Candidates are required to have an active Top Secret clearance upon hire, and the ability to maintain this level of clearance during their employment.
Education Requirements:
A completed Bachelor's Degree in a related field OR equivalent
Currently active DoD 8570.01 qualifying baseline certification(s): CISSP, CompTIA ,Network+, CompTIA and/or Security+.
Desired Skills :
Background in systems administration
Experience working with DoD Classified / Unclassified networks and enclaves
Working knowledge of Microsoft Office Products and Linux
EOE/Minorities/Females/Veterans/Disabled
PeopleTec, Inc. is an Equal Employment Opportunity employer and provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in its job application procedures. If you have any difficulty using our online system and you need an accommodation due to a disability, you may use the following email address, HR@peopletec.com and/or phone number (256.319.3800) to contact us about your interest in employment with PeopleTec, Inc.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, citizenship, ancestry, marital status, protected veteran status, disability status or any other status protected by federal, state, or local law. PeopleTec, Inc. participates in E-Verify.
For more information, or to apply now, you must go to the website below. Please DO NOT email your resume to us as we only accept applications through our website. https://www.applicantpro.com/j/1090307-145621
May 23, 2019
Full time
PeopleTec is currently seeking a Cybersecurity Engineer to support our Huntsville, AL location.
The qualified candidate will support Distributed Mission Operations architecture for Air Defense Artillery (ADA) units and for National Capital Region Integrated Air Defense System (NCR-IADS) and DIADS. The Joint Air Defense Operations Center Site D (JADOC-D) is located at Redstone Arsenal, AL. Expertise in planning, coordinating, and executing Risk Management Framework (RMF) implementation. Specific duties include: Development of processes to support IA updates to the JADOC-D systems. Candidate will be responsible for reviewing quarterly IA scan results and other information to maintain security posture. Update POA&Ms for systems that have gone through the FISMA process. Create memorandums for Annual Security Review and Risk Acceptances for the DAA, and staff accordingly. Analyze, compile, and support development of plans to correct IA and software deficiencies to meet program objectives for Army Interoperability Certification. Participate in milestone reviews such as SRR, PDR, CDR to ensure IA compliance. Track Problem Change Requests (PCR) that pertain to the security posture. Provide technical recommendations on implementation of controls and mitigations for the specific hardware and software solutions. Develop and maintain IA certification schedules and schedule milestones. Track and communicate IA and software development status, processes, and areas for improvement to Technical and Program leadership. Conduct DIACAP/RMF reviews for each engineering task to determine which IA controls (if any) will be impacted. The candidate shall ensure that all directed applications comply and support the Army's Information Assurance Vulnerability Management (IAVM) program notification and correction processes. Candidate will be responsible for the implementation of all cybersecurity Vulnerability Alerts (IAVA) and anti-virus patches by tracking application status and maintain contact with program offices and users. Conduct security testing required as part of the DoD Risk Mitigation Framework accreditation procedures. Create and maintain all APMS entries. Track IAVA compliance. Implement and execute necessary eMASS entries and updates in support of RMF and DIACAP packages. Review contract packages to ensure that IA requirements and CDRLs are present. Review CDRLs on a quarterly basis. The contractor shall meet the designated Information Assurance level certification IAW DoD 8570.1M Change 2 and Contractor DFAR clause.
Required Skills/Experience:
7+ years of work related experience
Ability to clearly present and communicate technical approaches and findings
Excellent technical writing, written and verbal communication skills
Experience developing complete RMF packages from system categorization through the Authority to Operate (ATO) Engineering, architecture, vulnerability assessment and threat analysis
Experience with implementing STIGs, eMASS, ACAS, and the SCAP In-depth understanding of cyber security policy, tools, threat mitigation, network topologies, and secured networks required Strong understanding of NIST Special Publications, FISMA, OMB requirements, and cyber security best practices
Travel: +/- 5 %
Must be a U.S. Citizen
An active DoD Top Secret clearance is required to perform this work. Candidates are required to have an active Top Secret clearance upon hire, and the ability to maintain this level of clearance during their employment.
Education Requirements:
A completed Bachelor's Degree in a related field OR equivalent
Currently active DoD 8570.01 qualifying baseline certification(s): CISSP, CompTIA ,Network+, CompTIA and/or Security+.
Desired Skills :
Background in systems administration
Experience working with DoD Classified / Unclassified networks and enclaves
Working knowledge of Microsoft Office Products and Linux
EOE/Minorities/Females/Veterans/Disabled
PeopleTec, Inc. is an Equal Employment Opportunity employer and provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in its job application procedures. If you have any difficulty using our online system and you need an accommodation due to a disability, you may use the following email address, HR@peopletec.com and/or phone number (256.319.3800) to contact us about your interest in employment with PeopleTec, Inc.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, citizenship, ancestry, marital status, protected veteran status, disability status or any other status protected by federal, state, or local law. PeopleTec, Inc. participates in E-Verify.
For more information, or to apply now, you must go to the website below. Please DO NOT email your resume to us as we only accept applications through our website. https://www.applicantpro.com/j/1090307-145621
The Oregon Health Authority is modernizing and expanding and currently has a fantastic opportunity for an experienced IT Privacy Expert to serve as their new Privacy Compliance Officer and to join an excellent team.
The Oregon Health Authority promotes health equity by developing policies and programs to eliminate health disparities and reach health equity for all Oregonians.
What you will do!
As a Privacy Compliance Officer (PCO), you will work in the Office of Information Services, the shared technology services provider for the Oregon Department of Human Services and the Oregon Health Authority. You will provide direction and expertise on all aspects of information privacy, privacy compliance, and confidentiality within both agencies (OHA and DHS), serving as a subject matter expert in these areas.
In this role, you will be part of the Office of Information Services’ Information Security and Privacy Office (ISPO). Your responsibilities will include:
Development and implementation of privacy policies and processes, development and maintenance of privacy practices, identification of training needs, program process modifications, drafting and maintenance of agencies’ Notice of Privacy Practices communications, monitoring and responding to privacy related complaints, incidents and issues related to unauthorized disclosure of individually identifiable information, responding to questions and inquiries relating to privacy and compliance, development and maintenance of agencies’ Oregon Administrative Rules on privacy, leadership on projects related to privacy and compliance.
This position is designed and intended to satisfy federal, state and local rules requiring agencies and entities to have a Privacy Officer. These laws include but are not limited to the Health Insurance Portability and Accountability Act of 1996 (HIPAA). You will work with agency staff, the Joint Privacy Committee, and other work groups for planning, coordinating and implementing policy and initiatives, and act as the privacy program manager.
