RCQC Senior Security Specialist

The Office of Secretary of State (OSOS) offers some of the most unique and diverse job opportunities in state government. Its critical responsibilities include: ensuring a fair and accurate elections process; connecting Washingtonians through the power of libraries; protecting our important government records; and registering corporations and charities. The Secretary of State also administers vital community programs that inspire giving, document our history, and assist crime survivors in avoiding further abuse. This independent office under the state Constitution operates from facilities in the Olympia area and statewide.

The OSOS is looking for top-performing employees who embody its core values of integrity, service excellence, visionary leadership, collaboration and teamwork. It is committed to both employee growth and work-life balance. The benefits of working in state government also include potential eligibility for the federal Public Service Loan Forgiveness program. 

The Information Security & Response (ISR) Division protects against cybersecurity threats and provides strategic elections messaging that enhances the security of and improves public confidence in the Office of the Secretary of State. The ISR Division has 15 employees who report to the ISR Director. These employees are based at our Olympia-area Secretary of State facility and at the Digital Archives. The information security section consists of the Chief Information Security Officer, InfoSec Project Manager, VoteWA Development Manager, two InfoSec team supervisors and four InfoSec systems administrators. The Risk Compliance & Quality Control (RCQC) Security Analyst is part of a three-person information security team, and reports to the RCQC Manager.


The Risk Compliance & Quality Control (RCQC) Security Analyst is part of a three-person information security team, and reports to the RCQC manager.  This position provides the division risk assessment and vulnerability management capability to reach the agency's security goals and objectives. The main security objective is to minimize technical debt by remediating security flaws early in development before solutions go into production. Other security objectives include supporting solutions already in production, as well as advising and assisting agency teams in assessing impact of detected vulnerabilities. The RCQC Senior Security Analyst performs advanced technical work independently, or as part of a team with other IT professionals.Duty: Forecast, define and influence information security improvement efforts
Tasks include:

• Collaborates and partners with peers in other divisions to reduce risk and improve security.
• Advises and consults business and information owners on threat modeling to identify, communicate, and understand threats and mitigations.
• Perform analysis of systems and data using appropriate tools to identify applicable security controls.
• Provides requirements for design, configuration, and implementation of security related features in system solutions.
• Conducts and participates in design review processes to champion changes that maintain or enhance security.
• Analyzes and interprets technical information and risk frame to inform preventative and contingency plans.

Duty: Supervises work group
Tasks Include: 

• Supervises and leads security team to complete security operations and project tasks
• Supervises, and leads security team in performing incident response actions appropriate to the nature of the incident (identify, locate, quarantine, remediate, recover)
• Leads assigned resources for periodic internal assessments and audit exercises
• Serves as the point of escalation for staff and customers to resolve technical problems 
• Ensures that supervised staff have the information, resources, and authority to complete assignments and meet documented expectations
• Recognizes staff accomplishments that meet division goals 
• Communicates division and agency direction and priorities to staff, seeking input and feedback

Duty: Investigate and assess the effectiveness of applied security controls and practices
Tasks include:

• Determines a system’s susceptibility to cyber incidents, by using current, real-world tactics, techniques, and procedures to simulate effects in controlled environments.
• Tests systems, applications and staff using proactive approaches from cybersecurity domains. Methods would include techniques found in penetration testing, red teaming, social engineering, and other techniques.
• Assesses or anticipates the impact of risk events to the agency's mission and stakeholders.
• Provides recommendations based on expert analysis to develop and refine existing security policies and procedures.
• Works closely with the CISO and agency staff in security prevention, identification, and response activities.

Duty: Evaluate agency and contractor SDLC products with emphasis on security and compliance
Tasks include:

• Verifies final development products comply with relevant industry standards, regulations, and policy.
• Utilizes Static and Dynamic code analysis techniques to identify potential security vulnerabilities.
• Performs specialized analysis focusing on security vulnerabilities such as code injection, information disclosure session manipulation and identity management.
• Analyzes code dependencies to identify unnecessary components or those with known vulnerabilities.
• Analyzes legacy code for outdated practices, potential security risks, and technical debt.

Duty: Advises and trains agency staff in information security and cyber hygiene practices
Tasks include:

• Develops and delivers IT Security related training and presentations, to audiences within and outside the agency.
• Provides knowledge and insight regarding common and modern attack techniques to agency IT workers.
• Create reports that outline the financial, operational, and reputational impacts of cybersecurity events.
• Communicates the scope and impact of perceived and actual risk.

