Manager Information Technology Services 2 Information Security - 9859

Manager Information Technology Services 2 Information Security - 9859

Under the direction of senior leadership within the Office of Information Technology Services, Chief Information Security Office, Cyber Command Center, the incumbent will lead a team responsible for the creation and maintenance of standard operating procedures (SOP) and playbooks for use in the triage and analysis of a wide variety of security events and functions within the NYSOC. This team will work closely with both security architects and analysts to ensure the SOPs developed are properly aligned with the SIEM/SOAR functions to provide the most accurate response possible. This team will also be responsible for delivering training to analysts on how to best utilize the SOPs and playbooks.

This position requires the incumbent to possess a solid understanding of the current cyber threat landscape, the tactics, techniques, tools, and procedures commonly leveraged, and the steps necessary to swiftly identify and contain a potential cyber threat. Additionally, this position requires an incumbent to act with a great deal of independence in alignment with agency and upper-level management strategic direction. Due to the nature of the work performed by the SOC, this position requires availability during off-shift hours to ensure appropriate response to security incidents or other critical activities as needed.

Specific duties include, but are not limited to:

• Direct and oversee the development and maintenance of standard operating procedures (SOP) and playbooks for use in the triage and analysis of a wide variety of security events and functions within the NYSOC.
• Serve as a subject matter expert on the analysis and response to a wide variety of security events received by the NYSOC.
• Lead and manage a team of analysts, performing a full range of supervisory duties.
• Work with internal and client ticketing and knowledge base systems for Incident and Problem tracking as well as procedures.
• Provide training, mentorship, and support to other NYSOC staff.
• Conduct research, analysis, and correlation across a wide variety of SOC processes, procedures, and use cases.
• Review cases escalated by SOC analysts to investigate, respond and remediate.
• Plan and recommend modifications or adjustments based on testing results or system environment.
• Identify new use cases and playbooks that need to be developed based on incident reviews.
• Provide guidance and input on active projects to help identify and resolve issues/problems to ensure successful outcomes are achieved.
• Perform the full range of supervisory responsibilities.

Minimum Qualifications Non-competitive: Eight years of information technology, cybersecurity, or information assurance experience, including two years at the supervisory level. Substitutions: A bachelor's or higher-level degree in any field including or supplemented by 15 semester credit hours in computer science or related field substitutes for three years of required experience; any bachelor's substitutes for two years of required experience. An associate degree with 15 semester credit hours in computer science or related field may substitute for one year of required experience. Candidates in a bachelor's degree program with at least 15 semester credit hours in computer science or related field may substitute such credits for one year of required experience. A master's degree or higher in computer science or related field substitutes for one year of required experience.

The Office of Information Technology Services is an equal opportunity employer, and we recognize that diversity in our workforce is critical to fulfilling our mission. We encourage all individuals with disabilities to apply.