State of Washington
Cybersecurity Officer (ITSecurity-Expert)
State of Washington, Olympia, Washington, United States, 98502
Salary:
$109,464.00 - $147,204.00 Annually
Location :
Thurston County - Olympia, WA
Job Type:
Exempt
Remote Employment:
Flexible/Hybrid
Job Number:
2024-10806
Department:
Office of the State Treasurer
Opening Date:
09/20/2024
Closing Date:
Continuous
Salary Information:
The high end of the salary range, Step M is typically a longevity step
Description
First Review of Applications is Friday, October 18, 2024
About us:The Office of the State Treasurer (OST) is the bank for the Washington state government. OST provides banking, investment, debt issuance, and accounting services for state government and plays a major role in providing financial services to local government. The agency has a staff of approximately 70 employees committed to promoting and maintaining public trust and confidence through consistent application of responsible financial practices, quality customer service, and continuous efforts to improve agency efficiency and productivity.
Opportunity:The Office of the State Treasurer is seeking a dedicated Cybersecurity Officer (CISO) to establish and implement our cybersecurity strategy. As the CISO, you will report directly to the Director of Information Services (CIO). You will oversee developing and implementing comprehensive security policies and procedures, ensuring the protection of our information assets from cyber security threats. You will oversee risk management, incident response, and compliance with regulatory requirements while increasing cybersecurity awareness across the organization. Additionally, you will collaborate with the leadership team and IT management team to align security initiatives with business operations and goals.
As the CISO, your key functions include risk assessment, implementing security protocols and policies, managing security incident responses, and ensuring compliance with regulations. You will also educate employees on cybersecurity best practices and coordinate with other executives to align security with business objectives.
What we are looking for:The ideal candidate will be highly strategic, detail-oriented, and possess a strong background in information security with experience in enterprise architecture. In addition, they will have excellent communication skills, along with a proven track record of implementing effective cybersecurity measures and protocols while collaborating and mentoring IT professionals.Duties
Develop and implement a comprehensive cybersecurity strategy that align with the company's business objectives.Oversee the creation of a security policy and enforcement of procedures to protect information assets.Conduct information security risk assessments to identify vulnerabilities and develop mitigation plans.Lead incident response efforts to quickly address and recover from any security incident.Ensure compliance with industry-relevant regulations and standards.Train employees in security awareness.Collaborate with other executives to integrate cybersecurity measures with overall business strategies.Establish metrics and reporting mechanisms to monitor the effectiveness of security initiatives.Evaluate and implement new security technologies and tools to enhance the company's defenses.Mentor and train ISD staff on best practices and implementing security measures and protocols.Maintain relationships with external partners, security professionals, and vendors to ensure robust security measures.Provide regular updates to the CIO and Executives on the state of the agency's security posture.Develop and test business continuity and disaster recovery plans.Manage third-party information security risk by assessing and monitoring vendor security practices.Stay abreast of emerging threats and industry trends to continuously evolve the security strategy.Qualifications
Any combination of education and/or work experience that equal a total of 10 years,
with at least five of those years working full-time in IT security in two or more of the following domains:
Security and Risk Management (Security, Risk, Compliance, Law, Regulations, and Business Continuity)Asset Security (Protecting Security of Assets)Security Engineering (Engineering and Management of Security)Communication and Network Security (Designing and Protecting Network Security)Identity and Access Management (Controlling Access and Managing Identity)Security Assessment and Testing (Designing, Performing, and Analyzing Security Testing)Security Operations (Foundational Concepts, Investigations, Incident Management, and Disaster Recovery) Software Development Security (Understanding, Applying, and Enforcing Software Security)Education would usually consist of a degree in computer science or closely related field.
Experience operating and analyzing logging and monitoring systems, antivirus solutions, and security configurations.
Experience with recommending and/or writing Information Technology policies. Experience training on IT policy is a plus.
