IT Senior Information Security Specialist (Tumwater)

___________________________

Job Title: IT Senior Information Security Specialist

Location: Tumwater, WA

Closes: January 29th 2025 at 11:55pm

Position is available for partial Telework/Flexible schedule, some travel may occasionally be required.

Parks is looking for a full time IT Security Analyst (ISA) to join our team and play a critical role in implementing, maintaining and securing the systems and operational technologies Parks uses everyday to support our mission! We're looking for a cybersecurity expert with a passion for solving complex challenges, and someone ready to design, develop, and architect systems that help deliver service across the state. 

In this high-impact position, you will analyze and mitigate risks for mission-critical systems that keep our operations running. From designing secure network architectures to documenting innovative cybersecurity solutions, you’ll be at the forefront of protecting vital computing and data infrastructure. Your work will directly impact the services Parks provides to Washington state citizens, ensuring that security of systems, customer data, and resources are taken seriously and compliant with various Federal, State, and private sector policies.
 
You’ll collaborate across business units with diverse backgrounds to shape the future of cybersecurity at Parks and how it shapes the future of our services. Architecting robust solutions for authentication, authorization, identity management, risk mitigation, and compliance. You will take pride in creating documentation that empowers your colleagues to solve similar problems in the future, sharing your expertise and experience with the team.
 
If you’re an expert in cybersecurity, risk management, and creating solutions for complex problems—this is the opportunity you’ve been waiting for!
 

Want to join a great organization?  The Washington State Parks and Recreation Commission manages one of the largest, most diverse and beautiful parks systems in the country. With more than 138,000 acres, the system includes 124 developed parks, including 19 marine parks, 11 historical parks, 35 heritage sites, 13 interpretive centers and approximately 500 miles of long-distance recreation trails. And the agency is staffed with nearly 1000 employees (summers), who are some of the most passionate employees you'll find anywhere We love what we manage and what we do. For more information on Washington State Parks, click here.

The ISA uses the agency security program a framework for managing the agency’s IT security posture and ensures the confidentiality, integrity and availability of the information maintained by the agency. The position identifies, develops, implements, and maintains processes across the agency to reduce information and information technology (IT) risks. This is accomplished through close relationships with internal business partners and external stakeholders such as vendors, other State Agencies and WaTech OCS.

Duties include but are not limited to:

• Analyze, identify, and mitigate risks for complex, critical systems across the state.    
• Design secure and strong IT system program structures, authentication and authorization controls, and identity management architecture.
• Collaborate with teams to document cybersecurity solutions and ensure future scalability.
• Ensure compliance with industry standards and mitigate cybersecurity risks before system deployment.
• Innovate and create best practices for securing vital technologies that support resident safety

Join us and be part of an exciting, fast-paced team dedicated to protecting vital systems that make a difference in the world!

REQUIRED QUALIFICATIONS:

Eight (8) years of progressive experience in consultative, administrative, or supervisory experience in information technology security. To include:

• Experience developing, implementing, and enforcing agency information systems security policy, operating procedures, and technical standards.
• Experience in designing and applying security controls and processes for securing the organization/agency.
• Experience in identifying and resolving information security risks and incidents that may adversely impact agency operations or projects.
• Project management experience with an emphasis in information technology or IT security.

OR 

Bachelor’s degree in computer science, management information systems, or closely related field AND (4) four year of experience in consultative, administrative, or supervisory experience in information technology security.

OR 

Associate’s degree in computer science, management information systems, or closely related field AND (6) six years of experience in consultative, administrative, or supervisory experience in information technology security.

AND

• Must possess valid drivers’ license and good driving record. 
• Must successfully pass a criminal background check. 

DESIRED QUALIFICATIONS:

• At least one of the following professional certifications: CISSP, CCSP, CRISC, GSEC, CEH, or Security .
• Experience managing IT security in 3rd party cloud environments.
• Experience with Compliance management, specifically CJIS, PCI, and OCIO 141.10
• Experience managing and maintaining security controls in Azure
• At least (3) three years' experience developing, implementing, and enforcing agency information systems security policy, operating procedures, and technical standards.
• (3) three years' experience in designing and applying security controls and processes for securing the organization/agency.
• At least (2) two years' experience in identifying and resolving information security risks and incidents that may adversely impact agency operations or projects.
• At least (2) two years' project management experience with an emphasis in information technology or IT security.
• Additionally, the candidate will be measured against the following experience and ability (experience in at least half):.
  • Systems / Network security.
  • Web Application & development security.
  • Risk Management
  • Network discovery and vulnerability assessments.
  • Malware analysis.
  • Compliance audits.
  • Log management.
  • Ability to identify and document security vulnerabilities and their potential business impact.
  • Implementing and monitoring security controls