You will work with all levels of management in state agencies, federal and national entities, and serve as a key point of contact with internal and external constituents on all issues pertaining to the protection of personally identifiable information, personal health information, CJIS information and other protected information for past and current clients of the agencies as well as employee information.
Additionally, you will be a key member of the Joint Privacy Committee and may lead teams for projects as well as participate in initiatives for the ISPO. You may lead and participate in other committees as needed. You will function as a project manager or project sponsor with respect to federal and state rule and law changes and the agencies’ compliance with these changes.
What's in it for you? Collaboration in an open office with a team of bright individuals to work with and learn from. We offer full medical, vision and dental with paid sick leave, vacation, personal leave and ten paid holidays per year. If you are an experienced Privacy Expert , don't delay, apply today!
WHAT WE ARE LOOKING FOR:
Eight (8) years of professional-level experience in Privacy. OR A Bachelor's Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science or any degree demonstrating the capacity for the knowledge and skills; AND Five (5) years of professional-level experience in Privacy. OR A Master’s Degree in or any degree demonstrating the capacity for the knowledge and skills; AND Four (4) years of professional-level experience in Privacy. OR A Doctor’s Degree in Information Technology with a specialty in Security, Privacy or Law or any degree demonstrating the capacity for the knowledge and skills; AND Three (3) years of professional-level experience in Privacy.
Successful completion of CIPP-US and CIPM Certifications or ability to acquire these certifications within 12 months of hire.
Knowledge of federal, state and agency laws and guidelines pertaining to protection from the unauthorized disclosure of individually identifiable information.
Experience with data governance and the management of regulated data.
A law degree or related advanced degree.
Project Management experience in an IT environment.
Demonstrated experience with HIPAA/HITECH, PII and other varieties of protected information.
Knowledge of programs within the Oregon Health Authority and Department of Human Services.
Ability to build and maintain professional and harmonious business relationships including work adjustment and adaptability, cooperativeness, loyalty and team work.
Excellent written and verbal communication and presentation skills.
Experience working with diverse groups with varying priorities and goals and moving those groups toward consensus.
Apr 16, 2019
Full time
The Oregon Health Authority is modernizing and expanding and currently has a fantastic opportunity for an experienced IT Privacy Expert to serve as their new Privacy Compliance Officer and to join an excellent team.
The Oregon Health Authority promotes health equity by developing policies and programs to eliminate health disparities and reach health equity for all Oregonians.
What you will do!
As a Privacy Compliance Officer (PCO), you will work in the Office of Information Services, the shared technology services provider for the Oregon Department of Human Services and the Oregon Health Authority. You will provide direction and expertise on all aspects of information privacy, privacy compliance, and confidentiality within both agencies (OHA and DHS), serving as a subject matter expert in these areas.
In this role, you will be part of the Office of Information Services’ Information Security and Privacy Office (ISPO). Your responsibilities will include:
Development and implementation of privacy policies and processes, development and maintenance of privacy practices, identification of training needs, program process modifications, drafting and maintenance of agencies’ Notice of Privacy Practices communications, monitoring and responding to privacy related complaints, incidents and issues related to unauthorized disclosure of individually identifiable information, responding to questions and inquiries relating to privacy and compliance, development and maintenance of agencies’ Oregon Administrative Rules on privacy, leadership on projects related to privacy and compliance.
This position is designed and intended to satisfy federal, state and local rules requiring agencies and entities to have a Privacy Officer. These laws include but are not limited to the Health Insurance Portability and Accountability Act of 1996 (HIPAA). You will work with agency staff, the Joint Privacy Committee, and other work groups for planning, coordinating and implementing policy and initiatives, and act as the privacy program manager.
You will work with all levels of management in state agencies, federal and national entities, and serve as a key point of contact with internal and external constituents on all issues pertaining to the protection of personally identifiable information, personal health information, CJIS information and other protected information for past and current clients of the agencies as well as employee information.
Additionally, you will be a key member of the Joint Privacy Committee and may lead teams for projects as well as participate in initiatives for the ISPO. You may lead and participate in other committees as needed. You will function as a project manager or project sponsor with respect to federal and state rule and law changes and the agencies’ compliance with these changes.
What's in it for you? Collaboration in an open office with a team of bright individuals to work with and learn from. We offer full medical, vision and dental with paid sick leave, vacation, personal leave and ten paid holidays per year. If you are an experienced Privacy Expert , don't delay, apply today!
WHAT WE ARE LOOKING FOR:
Eight (8) years of professional-level experience in Privacy. OR A Bachelor's Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science or any degree demonstrating the capacity for the knowledge and skills; AND Five (5) years of professional-level experience in Privacy. OR A Master’s Degree in or any degree demonstrating the capacity for the knowledge and skills; AND Four (4) years of professional-level experience in Privacy. OR A Doctor’s Degree in Information Technology with a specialty in Security, Privacy or Law or any degree demonstrating the capacity for the knowledge and skills; AND Three (3) years of professional-level experience in Privacy.
Successful completion of CIPP-US and CIPM Certifications or ability to acquire these certifications within 12 months of hire.
Knowledge of federal, state and agency laws and guidelines pertaining to protection from the unauthorized disclosure of individually identifiable information.
Experience with data governance and the management of regulated data.
A law degree or related advanced degree.
Project Management experience in an IT environment.
Demonstrated experience with HIPAA/HITECH, PII and other varieties of protected information.
Knowledge of programs within the Oregon Health Authority and Department of Human Services.
Ability to build and maintain professional and harmonious business relationships including work adjustment and adaptability, cooperativeness, loyalty and team work.
Excellent written and verbal communication and presentation skills.
Experience working with diverse groups with varying priorities and goals and moving those groups toward consensus.
Texas Dept. of Information Resources
300 West 15th Street, Suite#1300, Austin, Texas 78701
Job Posting:
#00004096
Opened:
01/19/19
Closes:
02/05/19
Position Title:
IT Security Analyst III (Governance Risk & Compliance Program Manager)
Class/Group:
0237/B27
Military Occupation Specialty Code:
Army 255S, Army 17C, Marine 0681
FLSA:
Exempt
Number of Vacancies:
1
Division/Section:
Office of the Chief Information Security Officer (OCISO)
Salary Range:
$6363.00 – $8203.34 / monthly
Duration:
Regular
Hours Worked Weekly:
40
Shift:
Days
Travel:
Occasional
Agency Address:
300 W. 15th Street, Austin Tx 78701
Work Location:
Same
Web site:
www.dir.texas.gov
Refer Inquiries to:
Human Resources
Telephone:
(512) 463-5920 or (512) 463-6015
HOW TO APPLY:
Select “Apply Online” to apply for the job at https://capps.taleo.net/careersection/ex/jobsearch.ftl?lang=en
You must create a CAPPS Career Section candidate profile or be logged in to apply
Update your profile and apply for the job by navigating through the pages and steps
Once ready, select “Submit” on the “Review and Submit” page.