Preferred Education, Experience, and Competencies:
Ability to obtain any of the following certifications: Security Certification (GIAC Security Essentials, Certified Information Systems Security Professional CISSP, Certified Information Security Manager CISM or equivalent)Experience working in cloud-based environments such as AWS and Azure.Working knowledge of Washington State Security Standards and Office of the Chief Information Office policies.Throughout our selection processes, we will also evaluate candidates for knowledge, skills, abilities, behaviors and capacity for effective leadership that aligns with our agency cultureSupplemental Information
How to apply:In addition to completing the online application, applicants must attach to their profile a
letter of interest
explaining how you meet the qualifications of this position and a
current resume .
A
background check
including criminal record history will be conducted. Information from the background check will not necessarily preclude employment but will be considered in determining the candidates' suitability and competence to perform in the position.
***T
his announcement will remain open until the position is filled.***
Location, Hours, Salary & Benefits:The OST takes pride in being a family-friendly and healthy work environment. The OST operates on a standard work week from Monday through Friday with the core business hours of 8:00 am to 5:00 pm. The duty station for this position is in Olympia, Washington, within the Helen Sommers Building located on the Capitol Campus.
All OST employees are required to work in the office a minimum of two days per month. The remainder of your work schedule is determined by your position requirements, most of our staff maintain a hybrid remote working schedule. This position will require you to work in the office regularly during the first 6 months of hire; this position is eligible for telework. The incumbent will work with their supervisor to identify an appropriate work schedule and balance between remote and in person work based on operational need and employee preference.
Salary:The annual salary range for this position is $109,464 - 147,204 with step M being a longevity step.
Benefits:Washington State offers a competitive benefits package. Beyond the traditional benefits such as health insurance, life insurance and retirement benefits, we offer flex spending accounts, dependent care assistance, deferred compensation, 12 paid holidays, paid vacation, and sick leave. Click on the "Benefits" tab near the top of the page to learn more.
Equal Employment Opportunity (EEOC):OST is an equal opportunity employer; committed to providing employees with a work environment free of discrimination and harassment. OST provides equal access and opportunity to anyone who qualifies regardless of immigration status, on the bases of race, color, religion, national origin, sex (including pregnancy and related conditions, sexual orientation, or gender identity), age (40 and older), disability, genetic information (including employer requests for, or purchase, use, or disclosure of genetic tests, genetic services, or family medical history) retaliation for filing a charge, reasonably opposing discrimination, or participating in a discrimination lawsuit, investigation, or proceeding.
Recruitment access, assistance and contact information:For questions about this recruitment or for applicants in need of assistance during the application process, please contact Nadine Sordahl at (360) 902-8919 or via email to nadine.sordahl@tre.wa.gov. TTY users should first call 711 to access the Washington Relay Service.
More than Just a Paycheck!Employee benefits are not just about the kind of services you get, they are also about how much you may have to pay out of pocket. Washington State offers one of the most competitive benefits packages in the nation.
We understand that your life revolves around more than just your career. Like everyone, your first priority is ensuring that you and your family will maintain health and financial security. That's why choice is a key component of our benefits package. We have a selection of health and retirement plans, paid leave, staff training and other compensation benefits that you can mix and match to meet your current and future needs.
Read about our benefits:The following information describes typical benefits available for full-time employees who are expected to work more than six months. Actual benefits may vary by appointment type or be prorated for other than full-time work (e.g. part-time); view the job posting for benefits details for job types other than full-time.
Note:
If the position offers benefits which differ from the following, the job posting should include the specific benefits.
Insurance BenefitsEmployees and their families are covered by medical (including vision), dental and basic life insurance. There are multiple medical plans with affordable monthly premiums that offer coverage throughout the state.
Staff are eligible to enroll each year in a medical flexible spending account which enables them to use tax-deferred dollars toward their health care expenses. Employees are also covered by basic life and long-term disability insurance, with the option to purchase additional coverage amounts.