Duty: Maintain technical and communication skills

• Seeks out and consumes IT Security related professional conferences and training, both agency-directed and professional interest.
• Reading and leading discussions on technical publications and periodicals.
• Conducts research and appropriate experimentation.
• Obtains and maintains relevant security certifications.

Duty: Other

• Other duties as assigned.

Required Qualifications: 

• Eight years of information technology experience working with security technologies such as Web Proxies, Data Loss Prevention (DLP), Security Information Event Management (SIEM), Intrusion Detection, Incident Response & Investigation, Vulnerability Management and Endpoint Defense.
• Ability to efficiently use a personal computer and applicable software to successfully perform the essential job functions of the position.
• Ability to read and write English Language.

Desired Qualifications: 

• Communications - The ability to concisely and effectively interact with other individuals as well as internal and external organizations. 
• Teamwork - As an active member of a team, has the ability and desire to work collaboratively with others, fosters teamwork, and influences others.
• Interpersonal Skills - The ability to notice, interpret, and anticipate others' concerns and feelings, and to communicate this awareness empathetically to others. 
• At least 15 quarter hours specializing in a computer science or related field.
• Experience with Programming or Scripting languages like PowerShell, JavaScript, Python, C#, VBA etc.
• Experience developing and implementing information security, controls, guidelines, and procedures.
• Understanding of advanced protocols and standards, including a demonstrated ability to perform complex analysis and metrics.
• Knowledge of information security frameworks and industry regulations (NIST, PCI, HIPAA, CSC).
• Knowledge and understanding of state laws and regulations (RCWs and WAC) concerning Information technology and the Public Records Act.
• Knowledge and understanding of federal programs such the National Infrastructure Protection Program, the Critical Infrastructure sector concerning the Government Services and Facilities and Information Technology.
• Information Security Certifications from organizations such as GIAC, CompTIA, ISC^2, ISACA.

PLEASE READ: If you have gotten this far and are thinking you do not qualify, consider again. Studies have shown that members of historically marginalized and underrepresented communities, specifically women and people of color, are less likely to apply to jobs unless they clearly meet every single qualification. 
                
At the Office of the Secretary of State, we are dedicated to building a diverse and authentic work force with a foundation of belonging. If you are excited about this role and have relevant experience and skills, but question whether your experience aligns perfectly with every qualification in the job description, we encourage you to apply regardless. You may just be the ideal candidate this office needs. Working Conditions In this position, the incumbent works primarily in an office setting, which will require the ability to sit and/or stand for extended periods of time. The standard work hours are Monday-Friday 8am - 5pm; however, work can be required outside of standard hours to include evenings, weekends, and holidays. Regular travel to local offices is required and there may be some travel to attend meetings and training. The incumbent in this position must be able to represent the Office of the Secretary of State in a competent, confident, and professional manner, including professional dress, and be able to clearly and effectively communicate ideas and information both verbally and in writing, and work successfully with a wide variety of people in a team environment. The incumbent in this position must have the ability to work under pressure, meet deadlines, and coordinate with other operational areas to execute security response.

This position is in a bargaining unit represented by the Washington Federation of State Employees (WFSE) and is subject to the terms of the Collective Bargaining Agreement between the State of Washington, The Office of the Secretary of State, and the WFSE.

How to Apply

• To be considered for this position you must attach the following:
  • Current Resume
  • Three Professional references. Personal references will not be considered. 
• You must complete the supplemental questions at the end of this application. Incomplete responses such as "see resume" will not be considered.  In addition, if the employer you identify in the additional information section is not included on your resume or work experience profile and/or you do not identify an employer, you will not receive credit.
• All veterans must include a copy of your DD214 to receive preference in the hiring process.  You must black out your social security number before attaching it to your application.
• Prior to a new hire, a background check including criminal record history will be conducted.  Information from the background check will not necessarily preclude employment but will be considered in determining the applicant's suitability and competence to perform in the position.
• Must have current Washington state driver's license or have requested and obtained an appropriate accommodation. 

The Office of the Secretary of State is an equal opportunity employer (EOE). We do not
discriminate on the basis of religion, age, sex, marital status, color, creed, national origin, political affiliation, military status, sexual orientation, or any real or perceived sensory, mental or physical ability. All interested candidates are encouraged to apply. Persons of disability needing assistance in the application process, or those needing the announcement in alternative format, should call (360) 704-5211.

Salary : $7,877 - $10,598