Applicants must provide in depth information in the EXPERIENCE & CREDENTIALS section to demonstrate how they meet the position qualifications. Incomplete applications may result in disqualification.
Resumes may be uploaded as an attachment but are not accepted in lieu of the information required in the EXPERIENCE & CREDENTIALS section of the application.
Interview Place/Time:
Candidates will be notified for appointments as determined by the selection committee.
Notice:
Section 651.005 of the Government Code requires males, ages 18 through 25 years, to provide proof of their Selective Service registration or proof of their exemption from the requirement as a condition of state employment.
EQUAL OPPORTUNITY EMPLOYER
The Department of Information Resources does not exclude anyone from consideration for recruitment, selection, appointment, training, promotion, retention, or any other personnel action, or deny any benefits or participation in programs or activities, which it sponsors on the grounds of race, color, national origin, sex, religion, age or disability. Please call 512-463-5920 to request reasonable accommodations.
THE OPPORTUNITY
The Texas Department of Information Resources serves a wide spectrum of customers including State of Texas government agencies, county or local government offices, and public education entities of all sizes by leveraging bulk buying power that enables eligible customers to buy IT products and services at aggressive discounts without the need for a lengthy procurement process. DIR is a fast-paced and collaborative environment with highly motivated and engaged employees dedicated to achieving the best value for the state.
This position combines progressive information security program development, implementation and management expertise with an opportunity to leverage an entrepreneurial determination to evolve information security within state government.
The person in this role performs highly advanced and/or managerial (senior-level) information security analysis functions that include planning, implementing, and monitoring security program elements and services that support government organizations throughout the state of Texas in the protection of information resources. Will interact frequently with state agency and other governmental agency personnel using a variety of communication mechanisms to convey service delivery information and program implementation details with the purpose of engaging organizations with the statewide security program. Works under minimal supervision, with extensive latitude for the use of initiative and independent judgment.
WHAT WE DO
The ideal candidate will have the ability to highlight their strengths in the following functions:
Assists State Chief Information Security Officer in the development and implementation of enterprise security strategies and plans, as well as the formulation and dissemination of standards and guidelines to manage statewide information and information asset related risks, threats, and vulnerabilities.
Researches and evaluates new and emerging GRC services; Supports efforts, as part of the GRC development and support team responsible for design, development, and implementation of new processes, applications, and reporting using the DIR GRC system; supports the statewide clearinghouse on information security matters including policy and compliance management, risk management, incident management and data breach reporting within the enterprise governance, risk and compliance framework.
Provides program management and delivery support for Office of the State Chief Information Security Officer enterprise security program; effective in the project planning and management to implement and establish security service offerings
Researches and evaluates new and emerging security services, and is capable of developing the supporting business case for the introduction of offered services; assists in the development of statewide policy, standard, guideline and best practices for statewide guidance
Evaluates customer risks and security requirements and provides recommendations for support of the customer organization’s security program; assists communication with public officials and staff; participates and in some cases leads advisory groups
Assists in the analysis of potential statewide impact of proposed federal, state, and industry security and privacy related policy, legislation and standards; drafts and prepares proposals for modification to statewide security policies, standards, and procedures, and advises agencies in implementing statewide security policies; collects and understands business requirements and proposes solutions that will allow DIR customers to attain automated workflows and business processes in an enterprise governance, risk and compliance framework.
Supports statewide information sharing for cyber-security incident response including appropriate classification, mitigation, response and recovery; evaluates security incidents to assist in the development of corrective responses and risk mitigation
OTHER DUTIES
Performs other duties as assigned
EDUCATION
Graduation from an accredited four-year college or university with major course work in Business, MIS, Computer Science, Information Security, or related field.
Additional equivalent years of related work experience may substitute for degree
(High-school diploma and seven (7) years of experience without degree)
EXPERIENCE AND TRAINING REQUIRED
Three (3) to five (5) years of experience in developing and implementing security services into a risk-based security program with the ability to demonstrate in depth knowledge of policy development, risk evaluation, and cost benefit analysis to support security program decisions
Three (3) to five (5) years of experience conducting analysis of threat and vulnerabilities, control maturity and gap analysis, and the analysis of cybersecurity incidents and events with the ability to demonstrate the preparation and delivery of both oral and written presentations of related information
One (1) to three (3) years of experience in design, development, and delivery of information security education, training and awareness programs
EXPERIENCE & TRAINING PREFERRED
Project management certification and training
Experience with Texas Security regulations including Texas Administrative Code § 202
Experience with Federal Information Security Management Act (FISMA) and National Institute of Standards (NIST) 800 Series Special Publications
Experience collaborating with outsourced IT service delivery organizations
One of the following certifications: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Systems Manager (CISM), or equivalent
KNOWLEDGE, SKILLS AND ABILITIES
Knowledge of data communications, networking, computer programming and systems analysis
Knowledge of information security operations and services processes
Knowledge of principles, practices, and techniques of management controls and information security protections as applied to state government
Knowledge of Texas State government and related information technology processes
Knowledge of security metrics, benchmarking activities and expectations, and security operational monitoring processes
Ability to handle multiple projects and initiatives
Ability to prepare technical issues papers and research reports, and effectively deliver oral presentations and written reports to IT and non-IT management
Ability to advise technical staff from customer agencies
Ability to establish and maintain effective and cordial working relationships at all organizational levels, including agency management, direct supervisors, co-workers, internal and external customers
Ability to understand, follow and convey brief oral and/or written instructions
Ability to communicate both verbally and in writing; in a clear and concise manner
Ability to work independently and as part of a team, and to support and contribute to a cohesive team environment
Ability to work under pressure and exacting schedules to complete assigned tasks
Ability to work a flexible schedule to meet required deadlines
Ability to travel as necessary to support agency requirements
Ability to comply with all agency policy and applicable laws
Ability to comply with all applicable safety rules, regulations, and standards
COMPUTER SKILLS
Proficiency in the use of a personal computer and applicable software necessary to perform work assignments e.g. word processing, spreadsheets, presentation software, and data analysis/reporting software
OTHER REQUIREMENTS
Regular and punctual attendance.