To view premium rates, coverage choice in your area and how to enroll, please visit the Public Employees Benefits Board (PEBB) website. The Washington Wellness program from the Health Care Authority works with PEBB to support our workplace wellness programs.
Dependent care assistance allows the employee to save pre-tax dollars for a child or elder care expenses.
Other insurance coverage for auto, boat, home, and renter insurance is available through payroll deduction.
The Washington State Employee Assistance Program promotes the health and well-being of employees.
Retirement and Deferred CompensationState Employees are members of the Washington Public Employees' Retirement System (PERS). New employees have the option of two employer contributed retirement programs. For additional information, check out the Department of Retirement Systems' web site.
Employees also have the ability to participate in the Deferred Compensation Program (DCP). This is a supplemental retirement savings program (similar to an IRA) that allows you control over the amount of pre-tax salary dollars you defer as well as the flexibility to choose between multiple investment options.
Social SecurityAll state employees are covered by the federal Social Security and Medicare systems. The state and the employee pay an equal amount into the system.
Public Service Loan ForgivenessIf you are employed by a government or not-for-profit organization, and meet the qualifying criteria, you may be eligible to receive student loan forgiveness under the Public Service Loan Forgiveness Program.
HolidaysFull-time and part-time employees are entitled to paid holidays and one paid personal holiday per calendar year.
Note:
Employees who are members of certain Unions may be entitled to additional personal leave day(s), please refer to position specific Collective Bargaining Agreements for more information.
Full-time employees who work full monthly schedules qualify for holiday compensation if they are employed before the holiday and are in pay status for at least 80 nonovertime hours during the month of the holiday; or for the entire work shift preceding the holiday.
Part-time employees who are in pay status during the month of the holiday qualify for the holiday on a pro-rata basis. Compensation for holidays (including personal holiday) will be proportionate to the number of hours in pay status in the month to that required for full-time employment, excluding all holiday hours. Pay status includes hours worked and time on paid leave.
Sick LeaveFull-time employees earn eight hours of sick leave per month. Overtime eligible employees who are in pay status for less than 80 hours per month, earn a monthly proportionate to the number of hours in pay status, in the month to that required for full-time employment. Overtime exempt employees who are in pay status for less than 80 hours per month do not earn a monthly accrual of sick leave.
Sick leave accruals for part-time employees will be proportionate to the number of hours in pay status, in the month to that required for full-time employment. Pay status includes hours worked, time on paid leave and paid holiday.
Vacation (Annual Leave)Full-time employees accrue vacation leave at the rates specified in (1) or the applicable collective bargaining agreement (CBA). Full-time employees who are in pay status for less than 80 nonovertime hours in a month do not earn a monthly accrual of vacation leave.
Part-time employees accrue vacation leave hours in accordance with (1) or the applicable collective bargaining agreement (CBA) on a pro rata basis. Vacation leave accrual will be proportionate to the number of hours in pay status, in the month to that required for full-time employment.
Pay status includes hours worked, time on paid leave and paid holiday.
As provided in , an employer may authorize a lump-sum accrual of vacation leave or accelerate the vacation leave accrual rate to support the recruitment and/or retention of a candidate or employee for a Washington Management Service position. Vacation leave accrual rates may only be accelerated using the rates established WAC 357-31-165.
Note:
Most agencies follow the civil service rules covering leave and holidays for
exempt
employees even though there is no requirement for them to do so. However, agencies are required to adhere to the applicable RCWs pertaining holidays and leave.
Military LeaveWashington State supports members of the armed forces with 21 days paid military leave per year.
Bereavement LeaveMost employees whose family member or household member dies, are entitled to three (3) days of paid bereavement leave. In addition, the employer may approve other available leave types for the purpose of bereavement leave.
Additional LeaveLeave Sharing
Family and Medical Leave Act (FMLA)Leave Without Pay
Please visit the State HR Website for more detailed information regarding benefits.
