Information Technology Specialist 2 - Albany, United States - State Comptroller, Office of the

State Comptroller, Office of the

Verified Company

Albany, United States

3 weeks ago

Posted by:

Mark Lane

beBee recruiter

Description

Minimum Qualifications

Non-competitive Qualifications:
**Experience solely in information security or information assurance may substitute for the general information technology experience.

Duties Description

Perform security event monitoring and network traffic analysis using a Security Information and Event Management (SIEM) system and Microsoft Defender for Cloud Apps.
Prioritize and differentiate between potential security events and false positives.
Escalate priority security events to the Computer Security Incident Response Team (CSIRT) per standard operating procedures.
Assist with the ongoing maintenance of the SIEM technology including, but not limited to, daily/weekly checklists and identifying and resolving issues.
Research current vulnerabilities, attacks, and analysis techniques.
Research current vulnerabilities, attacks, and analysis techniques.
Perform incident handling activities to assist with the response to security incidents.
Perform incident response activities including, but not limited to, investigating security incidents, performing threat analysis, and providing guidance/recommendations.
Perform proactive incident response activities to detect potential security incidents.
Research new digital forensic and incident response tools, techniques, and methodologies.
Perform and continuously improve proactive techniques to identify security events within the IT infrastructure.
Assist with the vulnerability management process.
Perform compliance activities for the vulnerability management process.
Perform analysis and provide guidance on vulnerabilities disclosures, vulnerabilities reports, and internal assessments.
Communicate exposed vulnerabilities to assist with proactive investigative activities to verify if any exposed vulnerabilities were taken advantage of by attackers.
Review and perform analysis on vulnerability scanning results.
Perform security compliance reviews and assessments.
Write security articles related to issues important to OSC.
Research security best practices for articles to include on the Information Security Office (ISO) website.

Additional Comments

Knowledge, Skills, and Abilities:

Working knowledge of:
Networking, routers, firewalls, and operating systems.
Ability to maintain sensitive and confidential information.
Excellent verbal and written communication skills, including the ability to clearly articulate information technology and information security concepts.
Strong analytical thinker with excellent troubleshooting and problemsolving skills.

Telecommuting:

The Office of the New York State Comptroller (OSC) supports telecommuting where it is reasonable to do so based upon the agency's mission and operational needs.

Generally, employees new to OSC will be restricted from telecommuting for at least 8 calendar weeks.

After the initial 8 calendar week restriction, if any employee's duties and work performance are aligned with telecommuting they may be allowed to do so.

Upon approval to telecommute, OSC employees may telecommute up to 5 days per pay period.

Reasonable Accommodation:

Equal Opportunity Employment:
The Office of the NYS Comptroller values a workforce with a broad, diverse range of backgrounds and perspectives.

All employees are expected to contribute to a professional environment focused on self-evaluation and improvement, as well as acceptance and support of coworkers.

Some positions may require additional credentials or a background check to verify your identity.