Title: Information Security Officer

State Role Title: Information Technology Specialist III

Hiring Range: $90,000 - $120,000

Pay Band: 6

Agency: Virginia Department of Health

Location: Dept of Health

Agency Website: https://www.vdh.virginia.gov/

Recruitment Type: General Public - G

Job Duties

THIS IS A REPOSTED POSITION FOR THE INFORMATION SECURITY OFFICER, PREVIOUS APPLICANTS WILL NEED TO REAPPLY.
The Information Security Officer (ISO) will be responsible for managing and ensuring an efficient and effective information security architecture and security posture that provides protection of the Agency’s information assets. This will include governance and oversight of the Agency’s IT infrastructure and networking solutions, conducting risk management, performing vulnerability management, conducting penetration tests, ensuring software information and integrity of IT information resources, reviewing configuration and change management to include security impacts and security exceptions, and IT and Business continuity planning, tests, and exercises for IT systems and data to ensure compliance with the Commonwealth’s Information Security Standards, IT Risks Management Standard, IT Security Audit Standards, and Incident Management. Position will serve as the back-up Chief Information Security Officer (CISO) and collaborates with HIPAA covered entities, Agency Privacy Officer, HIPAA Compliance Officer, and Office of Internal Audit, Auditors of Accounts (APA) related to confidentiality, integrity, and availability of VDH information assets and data. Position will keep senior management apprised of all security related controls and issues that impact the Agency's image and reputational risk, health, and safety risk, and/or service delivery to acceptable risk levels. ISO will also be responsible for Vulnerability Management and Risk Assessment and must be familiar with COV Security Standards.

The Virginia Department of Health offers 12 paid holidays, medical, dental, vision and life insurance, retirement plans (including 401a Cash Match and 457 Deferred Compensation Plan) as well as sick, family/personal, and annual leave.

Minimum Qualifications

Experience in the development, implementation, monitoring and presentation of information security policies, standards, and procedures.
Experience in monitoring IT environments for compliance with information security architecture policies and standards.
Skilled in project management and meeting deadlines in a timely manner. Ability to implement proper controls for IT applications and information resources. Considerable knowledge and skills in Information Systems review. Must be able to work in a fast-paced environment and acquire new skills/knowledge to meet customer needs.
Ability to effectively communicate both orally and in writing to diverse audiences, various s levels of management, and both internal and external customers.

Additional Considerations

Considerable experience in application security; Software as a Service (SaaS) solutions, contingency planning; risk management and governance, incident management, information security reviews, and security awareness and education preferred.
Familiarity with the Commonwealth's Security (SEC 530) policies preferred.
Certified Information Systems Security Professional, Certified Cloud Security Professional, Information Security Manager or Information Systems Auditor or equivalent.

Special Instructions

You will be provided a confirmation of receipt when your application and/or résumé is submitted successfully. Please refer to “Your Application” in your account to check the status of your application for this position.

Employment is contingent upon satisfactory results of a state and federal criminal history background check and the Department of Social Service’s Child Abuse and Neglect Central Registry check, U.S. HHSIG Exclusion List check, employment reference check and E-Verify. Other financial, credit, driving, background checks or completion of Statement of Economic Interests may be required for certain positions.
VDH accepts only on-line applications. Faxed, mailed, or e-mailed applications will not be considered. Applications are accepted until 11:55 p.m. on the job closing date. Applications and/or resumes should include relevant work history which indicates your qualifications for this position.
It is the policy of the Commonwealth and VDH that all aspects of human resource management be conducted without regard to race (or traits historically associated with race including hair texture, hair type, and protective hairstyles such as braids, locks, and twists); sex; color; national origin; religion; sexual orientation; gender identity or expression; age; veteran status; political affiliation; disability; genetic information; and pregnancy, childbirth, or related medical conditions. VDH employees have a shared Code of Ethics, which can be found in the bottom banner of our website: www.vdh.virginia.gov.

If you have been affected by DHRM Policy 1.30 layoff and possess a valid Interagency Placement Screening Form (Yellow Card) or a Preferential Hiring Form (Blue Card), you must submit the card before the closing date for this position. The Card may be submitted with the state application as an attachment.

As a V3 (Virginia Values Veterans) employer VDH Welcomes Veterans to apply!
Supplemental Questions: You may be required to respond to position-specific questions at the end of this application. This information will help us evaluate your credentials and qualifications for the job. Failure to respond to any questions may disqualify you from further consideration.

Contact Information

Name: Angela Ablack

Phone: n/a

Email: angela.ablack@vdh.virginia.gov

In support of the Commonwealth’s commitment to inclusion, we are encouraging individuals with disabilities to apply through the Commonwealth Alternative Hiring Process. To be considered for this opportunity, applicants will need to provide their AHP Letter (formerly COD) provided by the Department for Aging & Rehabilitative Services (DARS), or the Department for the Blind & Vision Impaired (DBVI). Service-Connected Veterans are encouraged to answer Veteran status questions and submit their disability documentation, if applicable, to DARS/DBVI to get their AHP Letter. Requesting an AHP Letter can be found at AHP Letter or by calling DARS at 800-552-5019.

Note: Applicants who received a Certificate of Disability from DARS or DBVI dated between April 1, 2022- February 29, 2024, can still use that COD as applicable documentation for the Alternative Hiring Process.