What are the responsibilities and job description for the Integrated Risk Management Specialist position at California Employment Development Department (EDD)?
THIS POSITION MAY BE ELIGIBLE FOR A HYBRID WORK SCHEDULE. THE AMOUNT OF TELEWORK IS AT THE DISCRETION OF THE DEPARTMENT AND IS SUBJECT TO CHANGE AS BUSINESS NEEDS ARISE.
Are you looking for a fast-paced and challenging position that will provide you with extremely valuable cybersecurity experience? The Employment Development Department (EDD) is looking for highly motivated and qualified individuals to support our cybersecurity risk management services. The Risk Assessment Analyst (SRA) is a highly technical security analyst who performs targeted risk assessments, produces quality professional work products that follow security best practices. The SRA works with system owners to plan, schedule and perform information technology penetration tests, develop, updates and maintains system security plans, Risk Register Plan of Action and Milestone, system and process security risk assessments and prepares certification and accreditation packages.
The Integrated Risk Management Specialist:
· Applies IT risk management best practices, threat modeling, penetration red/blue team testing, secure architecture. Focuses on using secure-by-design and security-first principles to reduce potential risk events.
· Assesses, advises and consults on all things risk management, adequacy of security controls and describes how the controls are employed within the information system and technical environments.
· Research and documents cybersecurity defense techniques, guidance, hazards and threats to proactively prepare for and prevent risk events.
· Serves as team member performing targeted risk assessments utilizing penetration testing tools and techniques. Determines whether controls are working as intended and proposes configuration, design changes and/or additional controls.
· Documents findings in a risk assessment report, tracks risk items in risk register, corrective action plan and risk treatment plans
· Works with system owners to develop and maintain system security plans. Prepares system certifications or recertifications and accreditation documentation.
· Continuously assesses security posture, works collaboratively with large multi-discipline teams.
· Provides consultation and expertise in multiple IT domains to ensure compliance with enterprise IT security policies, control agency mandates, and cybersecurity best practices.
This position is headquartered in Downtown Sacramento and may be eligible for telework under EDD's telework policy. Employees are required to report to their headquarters office, as needed. Travel expenses to and from the assigned headquarters are the responsibility of the employee.
Position exists at 800 Capitol Mall Sacramento, CA 95814
The office is right near light rail, the Capitol, and within walking distance of many restaurants and the Golden 1 Center
How to Apply
You can take the ITS I Exam here: https://calcareers.ca.gov/CalHrPublic/Exams/ExamBulletin.aspx?ExamControlId=1750
You can apply for the job here: https://calcareers.ca.gov/CalHrPublic/Jobs/JobPosting.aspx?JobControlId=468054
Please submit all additional documents as requested.
really APPLICATIONS WILL NOT BE CONSIDERED
Job Type: Full-time
Pay: $6,323.00 - $10,230.00 per month
Benefits:
- Dental insurance
- Health insurance
- Paid time off
- Vision insurance
Schedule:
- 8 hour shift
- Monday to Friday
Work Location: Hybrid remote in Sacramento, CA 95814
Salary : $6,323 - $10,230
