L&I IT Security, Senior/Specialist

Company: State of Washington
Location: Olympia
Posted on: June 9, 2021

Job Description:

Our Mission: Keep Washington Safe and Working! Our Values: Customer Focus, One L&I, Respect, Diversity, Equity and Inclusion, Learning and Growth, Reliability.

Washington is America's Top State according to U.S. News (2021) and we provide one of the most competitive benefits packages in the nation. Here at the Department of Labor & Industries (L&I), we believe that your voice matters. We value our employees and offer flexible schedules that respect your work/life balance. In addition, L&I is a diverse state agency dedicated to the safety and health and security of Washington's 2.5 million workers. Learn more about L&I, the employer of choice here.

Please Note: This recruitment will remain open until filled. Application review will begin June 14, and the position may be filled at any time.

THE TEAM

The Information Technology Division (ITD) is an internal service organization responsible for providing information technology products and services in support of the Department of Labor & Industries agency's business priorities so that L&I can keep Washington Safe and Working. Information Technology Security Services (ITSS) mission is to protect the confidentiality, integrity and availability of agency-wide IT assets and data. ITSS provides agency-wide technology risk analysis to identify, prioritize and guide risk reduction activities. ITSS is responsible for providing agency-wide policies, standards and guidance for IT security to effectively manage enterprise wide IT security risk and meet agency, state and federal regulatory requirements.

THE ROLE

The IT Security Senior/Specialist position reports to the L&I Chief Information Security Officer (CISO) and is responsible for the ITSS Team. As a Senior Security Engineer you will provide expert technical and organizational leadership and guidance in the overall understanding of complex IT Security solutions to protect L&I mission critical, agency wide business applications and systems from cybersecurity threats.

Due to the COVID-19 pandemic, telework is currently expected for most positions, including this one. As L&I begins to allow for staff re-entry into the workforce, the incumbent of this position may be permitted to continue teleworking in accordance with L&I's telework policy. Telework is dependent upon business needs and supervisor approval. In the event that this incumbent would be needed to perform work activities in the office, the anticipated facility or field office (duty station) where the work is expected is located in Tumwater, Washington.

Security Monitoring/Response: Analyze, research and assess risk and determine appropriate response; provide guidance and requirements to IT system owners to ensure infected systems are cleaned; serve as the lead Subject Matter Expert providing incident response services.
Security Engineering Lead: Lead and mentor Journey level IT security staff in all aspects of the Threat and Vulnerability Management Solutions.
Security Consulting: Provide security consulting to L&I business areas, IT staff, WaTech, IT leadership and vendors; translate technical security concepts for customers and audiences; analyze business area and technical group proposals.
Manage Security Tools & Infrastructure: Act as firewall administrator; analyze requests for new access control lists; diagnose and resolve firewall related network problems; set requirements for other firewall technologies.
Project Management: Serve as IT Security expert for projects; manage work breakdown structures and coordinate work efforts with other teams.
And much more!

REQUIRED:

A Bachelor's degree in Information Technology, Information Assurance, Computer Science and seven years of IT experience working in a complex/enterprise IT environment across multiple disciplines (IT Security, network engineering, application security, database, risk management, project management, etc.)

AND Six years of IT Security experience with two or more of the following security technologies: vulnerability management, penetration testing, firewall management, Intrusion detection and prevention, application security, digital forensics, anti-virus /malware management, network security, desktop security, security assessments, security project requirements.

A combination of relevant education and experience may be considered in meeting this qualification.

OR

An Associate's degree in Information Technology, Information Assurance, Computer Science and nine years of IT experience working in a complex/enterprise IT environment across multiple disciplines (IT Security, network engineering, application security, database, risk management, project management, etc.)

AND six years of IT Security experience with two or more of the following security technologies: vulnerability management, penetration testing, firewall management, Intrusion detection and prevention, application security, digital forensics, anti-virus /malware management, network security, desktop security, security assessments, security project requirements.

