Title: Information Security Officer - Director's Office - CF051
State Role Title: Info Technology Specialist III
Hiring Range: $120,000 - $140,000
Pay Band: 6
Agency: Department of Forensic Science
Agency Website: https://dfs.virginia.gov/
Recruitment Type: General Public - G
Job Duties
The Virginia Department of Forensic Science has recently moved to a new, state-of-the-art facility in Hanover County.
Join our team as an Information Security Officer and play a vital role in safeguarding the critical information and technology systems that support public safety, forensic science, and the justice system. The Department of Forensic Science (DFS) is seeking an Information Security Officer (ISO) to lead the agency’s Information Security Program and ensure compliance with Virginia Information Technologies Agency (VITA) security standards. Reporting directly to the Agency Director, the ISO collaborates with agency leadership, IT staff, and external partners to protect systems essential to agency operations.
The ISO is responsible for developing and maintaining DFS information security policies and standards; managing system classifications, risk assessments, security exceptions, and required documentation; and administering the IT Security Audit Program. The ISO serves as the primary liaison to the Commonwealth’s Chief Information Security Officer (CISO), VITA officials, auditors, and external partners, and maintains the required annual ISO certification.
Key responsibilities include overseeing IT infrastructure security, vulnerability management, incident response, and continuity and disaster recovery planning. The ISO designs and implements internal controls and procedures aligned with evolving technologies, statutes, regulations, and VITA policies. Additional responsibilities include managing the Security Awareness and Training Program for staff, contractors, and IT service providers; advising leadership on security risks and compliance obligations; supporting the Systems Development Lifecycle (SDLC) by ensuring IT security is integrated into system planning and development; and serving as the agency’s eVA (the Commonwealth’s electronic procurement system) Security Officer.
Telework may be available up to two days per week after completion of agency training and orientation.
The ISO uses DFS and VITA resources to actively monitor the agency’s security posture. Responsibilities also include reviewing and reporting findings from VITA vulnerability scans and expanding monitoring efforts using new VITA-provided tools for server, network, and firewall logging. As VITA deploys enterprise logging and monitoring platforms such as Splunk statewide, the ISO will incorporate these tools into DFS security monitoring to provide real-time awareness of potential threats to sensitive systems.
If you are ready to apply your expertise to protect the integrity of forensic data and the systems that support public safety, we encourage you to apply!
Minimum Qualifications
• Experience developing, implementing, and monitoring information security policies, standards, and procedures
• Experience evaluating and monitoring IT environments for compliance with information security architecture, policies, and standards
• Experience managing or supporting a comprehensive information security program
• Experience in application security, contingency planning, IT risk management and governance, incident management, information security reviews, and security awareness training
• Experience conducting risk assessments and audits, implementing security controls and compliance, and executing security incident response
• Strong project management skills with the ability to prioritize tasks, meet deadlines, and manage multiple concurrent activities
• Ability to effectively communicate complex technical information verbally and in writing to diverse audiences and multiple levels of management
• Ability to interpret technology and security standards and ensure agency compliance
• Ability to implement and validate appropriate controls for IT applications and information resources
• Ability to work in a fast-paced environment and quickly acquire new knowledge or skills to meet organizational needs
• Must obtain and maintain the Commonwealth of Virginia (COV) ISO Certification within the first year of employment, in accordance with VITA requirements, or hold an equivalent professional information security certification such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Systems Auditor (CISA)
Additional Considerations
• Current COV Information Security Officer (ISO) Certification
• Possession of a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Systems Auditor (CISA) or equivalent
• Prior ISO experience in a government environment, ideally within the Commonwealth of Virginia
• Knowledge of VITA and COV IT security policies, standards, and requirements
• Experience using log aggregation or SIEM tools such as Splunk for security monitoring and analysis
• Experience supporting IT security requirements during system development, upgrades, and technology procurement processes
Special Instructions
You will be provided a confirmation of receipt when your application and/or résumé is submitted successfully. Please refer to “Your Application” in your account to check the status of your application for this position.
All applications must be submitted electronically through this website by 11:55 p.m. on the position’s closing date. Mailed, emailed, faxed, or hand‑delivered applications and résumés will not be accepted. Interview consideration is based solely on the information provided in the application, résumé, and any required transcripts (if applicable).
Applicants who need accommodations during the application and/or interview process may contact the Human Resource Office at 804-786-0150 or dfshumanresource@dfs.virginia.gov. Auxiliary Aids and services are available upon request for individuals with disabilities.
The Department of Forensic Science (DFS) is an Equal Opportunity Employer and a V3 Virginia Values Veterans certified organization. We strictly prohibit discrimination on the basis of race, sex, color, national origin, religion, sexual orientation, gender identity, age, veteran status, political affiliation, genetics, or disability in the recruitment, selection, and hiring of its workforce. We welcome and encourage applications from Veterans, AmeriCorps, Peace Corps, and other national service alumni.
DFS does not provide sponsorship or STEM OPT extensions. Applicants must be legally authorized to work in the United States at the time of hire and must maintain such authorization for the duration of their employment without the need for employer sponsorship or a STEM extension.
Background Investigation: Selected candidate(s) must successfully pass a background investigation to include a fingerprint-based criminal history check. Selected candidate(s) must provide a DNA sample via a buccal swab (saliva sample) and successfully pass a drug test. Reference checks will be conducted to include contact with current and previous supervisors.
Employment Eligibility Verification: DFS uses E-Verify+, a streamlined system that integrates the Form I-9 process with employment eligibility verification to electronically confirm identity and work authorization.
Contact Information
Name: Amanda Collum
Phone: 804-588-4010
Email: amanda.collum@dfs.virginia.gov
In support of the Commonwealth’s commitment to inclusion, we are encouraging individuals with disabilities to apply through the Commonwealth Alternative Hiring Process. To be considered for this opportunity, applicants will need to provide their AHP Letter (formerly COD) provided by the Department for Aging & Rehabilitative Services (DARS), or the Department for the Blind & Vision Impaired (DBVI). Service-Connected Veterans are encouraged to answer Veteran status questions and submit their disability documentation, if applicable, to DARS/DBVI to get their AHP Letter. Requesting an AHP Letter can be found at AHP Letter or by calling DARS at 800-552-5019.
Note: Applicants who received a Certificate of Disability from DARS or DBVI dated between April 1, 2022- February 29, 2024, can still use that COD as applicable documentation for the Alternative Hiring Process.