Core Competencies:

Communication Skills: Clearly and effectively conveys and/or presents information verbally; summarizes what was heard to mitigate miscommunication; Shares ideas and perspectives, and encourages others to do the same; Informs others involved in a project of new developments; Disseminates information to other employees, as appropriate; Effectively uses multiple channels to communicate important messages; Keeps supervisor well informed about progress and/or problems in a timely manner; Writes in a clear, concise, organized, and convincing way for a variety of target audiences. 

Customer Focus: Prioritizes customers (internal and external) and their needs as primary, and is dedicated to meeting their expectations; Develops and maintains customer relationships; builds credibility and trust; Quickly and effectively solves customer problems; Provides prompt, attentive service in a cheerful manner; adapts to changing information, conditions, or challenges with a positive attitude; Incorporates customer feedback into delivery of service to provide the best experience possible for the customer.

Interpersonal Skills: Relates well with others; Treats others with respect; Shares views in a tactful way; Demonstrates diplomacy by approaching others about sensitive issues in non-threatening ways; Considers and responds appropriately to the needs, feelings, and capabilities of others; Fosters an environment conducive to open, transparent communication among all levels and positions; Takes the initiative to get to know internal and external customers.

Problem Solving: Uses rigorous logic and methods to solve difficult problems with effective solutions; Probes all available sources for answers; Can see hidden problems; Is excellent at honest analysis; Looks beyond the obvious and doesn't stop at the first answers.

Organizing: Uses his/her time effectively and efficiently; Concentrates his/her efforts on the more important priorities; Can attend to a broader range of activities as a result of organizing time efficiently; Can gather resources (people, funding, material, support) to get things done; Can orchestrate multiple activities at once to accomplish a goal; Arranges information and files in a useful manner.

HOW TO APPLY:
To ensure consideration, please complete the online job application and profile at www.careers.wa.gov.

You must attach in your application package the following:

• Letter of Interest specifically addressing the qualifications listed in this announcement.
• Three professional references contact information (if not listed on the application).

**All requested materials must be submitted. Incomplete or late application materials will not be accepted. Failure to follow application process may disqualify you from further consideration.**

Please read the supplemental questions carefully and answer completely. Incomplete responses, including "please see resume" may disqualify you from further consideration.  

The information provided in your application must support your selected answers in the application questions. Answers will be verified, and documentation may be required. Responses not supported in your application will disqualify you for consideration of employment from this recruitment.

NOTE: Prior to a new hire, a background check, including criminal record history will be conducted. Information from the background check will not necessarily preclude employment but will be considered in determining the applicant's suitability and competence to perform in the position.

This position is included in the non-supervisory bargaining unit represented by the Washington Federation of State Employees (WFSE).  For more information: https://wfse.org/

Diversity Policy Statement:

The Washington State Parks and Recreation Commission is an equal opportunity employer. We strive to build a workplace culture that is welcoming and inclusive in which all employees feel respected and empowered to bring their unique ideas to the agency. At State Parks, we believe that embracing diverse backgrounds and experiences is essential to growing a strong workforce. We encourage applicants underrepresented in natural resources and outdoor recreation fields to apply, including but not limited to women, Black, Indigenous and people of color (BIPOC), individuals with disabilities, neurodivergent individuals, disabled and Vietnam era veterans, persons over 40 years of age, and individuals who identify as a part of the 2SLGBTQ community. 

Persons desiring any accommodations in the application process or this job announcement in an alternative format may contact the human resources office at (360) 902-8565. Applicants who are deaf or hearing impaired may call through the Washington Relay Service by dialing 7-1-1 or 1-800-833-6388.

For information about this position and job duties, please contact James Minkler at James.Minkler@parks.wa.gov or (360) 902-8589.

For information about the hiring process, please contact Wendy Vandel at Wendy.Vandel@parks.wa.gov or (360) 902-8688.

Salary : $94,524 - $127,176