Criminal background check
WORK ENVIRONMENT
Frequent use of a personal computer, copiers, printers and telephones
Frequent work under stress, as a team member, and in direct contact with others
Frequent standing, walking, sitting, listening and talking
Occasional bending, stooping, lifting and climbing
Jan 19, 2019
Full time
Job Posting:
#00004096
Opened:
01/19/19
Closes:
02/05/19
Position Title:
IT Security Analyst III (Governance Risk & Compliance Program Manager)
Class/Group:
0237/B27
Military Occupation Specialty Code:
Army 255S, Army 17C, Marine 0681
FLSA:
Exempt
Number of Vacancies:
1
Division/Section:
Office of the Chief Information Security Officer (OCISO)
Salary Range:
$6363.00 – $8203.34 / monthly
Duration:
Regular
Hours Worked Weekly:
40
Shift:
Days
Travel:
Occasional
Agency Address:
300 W. 15th Street, Austin Tx 78701
Work Location:
Same
Web site:
www.dir.texas.gov
Refer Inquiries to:
Human Resources
Telephone:
(512) 463-5920 or (512) 463-6015
HOW TO APPLY:
Select “Apply Online” to apply for the job at https://capps.taleo.net/careersection/ex/jobsearch.ftl?lang=en
You must create a CAPPS Career Section candidate profile or be logged in to apply
Update your profile and apply for the job by navigating through the pages and steps
Once ready, select “Submit” on the “Review and Submit” page.
Applicants must provide in depth information in the EXPERIENCE & CREDENTIALS section to demonstrate how they meet the position qualifications. Incomplete applications may result in disqualification.
Resumes may be uploaded as an attachment but are not accepted in lieu of the information required in the EXPERIENCE & CREDENTIALS section of the application.
Interview Place/Time:
Candidates will be notified for appointments as determined by the selection committee.
Notice:
Section 651.005 of the Government Code requires males, ages 18 through 25 years, to provide proof of their Selective Service registration or proof of their exemption from the requirement as a condition of state employment.
EQUAL OPPORTUNITY EMPLOYER
The Department of Information Resources does not exclude anyone from consideration for recruitment, selection, appointment, training, promotion, retention, or any other personnel action, or deny any benefits or participation in programs or activities, which it sponsors on the grounds of race, color, national origin, sex, religion, age or disability. Please call 512-463-5920 to request reasonable accommodations.
THE OPPORTUNITY
The Texas Department of Information Resources serves a wide spectrum of customers including State of Texas government agencies, county or local government offices, and public education entities of all sizes by leveraging bulk buying power that enables eligible customers to buy IT products and services at aggressive discounts without the need for a lengthy procurement process. DIR is a fast-paced and collaborative environment with highly motivated and engaged employees dedicated to achieving the best value for the state.
This position combines progressive information security program development, implementation and management expertise with an opportunity to leverage an entrepreneurial determination to evolve information security within state government.
The person in this role performs highly advanced and/or managerial (senior-level) information security analysis functions that include planning, implementing, and monitoring security program elements and services that support government organizations throughout the state of Texas in the protection of information resources. Will interact frequently with state agency and other governmental agency personnel using a variety of communication mechanisms to convey service delivery information and program implementation details with the purpose of engaging organizations with the statewide security program. Works under minimal supervision, with extensive latitude for the use of initiative and independent judgment.
WHAT WE DO
The ideal candidate will have the ability to highlight their strengths in the following functions:
Assists State Chief Information Security Officer in the development and implementation of enterprise security strategies and plans, as well as the formulation and dissemination of standards and guidelines to manage statewide information and information asset related risks, threats, and vulnerabilities.
Researches and evaluates new and emerging GRC services; Supports efforts, as part of the GRC development and support team responsible for design, development, and implementation of new processes, applications, and reporting using the DIR GRC system; supports the statewide clearinghouse on information security matters including policy and compliance management, risk management, incident management and data breach reporting within the enterprise governance, risk and compliance framework.
Provides program management and delivery support for Office of the State Chief Information Security Officer enterprise security program; effective in the project planning and management to implement and establish security service offerings
Researches and evaluates new and emerging security services, and is capable of developing the supporting business case for the introduction of offered services; assists in the development of statewide policy, standard, guideline and best practices for statewide guidance
Evaluates customer risks and security requirements and provides recommendations for support of the customer organization’s security program; assists communication with public officials and staff; participates and in some cases leads advisory groups
Assists in the analysis of potential statewide impact of proposed federal, state, and industry security and privacy related policy, legislation and standards; drafts and prepares proposals for modification to statewide security policies, standards, and procedures, and advises agencies in implementing statewide security policies; collects and understands business requirements and proposes solutions that will allow DIR customers to attain automated workflows and business processes in an enterprise governance, risk and compliance framework.
Supports statewide information sharing for cyber-security incident response including appropriate classification, mitigation, response and recovery; evaluates security incidents to assist in the development of corrective responses and risk mitigation
OTHER DUTIES
Performs other duties as assigned
EDUCATION
Graduation from an accredited four-year college or university with major course work in Business, MIS, Computer Science, Information Security, or related field.
Additional equivalent years of related work experience may substitute for degree
(High-school diploma and seven (7) years of experience without degree)
EXPERIENCE AND TRAINING REQUIRED
Three (3) to five (5) years of experience in developing and implementing security services into a risk-based security program with the ability to demonstrate in depth knowledge of policy development, risk evaluation, and cost benefit analysis to support security program decisions
Three (3) to five (5) years of experience conducting analysis of threat and vulnerabilities, control maturity and gap analysis, and the analysis of cybersecurity incidents and events with the ability to demonstrate the preparation and delivery of both oral and written presentations of related information
One (1) to three (3) years of experience in design, development, and delivery of information security education, training and awareness programs
EXPERIENCE & TRAINING PREFERRED
Project management certification and training
Experience with Texas Security regulations including Texas Administrative Code § 202
Experience with Federal Information Security Management Act (FISMA) and National Institute of Standards (NIST) 800 Series Special Publications
Experience collaborating with outsourced IT service delivery organizations
One of the following certifications: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Systems Manager (CISM), or equivalent
KNOWLEDGE, SKILLS AND ABILITIES
Knowledge of data communications, networking, computer programming and systems analysis
Knowledge of information security operations and services processes
Knowledge of principles, practices, and techniques of management controls and information security protections as applied to state government
Knowledge of Texas State government and related information technology processes
Knowledge of security metrics, benchmarking activities and expectations, and security operational monitoring processes
Ability to handle multiple projects and initiatives
Ability to prepare technical issues papers and research reports, and effectively deliver oral presentations and written reports to IT and non-IT management
Ability to advise technical staff from customer agencies
Ability to establish and maintain effective and cordial working relationships at all organizational levels, including agency management, direct supervisors, co-workers, internal and external customers
Ability to understand, follow and convey brief oral and/or written instructions
Ability to communicate both verbally and in writing; in a clear and concise manner
Ability to work independently and as part of a team, and to support and contribute to a cohesive team environment
Ability to work under pressure and exacting schedules to complete assigned tasks
Ability to work a flexible schedule to meet required deadlines
Ability to travel as necessary to support agency requirements
Ability to comply with all agency policy and applicable laws
Ability to comply with all applicable safety rules, regulations, and standards
COMPUTER SKILLS
Proficiency in the use of a personal computer and applicable software necessary to perform work assignments e.g. word processing, spreadsheets, presentation software, and data analysis/reporting software
OTHER REQUIREMENTS
Regular and punctual attendance.
