Oversee daily operations of Ohio Secretary of State (SOS) cyber security program areas to include, Vulnerability Management, Incident Response, SOC & Security Engineering/Architecture; provide guidance for mitigation actives in event of an incident; provide CISO with recommendations on ways to improve operational efficiency & effectives; ensure operational activities align with strategic direction of security practice; create & maintain operational procedures for assigned program areas; inform CISO on changing operational needs & desires; enforce IT Policies & regulatory standards through technical controls; recommend changes in SOS security tools & processes to endure compliance with policies, procedures security controls & regulatory requirements; answer questions & present formal/informal security concepts to fellow peers; mentor staff for future leadership opportunities; provide guidance & management of contractors & vendors supporting SOS Information Technology Division; review & monitor enterprise security systems taking appropriate action & responding to alarms/alerts per agency policy & procedure.
Knowledge of: (13a)* Office Practices & Procedures (e.g., SOS IT Security); (13b)* SOS Policies & Procedures (e.g., development, implementation & management of enterprise IT security; development & promulgation of information security; cyber security & privacy; Supply Chain Risk Management Practices (NIST SP 800-161) & (22) Electronic Data Processing (e.g., computer networking concepts, protocols & network security methodologies; cyber security & privacy).
Skill in: (29) equipment operation (e.g., microcomputers & peripheral equipment; office suite software [e.g., word processing spread sheet, database] & browser functionalities; build architectures & framework; apply cybersecurity & privacy principals to organization requirements relevant to confidentiality, integrity, availability, authentication nonrepudiation; identify critical infrastructure systems with information communication technology designed without system security considerations).
Ability to: (30l) define problems, collect data, establish facts & draw valid conclusions; (32t) use proper research methods in gathering data, to include oral, written & active listening; (33e) gather, collate & classify information about data, people or things & (34c) cooperate with co-workers on group projects.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.