OR

At least 11 years of IT experience* working in a complex/enterprise IT environment across multiple disciplines (IT Security, network engineering, application security, database, risk management, project management, etc.) with at least six years of experience with two or more of the following: vulnerability management, penetration testing, firewall management, Intrusion detection and prevention, application security, digital forensics, anti-virus / malware management, network security, desktop security, security assessments, security project requirements.

A combination of relevant education and experience may be considered in meeting this qualification.

Experience can be gained concurrently.

Additionally, qualified applicants must possess:

Three years of experience in assessing, monitoring and protecting IT systems and environments to identify and address opportunities for corrective action on systems that are vulnerable to cybersecurity threats.
Two years of experience advising and consulting with technical leadership, staff, vendors or contractors on IT security risks and technical security issues.

DESIRED:

Formal security training or certifications such as: Certified Information Security Professional (CISSP) Certified Ethical Hacker (CEH) Offensive Security Certified Professional (OSCP) College level IT Security or Information Assurance courses.
Three years of experience advising and consulting with technical leadership, staff, vendors or contractors on IT security risks and technical security issues.

Application Process:

The top candidates will be contacted directly to interview for this position. Because the selection will be based on information provided by you, it is in your best interest to identify the knowledge, skills and abilities that address the mandatory and desirable qualifications described in the announcement.

Please include the following documents with your application:

1. A letter of interest describing specific qualifications.

2. A current resume detailing applicable experience and education.

3. A list of at least three professional references with current telephone numbers.

Other Information:

Offer of hire is contingent upon completion of a background check that includes a criminal record history review.
Positions requiring travel must have a valid unrestricted driver's license and must be insured if driving a privately owned vehicle on state business.
This position is represented by the Washington Federation of State Employees (WFSE).
Candidates who are offered a job with L&I must possess work authorization which does not require sponsorship by the employer for a visa now or in the future.
The Department of Labor & Industries complies with the employment eligibility verification requirements of the federal Form, I-9. The selected candidate must be able to provide proof of identity and eligibility to work in the United States consistent with the requirements of that form on the first day of employment.
Please note: This announcement may be used to fill multiple positions.
Positions requiring skills assessments are administered using CodeSignal. Applicants who are selected to move forward in this hiring process will receive an email invitation within 3 weeks of your application being accepted. An applicant may complete the assessment when you are ready, but the invitation to complete their assessment will expire 5 days after this invitation was sent. Once you start the assessment, you will be required to complete it. You cannot start your assessment and then come back to it at a later time. Please look in your email inbox or spam as these invitations are sent by CodeSignal.

Applicants wishing to claim Veterans Preference should attach a copy of their DD-214 (Member 4 copy), NGB 22, or signed verification of service letter from the United States Department of Veterans Affairs to their application. Please blackout any personally identifiable data such as social security numbers. For further information, please contact us at Jobs@Lni.wa.gov

Diversity, Equity, and Inclusion Employer

Here at Labor and Industries our employees come from all walks of life as do we. We strive to hire great people from a wide variety of backgrounds. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

We believe in the importance of recognizing the value each of us contribute to the success of the mission of the agency. Having a diverse workforce is this agency's greatest resource of strength and knowledge. It is through the combination of talents and abilities that we can pursue finding effective measures on how we can provide the best customer service. We are committed to building a diverse and inclusive workplace for everyone and we strongly mean everyone.

The State of Washington is an equal opportunity employer. Persons with a disability who need assistance in the application process or testing process, or those needing this announcement in an alternative format, may call (360) 902-5700. TTY users should first call 711 to access the Washington Relay Service.

You are welcome to include the name and pronoun you would like to be referred to in your materials and we will honor this as you interact with our award-winning diverse and inclusive organization.

If you have any questions regarding this announcement, program, or the agency please contact Andrea Ballard at baap235@lni.wa.gov

Keywords: State of Washington, Olympia , L&I IT Security, Senior/Specialist, Other , Olympia, Washington