Criminal background check
WORK ENVIRONMENT
Frequent use of a personal computer, copiers, printers and telephones
Frequent work under stress, as a team member, and in direct contact with others
Frequent standing, walking, sitting, listening and talking
Occasional bending, stooping, lifting and climbing
The Oregon Health Authority is modernizing and expanding their IT infrastructure and currently has a fantastic opportunity for an experienced IT Security Administrator to join an excellent team and work to advance their IT operations. The Oregon Health Authority promotes health equity by developing policies and programs to eliminate health disparities and reach health equity for all Oregonians. What you will do! As an Infrastructure/Application Security Administrator, you will be responsible for implementing, testing and operating advanced software security techniques in support of the development of information systems. You will coordinate all levels of security system design, work processes, user interface design and application infrastructure design. You will define and implement software development security processes and standards. You will also mentor and support application development staff in various roles and responsibilities. In this role, you will evaluate applications for technology upgrades and develop strategies for technology integration. You will support and develop processes and tools related to software engineering such as testing, continuous integration, configuration management, and software builds. Additionally, you will build relationships and facilitate effective discussions with employees at all levels of the organization. What's in it for you? Collaboration in an open office with a team of bright individuals to work with and learn from. We offer full medical, vision and dental with paid sick leave, vacation, personal leave and ten paid holidays per year. If you are an experienced IT Security Administrator , don't delay, apply today!
This is a full-time, permanent position that is classified and represented by a union. This position will be located in Salem at 3991 Fairview Industrial Drive SE.
MINIMUM QUALIFICATIONS:
(a) Seven (7) years of information systems experience in Security Administration and/or Enterprise System Design & Development. OR (b) An Associate's degree or higher in Computer Science, Information Technology, or related field, OR completion of a two (2) year accredited vocational training program in information technology or related field; AND 5 years of information systems experience in Security Administration and/or Enterprise System Design & Development. OR (c) A Bachelor's degree in Information Technology, Computer Science, or related field AND three (3) years of information systems experience in Security Administration and/or Enterprise System Design & Development. OR (d) Master's degree in Information Technology, Computer Science, or related field AND one (1) year of information systems experience in Security Administration and/or Enterprise System Design & Development. REQUESTED SKILLS:
Proven experience as a Software Security Engineer.
Detailed technical knowledge of techniques, standards and state-of-the-art capabilities for authentication and authorization, applied cryptography, security vulnerabilities and remediation.
Experience in enterprise system design and development.
Ability to research emerging trends and technologies to assess possible threats.
Experience in software configuration management, automated testing, automated build, and continuous integration.
Current knowledge of web-related technologies and network/web-related protocols.
Genuine interest in all aspects of security research and development.
Software development experience in Java, Javascript and/or .NET.
Experience developing software engineering processes and procedures.
Excellent written and verbal communication and presentation skills.
Experience in promoting a culturally competent and diverse work environment.
Jan 07, 2019
Full time
The Oregon Health Authority is modernizing and expanding their IT infrastructure and currently has a fantastic opportunity for an experienced IT Security Administrator to join an excellent team and work to advance their IT operations. The Oregon Health Authority promotes health equity by developing policies and programs to eliminate health disparities and reach health equity for all Oregonians. What you will do! As an Infrastructure/Application Security Administrator, you will be responsible for implementing, testing and operating advanced software security techniques in support of the development of information systems. You will coordinate all levels of security system design, work processes, user interface design and application infrastructure design. You will define and implement software development security processes and standards. You will also mentor and support application development staff in various roles and responsibilities. In this role, you will evaluate applications for technology upgrades and develop strategies for technology integration. You will support and develop processes and tools related to software engineering such as testing, continuous integration, configuration management, and software builds. Additionally, you will build relationships and facilitate effective discussions with employees at all levels of the organization. What's in it for you? Collaboration in an open office with a team of bright individuals to work with and learn from. We offer full medical, vision and dental with paid sick leave, vacation, personal leave and ten paid holidays per year. If you are an experienced IT Security Administrator , don't delay, apply today!
This is a full-time, permanent position that is classified and represented by a union. This position will be located in Salem at 3991 Fairview Industrial Drive SE.
MINIMUM QUALIFICATIONS:
(a) Seven (7) years of information systems experience in Security Administration and/or Enterprise System Design & Development. OR (b) An Associate's degree or higher in Computer Science, Information Technology, or related field, OR completion of a two (2) year accredited vocational training program in information technology or related field; AND 5 years of information systems experience in Security Administration and/or Enterprise System Design & Development. OR (c) A Bachelor's degree in Information Technology, Computer Science, or related field AND three (3) years of information systems experience in Security Administration and/or Enterprise System Design & Development. OR (d) Master's degree in Information Technology, Computer Science, or related field AND one (1) year of information systems experience in Security Administration and/or Enterprise System Design & Development. REQUESTED SKILLS:
Proven experience as a Software Security Engineer.
Detailed technical knowledge of techniques, standards and state-of-the-art capabilities for authentication and authorization, applied cryptography, security vulnerabilities and remediation.
Experience in enterprise system design and development.
Ability to research emerging trends and technologies to assess possible threats.
Experience in software configuration management, automated testing, automated build, and continuous integration.
Current knowledge of web-related technologies and network/web-related protocols.
Genuine interest in all aspects of security research and development.
Software development experience in Java, Javascript and/or .NET.
Experience developing software engineering processes and procedures.
Excellent written and verbal communication and presentation skills.
Experience in promoting a culturally competent and diverse work environment.