Updated 12-31-2022
$109,464.00 - $147,204.00 Annually
Location :
Thurston County - Olympia, WA
Job Type:
Exempt
Remote Employment:
Flexible/Hybrid
Job Number:
2024-10806
Department:
Office of the State Treasurer
Opening Date:
09/20/2024
Closing Date:
Continuous
Salary Information:
The high end of the salary range, Step M is typically a longevity step
Description
First Review of Applications is Friday, October 18, 2024
About us:The Office of the State Treasurer (OST) is the bank for the Washington state government. OST provides banking, investment, debt issuance, and accounting services for state government and plays a major role in providing financial services to local government. The agency has a staff of approximately 70 employees committed to promoting and maintaining public trust and confidence through consistent application of responsible financial practices, quality customer service, and continuous efforts to improve agency efficiency and productivity.
Opportunity:The Office of the State Treasurer is seeking a dedicated Cybersecurity Officer (CISO) to establish and implement our cybersecurity strategy. As the CISO, you will report directly to the Director of Information Services (CIO). You will oversee developing and implementing comprehensive security policies and procedures, ensuring the protection of our information assets from cyber security threats. You will oversee risk management, incident response, and compliance with regulatory requirements while increasing cybersecurity awareness across the organization. Additionally, you will collaborate with the leadership team and IT management team to align security initiatives with business operations and goals.
As the CISO, your key functions include risk assessment, implementing security protocols and policies, managing security incident responses, and ensuring compliance with regulations. You will also educate employees on cybersecurity best practices and coordinate with other executives to align security with business objectives.
What we are looking for:The ideal candidate will be highly strategic, detail-oriented, and possess a strong background in information security with experience in enterprise architecture. In addition, they will have excellent communication skills, along with a proven track record of implementing effective cybersecurity measures and protocols while collaborating and mentoring IT professionals.Duties
Develop and implement a comprehensive cybersecurity strategy that align with the company's business objectives.Oversee the creation of a security policy and enforcement of procedures to protect information assets.Conduct information security risk assessments to identify vulnerabilities and develop mitigation plans.Lead incident response efforts to quickly address and recover from any security incident.Ensure compliance with industry-relevant regulations and standards.Train employees in security awareness.Collaborate with other executives to integrate cybersecurity measures with overall business strategies.Establish metrics and reporting mechanisms to monitor the effectiveness of security initiatives.Evaluate and implement new security technologies and tools to enhance the company's defenses.Mentor and train ISD staff on best practices and implementing security measures and protocols.Maintain relationships with external partners, security professionals, and vendors to ensure robust security measures.Provide regular updates to the CIO and Executives on the state of the agency's security posture.Develop and test business continuity and disaster recovery plans.Manage third-party information security risk by assessing and monitoring vendor security practices.Stay abreast of emerging threats and industry trends to continuously evolve the security strategy.Qualifications
Any combination of education and/or work experience that equal a total of 10 years,
with at least five of those years working full-time in IT security in two or more of the following domains:
Security and Risk Management (Security, Risk, Compliance, Law, Regulations, and Business Continuity)Asset Security (Protecting Security of Assets)Security Engineering (Engineering and Management of Security)Communication and Network Security (Designing and Protecting Network Security)Identity and Access Management (Controlling Access and Managing Identity)Security Assessment and Testing (Designing, Performing, and Analyzing Security Testing)Security Operations (Foundational Concepts, Investigations, Incident Management, and Disaster Recovery) Software Development Security (Understanding, Applying, and Enforcing Software Security)Education would usually consist of a degree in computer science or closely related field.
Experience operating and analyzing logging and monitoring systems, antivirus solutions, and security configurations.
Experience with recommending and/or writing Information Technology policies. Experience training on IT policy is a plus.
