Information Systems Chief

Company: The Florida Legislature
Location: Tallahassee
Posted on: January 26, 2023

Job Description:

Florida Legislative Employment Information The Florida Legislature
Office of Legislative Information Technology ServicesJob TitleInformation Systems ChiefWorking TitleInformation Security ManagerGeneral SummaryThe Florida Legislature, Office of Legislative Information Technology Services (OLITS), is seeking an Information Security Manager (ISM). This position will report to the Chief Information Officer (CIO) and will focus on protecting and securing the network, data, servers, technology components, and applications supported by the OLITS. This position requires a strong technical background in application and/or network services and technologies; experience in the creation and enforcement of technology standards or policies; and experience with monitoring for and responding to security events.Essential Duties/Responsibilities

• Develop and maintain an information security plan, with emphasis on resiliency, recovery, and restoration of services, in support of the continuity of operations.
• Lead security incident response activities and participate in the full incident response lifecycle plan.
• Lead and/or participate in efforts to upgrade existing systems to meet evolving needs, including direction for the specification, purchase, and deployment of new security components, systems, and/or infrastructure.
• Monitor, manage, and evaluate emerging threats and establish guidelines for response; including recommendations on remediation strategies/solutions for vulnerabilities.
• Continuous review, monitoring, and reporting on the current technology landscape and services, with an eye on potential gaps or weaknesses, and create remediation plans as needed.
• Review new security technologies, tools, and services, and make recommendations to the CIO for use based on security, financial, and operational metrics.
• Create and maintain policies and standards that support business and technology goals and objectives, to protect the confidentiality, integrity, and availability of all information and data created, received, stored, and/or processed.
• Assess security controls, information systems, and business practices for violations of information security policies, standards, or regulatory requirements.
• Create and promote a strong security culture through training, outreach, and technical security consulting.
• Ensure contracts, solicitations, new systems, services, technology components, and implementations include appropriate security requirements.
• Maintain a Criminal Justice Information Services (CJIS) Certification.
• Perform other related duties as required.Knowledge, Skills and Abilities
  • Knowledge of the principles and practices of supervision and management.
  • Knowledge of security best practices for data, network, applications, and other components.
  • Knowledge of the National Institute of Standards and Technology (NIST) framework.
  • Knowledge of application development and web services.
  • Knowledge of data and databases.
  • Knowledge of Windows authentication.
  • Knowledge of network components and protocols.
  • Skill in troubleshooting and solving complex issues.
  • Skill in analysis, interpretation, and reporting of data.
  • Skill in clearly communicating technical information, both verbal and written.
  • Skill in formulating policies and procedures.
  • Ability to work on-site during normal business hours.
  • Ability to conduct meetings and make presentations.
  • Ability to lead people and direct program activities.
  • Ability to plan, prepare, and prioritize workload and program activities.
  • Ability to do short- and long-range program and project planning.
  • Ability to establish and maintain effective working relationships with others.Minimum QualificationsA bachelor's degree from an accredited college or university in computer science, management information systems, mathematics, or engineering and six years of progressively responsible information systems experience, two years of which must have been in a managerial or supervisory capacity.
    
    Progressively responsible information systems experience can substitute on a year-for-year basis for the required college education. Any combination of progressively responsible information systems experience and post-secondary training in disciplines as described above totaling ten years.Preferred QualificationsPreference will be given to applicants with extensive knowledge and work experience with the following:
    • Application programming across multiple languages.
    • Database administration and/or programming, across multiple platforms.
    • Configuration of servers, systems, and/or network.
    • Standards and policy creation, review, and enforcement.
    • Incident response, security monitoring and analysis, vulnerability management and risk assessment, threat hunting, penetration testing, cyber threat intelligence, and/or other cyber security roles.SalaryHiring salary commensurate with experience.
      The Legislature offers a competitive benefits package.Application DeadlineOpen until filled.Submission of ApplicationQualified applicants should send a completed legislative application and resume to:
      
      Office of Legislative Services
      Human Resources Office
      Re: OLITS - Information Security Manager
      111 W. Madison Street
      Room 701, Claude Pepper Building
      Tallahassee, FL 32399-1400Or email: OLSHRS@leg.state.fl.us Applications are available through the Florida Legislature's web site Online Sunshine and in Room 701 of the Claude Pepper Building.Accommodation for DisabilityIf an accommodation is needed for a disability, please notify Human Resources at (850) 488-6803.

Keywords: The Florida Legislature, Tallahassee , Information Systems Chief, IT / Software / Systems , Tallahassee, Florida