The FHLB – Office of Finance (FHLB-OF) is seeking an Information Security Network Analyst who will work in the FHLB-OF Network Operations Center (NOC) as part of a cross disciplinary IT team. The NOC team is responsible for first level end user support and systems monitoring. The role will be the primary IT Security and Networking liaison with the NOC. The incumbent will be required to have active engagement, and consultation in supporting all users with the network and telephone systems. The Information Security Network Analyst serves a critical role in support of the Office's function as the FHLB-OF’s fiscal agent in the analysis, issuance and servicing of the System's multi-billion-dollar debt portfolio. The accuracy and the availability of these application systems are critical to the successful operation of the Office.
Major Responsibilities include
Facilitate authorized user network and service access by providing technical support for security, networking and telecom; follow pre-defined processes and procedures for troubleshooting; note deficiencies in processes and procedures and escalates as needed; and update knowledge base, incident response plans, tickets, and change controls.
Provide support for password and logon issues by following documented procedures.
Serve as the first responder for anomaly detection through security alerts (emails/phone calls) and networking and telecom support (LAN/WAN/Wireless network, phones, voicemail).
Serve as the first responder for Security and Networking preventative, detective and administrative controls including malware detection/prevention, network access controls, e-mail spam and virus filtering, web browser proxy filtering, Drive Encryption Protection, and remote access and two-factor authentication.
Perform reoccurring signature updates and patches to security technologies.
Generate metrics/reports on effectiveness of controls, including tracking and reporting on server security baseline deviations and compliance with security standards.
Perform patch reconnaissance on security and networking technologies.
Administer the Cisco network infrastructure including troubleshooting network port errors and/or configuring new ports for as required.
Manage Security Awareness Training provisioning.
Track and report audit or internal vulnerability assessments.
Perform critical duties in the Business Continuity response in disaster response scenarios.
Qualified candidates will offer two to four years of experience in the IT Security or Network Operations Field, and a minimum of two years of experience in both Cisco infrastructure administration and practicing ITIL framework-based processes such as Change, Problem, and Incident management in an enterprise environment. The FHLB-OF is seeking candidates with a strong understanding of Local & Wide Area Networks (LAN/WAN) and a firm grasp of TCP/IP fundamentals. Ideal candidates will have demonstrated experience in writing and /or editing security policies, procedures, and documentation. A college degree in a relevant field and industry certifications ( i.e. Security+, CEH, CISSP) are preferred.
This position offers a competitive salary with excellent benefits and work environment and is based in Reston, VA.
FHLB-OF is not currently sponsoring work visas or transfers. Green Card or citizenship required.
To apply, please submit your resume and cover letter to the following job link: https://workforcenow.adp.com/mascsr/default/mdf/recruitment/recruitment.html?cid=dbe33395-bf37-4c97-a480-4dc278da8c0d&jobId=148794&lang=en_US&source=CC3
Additional inquiries and questions can be emailed to Beth Cessna at bcessna@fhlb-of.com .
Contact 202/232-1765.
Dec 21, 2018
Full time
The FHLB – Office of Finance (FHLB-OF) is seeking an Information Security Network Analyst who will work in the FHLB-OF Network Operations Center (NOC) as part of a cross disciplinary IT team. The NOC team is responsible for first level end user support and systems monitoring. The role will be the primary IT Security and Networking liaison with the NOC. The incumbent will be required to have active engagement, and consultation in supporting all users with the network and telephone systems. The Information Security Network Analyst serves a critical role in support of the Office's function as the FHLB-OF’s fiscal agent in the analysis, issuance and servicing of the System's multi-billion-dollar debt portfolio. The accuracy and the availability of these application systems are critical to the successful operation of the Office.
Major Responsibilities include
Facilitate authorized user network and service access by providing technical support for security, networking and telecom; follow pre-defined processes and procedures for troubleshooting; note deficiencies in processes and procedures and escalates as needed; and update knowledge base, incident response plans, tickets, and change controls.
Provide support for password and logon issues by following documented procedures.
Serve as the first responder for anomaly detection through security alerts (emails/phone calls) and networking and telecom support (LAN/WAN/Wireless network, phones, voicemail).
Serve as the first responder for Security and Networking preventative, detective and administrative controls including malware detection/prevention, network access controls, e-mail spam and virus filtering, web browser proxy filtering, Drive Encryption Protection, and remote access and two-factor authentication.
Perform reoccurring signature updates and patches to security technologies.
Generate metrics/reports on effectiveness of controls, including tracking and reporting on server security baseline deviations and compliance with security standards.
Perform patch reconnaissance on security and networking technologies.
Administer the Cisco network infrastructure including troubleshooting network port errors and/or configuring new ports for as required.
Manage Security Awareness Training provisioning.
Track and report audit or internal vulnerability assessments.
Perform critical duties in the Business Continuity response in disaster response scenarios.
Qualified candidates will offer two to four years of experience in the IT Security or Network Operations Field, and a minimum of two years of experience in both Cisco infrastructure administration and practicing ITIL framework-based processes such as Change, Problem, and Incident management in an enterprise environment. The FHLB-OF is seeking candidates with a strong understanding of Local & Wide Area Networks (LAN/WAN) and a firm grasp of TCP/IP fundamentals. Ideal candidates will have demonstrated experience in writing and /or editing security policies, procedures, and documentation. A college degree in a relevant field and industry certifications ( i.e. Security+, CEH, CISSP) are preferred.
This position offers a competitive salary with excellent benefits and work environment and is based in Reston, VA.
FHLB-OF is not currently sponsoring work visas or transfers. Green Card or citizenship required.
To apply, please submit your resume and cover letter to the following job link: https://workforcenow.adp.com/mascsr/default/mdf/recruitment/recruitment.html?cid=dbe33395-bf37-4c97-a480-4dc278da8c0d&jobId=148794&lang=en_US&source=CC3
Additional inquiries and questions can be emailed to Beth Cessna at bcessna@fhlb-of.com .
Contact 202/232-1765.
PeopleTec is currently seeking a Cyber Security Instructor to support our Ft. Gordon, GA location.