Preferred Education, Experience, and Competencies:
Ability to obtain any of the following certifications: Security Certification (GIAC Security Essentials, Certified Information Systems Security Professional CISSP, Certified Information Security Manager CISM or equivalent)Experience working in cloud-based environments such as AWS and Azure.Working knowledge of Washington State Security Standards and Office of the Chief Information Office policies.Throughout our selection processes, we will also evaluate candidates for knowledge, skills, abilities, behaviors and capacity for effective leadership that aligns with our agency cultureSupplemental Information
How to apply:In addition to completing the online application, applicants must attach to their profile a
letter of interest
explaining how you meet the qualifications of this position and a
current resume .
A
background check
including criminal record history will be conducted. Information from the background check will not necessarily preclude employment but will be considered in determining the candidates' suitability and competence to perform in the position.
***T
his announcement will remain open until the position is filled.***
Location, Hours, Salary & Benefits:The OST takes pride in being a family-friendly and healthy work environment. The OST operates on a standard work week from Monday through Friday with the core business hours of 8:00 am to 5:00 pm. The duty station for this position is in Olympia, Washington, within the Helen Sommers Building located on the Capitol Campus.
All OST employees are required to work in the office a minimum of two days per month. The remainder of your work schedule is determined by your position requirements, most of our staff maintain a hybrid remote working schedule. This position will require you to work in the office regularly during the first 6 months of hire; this position is eligible for telework. The incumbent will work with their supervisor to identify an appropriate work schedule and balance between remote and in person work based on operational need and employee preference.
Salary:The annual salary range for this position is $109,464 - 147,204 with step M being a longevity step.
Benefits:Washington State offers a competitive benefits package. Beyond the traditional benefits such as health insurance, life insurance and retirement benefits, we offer flex spending accounts, dependent care assistance, deferred compensation, 12 paid holidays, paid vacation, and sick leave. Click on the "Benefits" tab near the top of the page to learn more.
Equal Employment Opportunity (EEOC):OST is an equal opportunity employer; committed to providing employees with a work environment free of discrimination and harassment. OST provides equal access and opportunity to anyone who qualifies regardless of immigration status, on the bases of race, color, religion, national origin, sex (including pregnancy and related conditions, sexual orientation, or gender identity), age (40 and older), disability, genetic information (including employer requests for, or purchase, use, or disclosure of genetic tests, genetic services, or family medical history) retaliation for filing a charge, reasonably opposing discrimination, or participating in a discrimination lawsuit, investigation, or proceeding.
Recruitment access, assistance and contact information:For questions about this recruitment or for applicants in need of assistance during the application process, please contact Nadine Sordahl at (360) 902-8919 or via email to nadine.sordahl@tre.wa.gov. TTY users should first call 711 to access the Washington Relay Service.
More than Just a Paycheck!Employee benefits are not just about the kind of services you get, they are also about how much you may have to pay out of pocket. Washington State offers one of the most competitive benefits packages in the nation.
We understand that your life revolves around more than just your career. Like everyone, your first priority is ensuring that you and your family will maintain health and financial security. That's why choice is a key component of our benefits package. We have a selection of health and retirement plans, paid leave, staff training and other compensation benefits that you can mix and match to meet your current and future needs.
Read about our benefits:The following information describes typical benefits available for full-time employees who are expected to work more than six months. Actual benefits may vary by appointment type or be prorated for other than full-time work (e.g. part-time); view the job posting for benefits details for job types other than full-time.
Note:
If the position offers benefits which differ from the following, the job posting should include the specific benefits.
Insurance BenefitsEmployees and their families are covered by medical (including vision), dental and basic life insurance. There are multiple medical plans with affordable monthly premiums that offer coverage throughout the state.
Staff are eligible to enroll each year in a medical flexible spending account which enables them to use tax-deferred dollars toward their health care expenses. Employees are also covered by basic life and long-term disability insurance, with the option to purchase additional coverage amounts.
