Senior Information Security Supervisor

Senior Information Security Supervisor

(IT Security-Senior Specialist)

WaTech: Leading the way in technology!

Washington Technology Solutions (WaTech) is a national leader in adopting new, innovative technologies that transform the way Washingtonians receive state services. As a member of WaTech’s team, you will help other state agencies deliver critical services to millions of Washingtonians every day. WaTech operates the state’s core technology services and helps the government function more efficiently, safely, and securely.

About the position
This position is a part of WaTech's Information Security Services (ISS) unit within WaTech’s Office of Cybersecurity (OCS) and reports to WaTech Agency Chief Information Security Officer (CISO). This position contributes to the mission of WaTech by detecting, assessing, and mitigating vulnerabilities and threats to the agency’s operational policies and enterprise information systems. The position works to sustain public trust in these systems by assuring they are adequately secured and meet or exceed state and federal regulatory requirements.

As the Senior Information Security Supervisor, you will ensure the technology systems used in delivering enterprise services are implemented securely and remain clear of vulnerabilities which can impact their confidentiality, integrity, and availability. In this role you will provide supervision and be the team’s highest escalation point for other lower-level staff.

Some of what to expect with this role:

• Supervise, direct, train, and evaluate Information Security Services staff.
• Analyze security intelligence artifacts received from external security partners and enterprise security solutions to quickly remediate or respond to cyber threats and trends.
• Collaborate on the design and architecture of systems in compliance with national and state cybersecurity requirements while meeting the programmatic needs of the business.
• Serve as an SME on various security enterprise platforms, providing technical expertise to WaTech management, service teams, technical staff and hosted agency customers.
• Advise WaTech and hosted agency leadership on the organization’s cybersecurity posture and participate in senior-level discussions.
• Develop security-centric reference and resource materials.
• Devise methods and processes to analyze various security events that require deviation from normal processes.
• Lead security investigations of IT security breaches and provide recommendations for resolution.
• Serve as the secondary point of contact during a security incident or breach investigation affecting WaTech or any of its hosted agencies.
• Evaluate system security against threats and vulnerabilities to determine the adequacy of the applicable security controls.
• Create, implement, and administer a comprehensive risk assessment plan to assess vulnerabilities, threats, and impacts on the agency’s information systems.
• Independently work on all assignment levels and guide staff on complex issues identified during the risk assessment process.
• Lead assigned staff in testing security controls and policies and perform remediation testing to ensure corrective actions taken have been addressed.
• Create, implement, and administer a comprehensive security assessment plan to analyze the current state of compliance on the agency’s information systems.

Here’s what we’re looking for:

• 11 or more years (full-time equivalent) of combined experience in two or more of the following focus areas:
  • Information security.
  • Conducting risk/security assessments.
  • Systems administration.
  • Developing, installing, and/or maintaining technology systems, network infrastructure, network server systems, or application systems.
• The total 11 years must also include each of the following:
  • Two or more years (full-time equivalent) experience in administrating security platforms and analyzing/interpreting the risk/vulnerability data these tools provide (such as MS Defender, Azure SENTINEL and RiskSense).
  • Two or more years (full-time equivalent) experience in evaluating Common Vulnerabilities and Exposures (CVEs) to determine level of risk to information assets and potential remediation actions.
  • Minimum of two years in a supervisory or lead role.

* A bachelor's degree or completion of an accredited training program may substitute for up to four years of experience.

Preference may be granted to applicants with the following:

• Two or more years of work experience supporting information security for a government or heavily regulated organization.
• Two or more years of experience in a programming language, writing computer scripts, or computer forensics.
• A professional security certification, such as CISSP, CISA, or CEH, from a non-vendor specific industry recognized organization such as ISC2, ISACA, or the SANS institute.

Telework:This position is approved for telework. However, it requires the incumbent to be within an hour commuting distance to our Olympia, Washington office to meet onsite requirements.

We value diversity and different perspectives:

WaTech is committed to providing equal access and opportunities to all qualified applicants and employees. We seek to attract and retain a diverse staff and welcome your experiences, perspectives and unique identity.

What WaTech offers:

As an employee of WaTech, you’ll have access to an outstandingemployee benefits package that includes medical and dental plan options for you and your family, paid leave and holidays, retirement plan options and more.

While WaTech is headquartered in Olympia, Washington, which is near some of the country’s mostscenic national parks,we are able to offer many of our positions telework and flexible schedule options to help support a healthy work-life balance.

To learn more about WaTech, and what our employees enjoy about working here, pleasevisit our website.

How to apply:

Applications for this recruitment will be accepted electronically. Please select the large “apply” button at the top of this announcement. You may need to create a profile and account in Washington state's automated application system. We invite you to include your name and pronouns in your material to ensure we address you correctly throughout the application process.

To be considered for this position you will need to:

• Submit a completeOnline Application.
• Answerallrequired Supplemental Questions.
• Attach a Letter of Interestthat addresses how your experience qualifies you for this role.
• Attach a Resumethat clearly documents the work history, training, and education that makes you a viable and competitive candidate for this position.
• Attach a separate document with at least Three Professional References. This should include:Reference name, nature of the relationship (i.e. company and supervisor, coworker, etc.), phone number, and email. References should be individuals you have worked with in the past five years, if possible, and include at least one current, or most recent supervisor. *We will not conduct reference checks without your signed release.

Note: Applications without the requested information identified above or containing supplemental question responses with comments such as "see resume" may lead to your application being disqualified from consideration.

Applicants wishing to claim Veterans Preference should attach a copy of their DD-214 (Member 4 copy), NGB 22, or signed verification of service letter from the United States Department of Veterans Affairs to their application. (Please redact any personally identifiable data such as social security number prior to submittal.)

Conditions of employment:

This position requires a background check. Information from the background check will not necessarily preclude employment but will be considered in determining the applicant's suitability and competence to perform in the position and is a continued condition of employment.

Recruitment process:

First round of application assessments will be conducted seven days after the initial job posting date. The hiring authority reserves the right to offer the position at any time after the initial seven-day job posting date during the recruitment process. It is to the applicant's advantage to apply as early as possible. This recruitment may be used to fill multiple positions. As a part of the interview/assessment process there may be an assignment.

Contact us:For inquiries about this position, please contact Rebekah Wilkesat (360) 407-8646or email toRebekah.Wilkes@WaTech.wa.gov

Persons requiring accommodation in the application process or for an alternative format may contact Human Resources at (360) 407-8242 orHuman.Resources@watech.wa.gov.Persons of disability or those who are deaf or hard of hearing can call the Washington Relay Service by dialing 7-1-1 or 1-800-833-6388. WaTech complies with the employment eligibility verification requirements of the federal Form I-9. The selected candidate must be able to provide proof of identity and eligibility to work in the United States consistent with the requirements of that form on the first day of employment.