• Leads/Builds a strategic and comprehensive information security program that defines, develops, maintains, and implements state-wide policies and processes that enable consistent, effective information security practices which minimize risk and ensure the integrity, confidentiality, and availability of information that is owned, controlled, and processed within the State.
• Collaborates with organization senior management, State leadership and agencies to establish and lead governance for the cybersecurity program. Act as a strategic advisor to State leadership on cyber security policy, issues and impact.
• Establishes and maintains a professional work environment while providing appropriate leadership and direction. Promotes positive morale, creativity and teamwork among staff. Leads and encourages ongoing professional development within the team.
• Establish annual and long-range security and compliance goals, metrics, reporting mechanisms and program services; and create maturity models and a roadmap for continual program improvements.
• Manage IT security contracts, vendors and develops budget recommendations while ensuring that the department functions within budget appropriations.
• Establishes strategic partnerships to exchange data with other Cybersecurity experts including local, education, higher education and Federal agencies and individuals.
• Stays current with and evaluates security trends, evolving threats, risks and vulnerabilities and adjusts strategic plans, tools and resources to mitigate risk as necessary.
• Ensures the state complies with industry, federal and state administrative and technical requirements such as, but not limited to PCI, HIPAA, and FTI. Ensure the state is adaptable to evolving compliance regulations.
• Ensures information technology data security, risk management, disaster recovery and business continuity planning processes are in place and receive ongoing review. Including cyber resiliency so the State can rapidly recover from hacking, security incidents, or infringements.

PREFERENCES:

• Preference may be given to applicants with experience in state government.
• Preference may be given to applicants with experience in state policy and planning, including the cross-coordination between work units or agencies.
• Preference may be given to applicants with experience in strategic planning.
• Preference may be given to candidates with a master's degree in computer science, information systems, business administration, policy, and planning.
• Preference may be given to applicants with 4-8 years of cyber security Governance.

KNOWLEDGE:

• Excellent analytical skills, the ability to manage multiple projects under strict timelines, as well as the ability to work well in a demanding, dynamic environment and meet overall objectives.
• Project management skills: financial/budget management, scheduling and resource management.
• Ability to lead and motivate the information security team to achieve tactical and strategic goals, even when only "dotted line" reporting lines exist.
• Knowledge of public administration principles, including the basic principles of organization, management, and budget preparation.
• Knowledge of state government purchasing laws and practices.
• Knowledge of laws, ordinances, and regulations underlying a public sector organization and applicable State, and Federal legislation.
• Knowledge, skill, and ability of current best practices of leadership and management.
• Ability to establish and maintain effective working relationships with executive management, peers, state officials, outside agencies and partners, vendors, industry and community groups.
• Ability to work with and coordinate between multiple agency and different governmental structures to meet goals and objectives.
• Ability to communicate effectively both verbally and in writing.

MINIMUM QUALIFICATIONS:

None - See "Preferences"

PHYSICAL WORKING CONDITIONS:

• After-hours availability for leadership/guidance as situations dictate.
• Occasional after-hours work to meet deadlines - typically around legislative sessions or major projects.
• This position is required to travel.
• Sitting for extended periods.
• Dexterity of hands and fingers to operate a computer keyboard, mouse and to handle other computer components.
• Lifting and transporting moderately heavy objects, such as computers and peripherals, must be able to lift 50 lbs.
• Coordinating, leading, speaking, and/or participating in sessions, presentations, and meetings.

NOTES:

• FLSA: Exempt
• This position is At-Will and serves at the pleasure of the Director.
• The successful candidate must pass a background check
• To be considered, an applicant must submit the following: a tailored and updated application; updated employment verifications for past positions to include updated contact information; a tailored resume; a detailed cover letter explaining position qualifications and, if applicable, industry certification(s).