To view premium rates, coverage choice in your area and how to enroll, please visit the Public Employees Benefits Board (PEBB) website. The Washington Wellness program from the Health Care Authority works with PEBB to support our workplace wellness programs.
Dependent care assistance allows the employee to save pre-tax dollars for a child or elder care expenses.
Other insurance coverage for auto, boat, home, and renter insurance is available through payroll deduction.
The Washington State Employee Assistance Program promotes the health and well-being of employees.
Retirement and Deferred CompensationState Employees are members of the Washington Public Employees' Retirement System (PERS). New employees have the option of two employer contributed retirement programs. For additional information, check out the Department of Retirement Systems' web site.
Employees also have the ability to participate in the Deferred Compensation Program (DCP). This is a supplemental retirement savings program (similar to an IRA) that allows you control over the amount of pre-tax salary dollars you defer as well as the flexibility to choose between multiple investment options.
Social SecurityAll state employees are covered by the federal Social Security and Medicare systems. The state and the employee pay an equal amount into the system.
Public Service Loan ForgivenessIf you are employed by a government or not-for-profit organization, and meet the qualifying criteria, you may be eligible to receive student loan forgiveness under the Public Service Loan Forgiveness Program.
HolidaysFull-time and part-time employees are entitled to paid holidays and one paid personal holiday per calendar year.
Note:
Employees who are members of certain Unions may be entitled to additional personal leave day(s), please refer to position specific Collective Bargaining Agreements for more information.
Full-time employees who work full monthly schedules qualify for holiday compensation if they are employed before the holiday and are in pay status for at least 80 nonovertime hours during the month of the holiday; or for the entire work shift preceding the holiday.
Part-time employees who are in pay status during the month of the holiday qualify for the holiday on a pro-rata basis. Compensation for holidays (including personal holiday) will be proportionate to the number of hours in pay status in the month to that required for full-time employment, excluding all holiday hours. Pay status includes hours worked and time on paid leave.
Sick LeaveFull-time employees earn eight hours of sick leave per month. Overtime eligible employees who are in pay status for less than 80 hours per month, earn a monthly proportionate to the number of hours in pay status, in the month to that required for full-time employment. Overtime exempt employees who are in pay status for less than 80 hours per month do not earn a monthly accrual of sick leave.
Sick leave accruals for part-time employees will be proportionate to the number of hours in pay status, in the month to that required for full-time employment. Pay status includes hours worked, time on paid leave and paid holiday.
Vacation (Annual Leave)Full-time employees accrue vacation leave at the rates specified in (1) or the applicable collective bargaining agreement (CBA). Full-time employees who are in pay status for less than 80 nonovertime hours in a month do not earn a monthly accrual of vacation leave.
Part-time employees accrue vacation leave hours in accordance with (1) or the applicable collective bargaining agreement (CBA) on a pro rata basis. Vacation leave accrual will be proportionate to the number of hours in pay status, in the month to that required for full-time employment.
Pay status includes hours worked, time on paid leave and paid holiday.
As provided in , an employer may authorize a lump-sum accrual of vacation leave or accelerate the vacation leave accrual rate to support the recruitment and/or retention of a candidate or employee for a Washington Management Service position. Vacation leave accrual rates may only be accelerated using the rates established WAC 357-31-165.
Note:
Most agencies follow the civil service rules covering leave and holidays for
exempt
employees even though there is no requirement for them to do so. However, agencies are required to adhere to the applicable RCWs pertaining holidays and leave.
Military LeaveWashington State supports members of the armed forces with 21 days paid military leave per year.
Bereavement LeaveMost employees whose family member or household member dies, are entitled to three (3) days of paid bereavement leave. In addition, the employer may approve other available leave types for the purpose of bereavement leave.
Additional LeaveLeave Sharing
Family and Medical Leave Act (FMLA)Leave Without Pay
Please visit the State HR Website for more detailed information regarding benefits.
Updated 12-31-2022