The Army recently established the Cyber School under the CCoE to train the new Cyber Branch/Career Field 17, which includes courses for MOS 17A, 170A, and 17C. Army Cyber School training includes Career Field 17's (Cyber Operations) Basic Officer Leader Course (BOLC), Captain's Career Course (CCC), Operations Officer Course (OOC), Advanced Individual Training (AIT), Advanced Leader Course (ALC), Senior Leader Course (SLC), Warrant Officer Basic Course (WOBC), Warrant Officer Advanced Course (WOAC), and other Cyberspace Operations courses as determined by the Army Cyber Commandant. The majority of these courses consist of technical cyber training validated by USCYBERCOM J7, DoD CIO, and the NSA. The candidate shall provide instructional support and training development for the Cyber School. Personnel supporting the school shall assist and support the CCoE personnel and shall utilize and develop all training related products IAW all applicable regulations and SOPs (i.e. TRADOC REG 350-70 with appendixes). Instructors will facilitate adult learning through modern training techniques and methodologies and assist in developing Cyberspace Operations (CO) curriculum. The Cyber Common Technical Core (CCTC) course embraces the adult learning concept by creating an environment that is approximately 80% hands-on and 20% knowledge-based instruction. Instructors are required to conduct the following: Assess Cyberspace Related Risk; Integrate Intelligence into Cyberspace Operations; Employ Cyberspace Defense, Detect Indicators of Compromise, Unknown Vulnerabilities, or Anomalous Behavior; Perform Incident Response; Provide Cyber-Threat Indications and Warnings; Provide a Critical Asset Vulnerability Assessment; Implement Defensive Cyberspace Operations - Response Actions; Perform Cyberspace Intelligence, Surveillance, and Reconnaissance Activities; Perform Cyberspace Operational Preparation of the Environment; Perform Cyberspace Attack Operations Orders.
Required Skills/Experience:
Must have networking expertise and experience equivalent to the CCIE- R&S or JNCIE-SP level.
Must understand networking from both the theoretical & practical perspectives.
Must be comfortable with reading and understanding Requests for Comment (RFC).
Must be comfortable with taking an RFC for a networking protocol and creating a compliant implementation from scratch.
Must be proficient in Python or Ruby.
Must have experience in Software Defined Networking (SDN), including installation, operations, maintenance of a variety of SDN controllers (OpenDaylight, Open Contrail, etc).
Should be familiar with control plane protocols like OpenFlow.
Must have experience in instructing the following topics: Possess skills/knowledge of performing office automation work that includes word processing, electronic mail, spreadsheets, presentations, and other personal computer applications; Typing a variety of materials from rough draft into final form including narrative and tabular material, e.g., correspondence, reports, and forms; Maintaining records, historical records, survey results, reference library of training catalogs, regulations and other miscellaneous publications; Establishing and maintaining office functional files and reference files; Knowledge management applications, e.g., SharePoint, Army training requirements and resources system (ATRRS), and Blackboard.
Travel: 25%
Must be a U.S. Citizen
An active DoD Top Secret /SCI clearance is required to perform this work. Candidates are required to have an active Secret clearance upon hire, and the ability to maintain this level of clearance during their employment.
Education Requirements:
A completed Bachelor's Degree and twelve years or more of related experience or a completed Master's Degree and ten years or more of related experience. Preferred degrees included Computer Science, Computer Engineering, Electrical Engineering, Information Technology, Information Systems.
Desired Skills :
Experience teaching technical computing concepts at the institutional and/or collegiate level.
Experience contributing in the open source community. Examples include - published tools, reports, publications, repositories, etc.
Hands on technical experience installing, operating, and maintaining systems.
Hands on experience building, managing, troubleshooting, maintaining, and securing enterprise level networks.
Network Project Management experience.
Experience securing enterprise level network.
EOE/Minorities/Females/Veterans/Disabled
PeopleTec, Inc. is an Equal Employment Opportunity employer and provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in its job application procedures. If you have any difficulty using our online system and you need an accommodation due to a disability, you may use the following email address, HR@peopletec.com and/or phone number (256.319.3800) to contact us about your interest in employment with PeopleTec, Inc.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, citizenship, ancestry, marital status, protected veteran status, disability status or any other status protected by federal, state, or local law. PeopleTec, Inc. participates in E-Verify.
For more information, or to apply now, you must go to the website below. Please DO NOT email your resume to us as we only accept applications through our website. https://www.applicantpro.com/j/933940-306071
Nov 09, 2018
Full time
PeopleTec is currently seeking a Cyber Security Instructor to support our Ft. Gordon, GA location.
The Army recently established the Cyber School under the CCoE to train the new Cyber Branch/Career Field 17, which includes courses for MOS 17A, 170A, and 17C. Army Cyber School training includes Career Field 17's (Cyber Operations) Basic Officer Leader Course (BOLC), Captain's Career Course (CCC), Operations Officer Course (OOC), Advanced Individual Training (AIT), Advanced Leader Course (ALC), Senior Leader Course (SLC), Warrant Officer Basic Course (WOBC), Warrant Officer Advanced Course (WOAC), and other Cyberspace Operations courses as determined by the Army Cyber Commandant. The majority of these courses consist of technical cyber training validated by USCYBERCOM J7, DoD CIO, and the NSA. The candidate shall provide instructional support and training development for the Cyber School. Personnel supporting the school shall assist and support the CCoE personnel and shall utilize and develop all training related products IAW all applicable regulations and SOPs (i.e. TRADOC REG 350-70 with appendixes). Instructors will facilitate adult learning through modern training techniques and methodologies and assist in developing Cyberspace Operations (CO) curriculum. The Cyber Common Technical Core (CCTC) course embraces the adult learning concept by creating an environment that is approximately 80% hands-on and 20% knowledge-based instruction. Instructors are required to conduct the following: Assess Cyberspace Related Risk; Integrate Intelligence into Cyberspace Operations; Employ Cyberspace Defense, Detect Indicators of Compromise, Unknown Vulnerabilities, or Anomalous Behavior; Perform Incident Response; Provide Cyber-Threat Indications and Warnings; Provide a Critical Asset Vulnerability Assessment; Implement Defensive Cyberspace Operations - Response Actions; Perform Cyberspace Intelligence, Surveillance, and Reconnaissance Activities; Perform Cyberspace Operational Preparation of the Environment; Perform Cyberspace Attack Operations Orders.
Required Skills/Experience:
Must have networking expertise and experience equivalent to the CCIE- R&S or JNCIE-SP level.
Must understand networking from both the theoretical & practical perspectives.
Must be comfortable with reading and understanding Requests for Comment (RFC).
Must be comfortable with taking an RFC for a networking protocol and creating a compliant implementation from scratch.
Must be proficient in Python or Ruby.
Must have experience in Software Defined Networking (SDN), including installation, operations, maintenance of a variety of SDN controllers (OpenDaylight, Open Contrail, etc).
Should be familiar with control plane protocols like OpenFlow.
