Job Description and Duties
Under the general direction of the Chief Information Officer (CIO), the Information Security Officer (ISO) assumes leadership of the Information Security Engineering Team. In this role, the ISO is entrusted with the responsibility of safeguarding devices, software, facilities, and infrastructure. Through close collaboration with the IT department, ISO oversee the implementation, continuous monitoring, and maintenance essential for ensuring a comprehensive cybersecurity framework. Furthermore, the ISO engages in collaborative efforts with IT and Security Operations, Security Engineering Teams, and Compliance to ensure the prompt management of patches and the reinforcement of system security. ISO also establish coordination channels with both internal and external stakeholders, including Legal, HR, and Law Enforcement, during incident response and forensic investigations. Ultimately, the ISO works collaboratively with senior management and stakeholders to align cybersecurity objectives with the overarching business goals.
This position is eligible for teleworking under Government Code 14200 for eligible applicants residing in California, but some in-office work may be required.
You will find additional information about the job in the Duty Statement.
You will find the Minimum Requirements in the Class Specification.
- INFORMATION TECHNOLOGY MANAGER I
- Job Application Package Checklist
- Duty Statement
Job Code #: JC-400737
Position #(s): 297-001-1405-001
Working Title: Information Security Officer
Classification: INFORMATION TECHNOLOGY MANAGER I
$8,591.00 - $11,512.00
# of Positions: 1
Work Location: Sacramento County
Job Type: Permanent, Full Time
Facility: Information Technology Unit
To safeguard the integrity of the State’s correctional system by providing oversight and transparency through monitoring, reporting, and recommending improvements to the California Department of Corrections and Rehabilitation.
The Office of the Inspector General is excluded from bargaining unit contracts.
Department Website: https://www.oig.ca.gov
Proof of California residency will be required if teleworking prior to appointment.
Completed applications and all required documents must be received or postmarked by the Final Filing Date in order to be considered. Dates printed on Mobile Bar Codes, such as the Quick Response (QR) Codes available at the USPS, are not considered Postmark dates for the purpose of determining timely filing of an application.
Final Filing Date: 11/27/2023
Who May Apply
Individuals who are currently in the classification, eligible for lateral transfer, eligible for reinstatement, have list eligibility, are in the process of obtaining list eligibility, or have SROA and/or Surplus eligibility (please attach your letter, if available). SROA and Surplus candidates are given priority; therefore, individuals with other eligibility may be considered in the event no SROA or Surplus candidates apply.
Applications will be screened and only the most qualified applicants will be selected to move forward in the selection process. Applicants must meet the Minimum Qualifications stated in the Classification Specification(s).
How To Apply
Application Packages may be submitted electronically through your CalCareer Account at www.CalCareers.ca.gov.
Required Application Package Documents
The following items are required to be submitted with your application. Applicants who do not submit the required items timely may not be considered for this job:
- Current version of the State Examination/Employment Application STD Form 678 (when not applying electronically), or the Electronic State Employment Application through your Applicant Account at www.CalCareers.ca.gov. All Experience and Education relating to the Minimum Qualifications listed on the Classification Specification should be included to demonstrate how you meet the Minimum Qualifications for the position.
- Resume is optional.
- School Transcripts
- Statement of Qualifications - Please see the SOQ section of the advertisement for more information.
Applicants requiring reasonable accommodations for the hiring interview process must request the necessary accommodations if scheduled for a hiring interview. The request should be made at the time of contact to schedule the interview. Questions regarding reasonable accommodations may be directed to the EEO contact listed on this job posting.
- Experience: High degree of experience and knowledge in the practices, principles, and techniques of cyber security operations, implementation, and security incident response, and demonstrated experience in collaboratively implementing IT security best practices.
- Technical Expertise: Extensive knowledge and experience with industry standard cybersecurity compliance requirements, especially the National Institute of Standards and Technology (NIST) Section 800-53. Understand the standards, guidelines and best practices for cybersecurity and their practical application from a variety of sources including industry, Federal and State government standards and statutory/legal requirements. Expertise across a range of security technologies, including intrusion detection systems, intrusion prevention systems, vulnerability scanning tools, encryption solutions, email security, etc. Proven track record in performing security assessments and audits to uncover vulnerabilities, identify weaknesses, and pinpoint opportunities for enhancement.
- Security Certifications: Possess one or more of the following desired certifications. Certified Information Security Systems Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), Certified Information Privacy Professional (CIPP), Certified Cloud Security Professional (CCSP), Certified Information Systems Auditor (CISA), Certified Information Systems Security Officer (CISSO) or other similar credentials.
- Communication Skills: Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and nontechnical audiences at various hierarchical levels.
- Leadership Skills: Strong leadership skills, including the ability to mentor, lead, guide, train, nurture, monitor, and motivate staff.
- Strategic Thinking: Ability to think strategically, plan for the future, and guide the team towards the long-term goals of the organization.
- Continuous Learning: Ability to have a mindset of continuous learning and a willingness to adapt to changing technologies and trends.
Benefit information can be found on the CalHR website and the CalPERS website.
In addition, the OIG offers employees flexible work schedules, free parking, and free electric vehicle charging (charging stations located at our Sacramento office only). Our offices are located near public transit, shopping, and an array of food options.
The Human Resources Contact is available to answer questions regarding the position or application process.
Department Website: https://www.oig.ca.gov
Human Resources Contact:
Please direct requests for Reasonable Accommodations to the interview scheduler at the time the interview is being scheduled. You may direct any additional questions regarding Reasonable Accommodations or Equal Employment Opportunity for this position(s) to the Department's EEO Office.
California Relay Service: 1-800-735-2929 (TTY), 1-800-735-2922 (Voice) TTY is a Telecommunications Device for the Deaf, and is reachable only from phones equipped with a TTY Device.
Statement of Qualifications
All interested applicants are required to submit a Statement of Qualifications (SOQ).
The SOQ should be typed in a legible 12-point font, be no more than two pages in length; and should include your name and job control number. Responses do not need to include the question but must be numbered in the same order. Applications without a SOQ WILL NOT BE CONSIDERED.
- Share your experience in assisting an organization in meeting cybersecurity framework or standard compliance. Please elaborate on any challenges encountered and the strategies employed to address them successfully.
- Elaborate on your experience in mentoring, nurturing, and guiding cybersecurity professionals. Share insights on how you leverage your expertise to support others in expanding their knowledge and skills, and what positive outcomes have resulted from your efforts?
- Share your background in Incident Response and Incident Management, especially if you have expertise in responding to cybersecurity incidents.
Equal Opportunity Employer
The State of California is an equal opportunity employer to all, regardless of age, ancestry, color, disability (mental and physical), exercising the right to family care and medical leave, gender, gender expression, gender identity, genetic information, marital status, medical condition, military or veteran status, national origin, political affiliation, race, religious creed, sex (includes pregnancy, childbirth, breastfeeding and related medical conditions), and sexual orientation.
It is an objective of the State of California to achieve a drug-free work place. Any applicant for state employment will be expected to behave in accordance with this objective because the use of illegal drugs is inconsistent with the law of the State, the rules governing Civil Service, and the special trust placed in public servants.