Must have experience in instructing the following topics: Possess skills/knowledge of performing office automation work that includes word processing, electronic mail, spreadsheets, presentations, and other personal computer applications; Typing a variety of materials from rough draft into final form including narrative and tabular material, e.g., correspondence, reports, and forms; Maintaining records, historical records, survey results, reference library of training catalogs, regulations and other miscellaneous publications; Establishing and maintaining office functional files and reference files; Knowledge management applications, e.g., SharePoint, Army training requirements and resources system (ATRRS), and Blackboard.
Travel: 25%
Must be a U.S. Citizen
An active DoD Top Secret /SCI clearance is required to perform this work. Candidates are required to have an active Secret clearance upon hire, and the ability to maintain this level of clearance during their employment.
Education Requirements:
A completed Bachelor's Degree and twelve years or more of related experience or a completed Master's Degree and ten years or more of related experience. Preferred degrees included Computer Science, Computer Engineering, Electrical Engineering, Information Technology, Information Systems.
Desired Skills :
Experience teaching technical computing concepts at the institutional and/or collegiate level.
Experience contributing in the open source community. Examples include - published tools, reports, publications, repositories, etc.
Hands on technical experience installing, operating, and maintaining systems.
Hands on experience building, managing, troubleshooting, maintaining, and securing enterprise level networks.
Network Project Management experience.
Experience securing enterprise level network.
EOE/Minorities/Females/Veterans/Disabled
PeopleTec, Inc. is an Equal Employment Opportunity employer and provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in its job application procedures. If you have any difficulty using our online system and you need an accommodation due to a disability, you may use the following email address, HR@peopletec.com and/or phone number (256.319.3800) to contact us about your interest in employment with PeopleTec, Inc.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, citizenship, ancestry, marital status, protected veteran status, disability status or any other status protected by federal, state, or local law. PeopleTec, Inc. participates in E-Verify.
For more information, or to apply now, you must go to the website below. Please DO NOT email your resume to us as we only accept applications through our website. https://www.applicantpro.com/j/933940-306071
The Oregon Health Authority is modernizing and expanding their IT infrastructure and currently has a fantastic opportunity for a Risk Analyst with Information Security to join an excellent team and work to advance information security and privacy within the Department of Human Services and the Oregon Health Authority (DHS|OHA). The Oregon Health Authority promotes health equity by developing policies and programs to eliminate health disparities and reach health equity for all Oregonians. The Department of Human Services (DHS) mission is the safety, health and independence for all Oregonians. We help Oregonians in their own communities achieve well-being and independence through opportunities that protect, empower, respect choice and preserve dignity. What you will do! As an Information Security Risk Analyst, you will provide support for the Information Security Risk Assessment program by maintaining the DHS|OHA risk register which is used to update senior agency managers on information security risks to agency assets, record treatment decisions, and to track and monitor mitigation activities. You will work under the guidance of the Information Security Officer (ISO). What's in it for you? Collaboration in an open office with a team of bright individuals to work with and learn from. We offer full medical, vision and dental with paid sick leave, vacation, personal leave and ten paid holidays per year. If you are a Risk Analyst with Information Security experience , don't delay, apply today!
This is a full-time, permanent position that is classified and represented by a union. This position will be located in Salem at 3991 Fairview Industrial Drive SE.
MINIMUM QUALIFICATIONS:
A Bachelor's Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science or any degree demonstrating the capacity for the knowledge and skills; AND two years of professional-level evaluative, analytical and planning experience related to Risk Analysis. OR ; Any combination of experience and education equivalent to five years of professional-level evaluative, analytical and planning experience related to Risk Analysis. REQUESTED SKILLS:
Knowledge of computer technology, networking, information security, and privacy
Ability to analyze data to develop technical and executive reports and dashboards highlighting trends and conveying recommendations
Ability to build and maintain collaborative working relationships with colleagues, managers, and stakeholders
Excellent written and verbal communication and presentation skills
Self-starter able to work independently with limited oversight and demonstrated attention to detail
Aware of information security requirements and frameworks (e.g. NIST SP 800-30 and 53, HIPAA, IRS Publication 1075) and prepared to become a subject matter expert in one or more of them
Proficiency with the Microsoft Office Suite (especially developing and maintaining reports using Excel)
Familiar with the purpose of information security risk assessments
Experience in promoting a culturally competent and diverse work environment
Oct 10, 2018
Full time
The Oregon Health Authority is modernizing and expanding their IT infrastructure and currently has a fantastic opportunity for a Risk Analyst with Information Security to join an excellent team and work to advance information security and privacy within the Department of Human Services and the Oregon Health Authority (DHS|OHA). The Oregon Health Authority promotes health equity by developing policies and programs to eliminate health disparities and reach health equity for all Oregonians. The Department of Human Services (DHS) mission is the safety, health and independence for all Oregonians. We help Oregonians in their own communities achieve well-being and independence through opportunities that protect, empower, respect choice and preserve dignity. What you will do! As an Information Security Risk Analyst, you will provide support for the Information Security Risk Assessment program by maintaining the DHS|OHA risk register which is used to update senior agency managers on information security risks to agency assets, record treatment decisions, and to track and monitor mitigation activities. You will work under the guidance of the Information Security Officer (ISO). What's in it for you? Collaboration in an open office with a team of bright individuals to work with and learn from. We offer full medical, vision and dental with paid sick leave, vacation, personal leave and ten paid holidays per year. If you are a Risk Analyst with Information Security experience , don't delay, apply today!
This is a full-time, permanent position that is classified and represented by a union. This position will be located in Salem at 3991 Fairview Industrial Drive SE.
MINIMUM QUALIFICATIONS:
A Bachelor's Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science or any degree demonstrating the capacity for the knowledge and skills; AND two years of professional-level evaluative, analytical and planning experience related to Risk Analysis. OR ; Any combination of experience and education equivalent to five years of professional-level evaluative, analytical and planning experience related to Risk Analysis. REQUESTED SKILLS:
Knowledge of computer technology, networking, information security, and privacy
Ability to analyze data to develop technical and executive reports and dashboards highlighting trends and conveying recommendations
Ability to build and maintain collaborative working relationships with colleagues, managers, and stakeholders
Excellent written and verbal communication and presentation skills
Self-starter able to work independently with limited oversight and demonstrated attention to detail
Aware of information security requirements and frameworks (e.g. NIST SP 800-30 and 53, HIPAA, IRS Publication 1075) and prepared to become a subject matter expert in one or more of them
Proficiency with the Microsoft Office Suite (especially developing and maintaining reports using Excel)
Familiar with the purpose of information security risk assessments
Experience in promoting a culturally competent and diverse work environment
