Information Security & Audit Compliance Manager (Senior Public Service Administrator Option 3)

Position Title: Senior Public Service Administrator Option 3

Agency: Department of Innovation and Technology

Closing Date/Time: 05/31/2024

Salary: $8,486 - $ 17,767 monthly (anticipated salary $125,000 - $135,000 annually)

Job Type: Salaried

County: Sangamon

Number of Vacancies: 1

Plan/BU: None

Are you looking for a rewarding career with an organization that values their staff? The Department of Innovation & Technology (DoIT) is seeking to hire qualified candidates with the opportunity to work in a dynamic, creative thinking, problem solving environment. This position serves as the Information Security & Audit Compliance Manager to lead our team supporting the Illinois Department of Human Services (DHS). The DoIT Team at DHS is leading a transformation to modernize the way citizens interact with the State of Illinois agency responsible for providing a wide variety of services to Illinois residents. The DoIT team at DHS is seeking to hire a candidate with strong technical and people skills to serve as the Information Security & Audit Compliance Section Manager responsible for managing DHS state-wide information system security process. The successful candidate will need to be highly analytical, professional, communicate effectively, and possess excellent organizational skills. If you possess these knowledges, skills, abilities, and experience, we invite you to apply for this position to join the DoIT Team!

As a State of Illinois employee, you receive a comprehensive benefits package including:

• Competitive Group Insurance benefits including health, life, dental and vision plans

• Flexible work schedules (when available and dependent upon position)

• 10 -25 days of paid vacation time annually (10 days for first year of state employment)

• 12 days of paid sick time annually which carryover year to year

• 3 paid personal business days per year

• 13-14 paid holidays per year dependent on election years

• 12 weeks of paid parental leave

• Pension plan through the State Employees Retirement System

• Deferred Compensation Program - voluntary supplemental retirement plan

• Optional pre-tax programs

• Medical Care Assistance Plan (MCAP) & Dependent Care Assistant Plan (DCAP)

• Tuition Reimbursement Program and Federal Public Service Loan Forgiveness Program eligibility

For more information regarding State of Illinois Benefits follow this link: https://www2.illinois.gov/cms/benefits/Pages/default.aspx

A RESUME IS REQUIRED FOR THIS JOB POSTING

Please attach a DETAILED Resume/Curriculum Vitae (CV), a copy of your transcripts or diploma for all degrees earned, and a copy of any applicable professional licensures to the MY DOCUMENTS section of your application. Please note that the Department of Innovation and Technology must verify proof of higher education for any degree earned (if applicable) before any offer can be extended. You WILL NOT be considered for the position if you attach a CMS100, CMS100b or any other document in lieu of a Resume or CV.

Essential Functions

35% Subject to management approval, serves as the Information Security & Audit Compliance Manager for the Department of Innovation & Technology, supporting the Department of Human Services (DoIT/DHS):

• Manages the Department of Human Services (DHS) state-wide information system security process.

• Administers security policies, programs and initiatives aligning them with the business objectives of DoIT/DHS.

• Confers with the Department of Innovation & Technology (DoIT) to coordinate state-wide security policy implementation in alignment with enterprise security architecture, National Institute of Standards and Technology (NIST), Cyber Security Framework (CSF), Rick Management Framework (RMF) and Control Objectives for Information and Related Technologies (COBIT) Standards.

• Develops DoIT/DHS Information Security Policies, Business Continuity and Disaster Recovery best practices and processes as defined by the Disaster Recovery Institute International (DRII) standards.

• Manages processes for responding to Freedom of Information Act (FOIA) and similar requests from DHS management.

25% Serves as full-line supervisor:

• Assigns and reviews work.

• Provides guidance and training to assigned staff.

• Counsels staff regarding work performance.

• Reassigns staff to meet day-to-day operating needs.

• Establishes annual goals and objectives.

• Approves time off.

• Adjusts first level grievances.

• Effectively recommends and imposes discipline, up to and including discharge.

• Prepares and signs performance evaluations.

• Determines and recommends staffing needs.

15% Oversees internal and external audit and compliance processes related to DoIT/DHS information systems:

• Independently or through subordinate staff, interfaces with other state and federal agencies regarding audits, data sharing agreements, and other information security-related issues.

10% Independently and through subordinate staff, ensures correct application of processes used to approve or deny user requests for DoIT/DHS-specific information systems access:

• Resolves disputes with requesting staff in the event requests are denied or modified through the approval process.

10% Develops, implements and monitors information system security controls for system access across IDHS in accordance with DHS, DoIT, and other state/federal requirements:

• Keeps abreast of new developments in the Information Technology field by attending training, conferences, and seminars.

5% Performs other duties as assigned or required which are reasonably within the scope of duties enumerated above.

Minimum Qualifications

• Requires knowledge, skill, and mental development equivalent to completion of four (4) years college preferably with coursework in computer science, management information systems, information technology or related fields.

• Requires four (4) years of progressively responsible administrative experience in Information Technology Audits and Security.

• Requires three (3) years of experience supervising a team of IT professionals

Preferred Qualifications

• Four (4) years of professional experience working with the National Institute of Standards and Technology (NIST), Cyber Security Framework (CSF), NIST Risk Management Framework (RMF) and Control Objectives for Information and Related Technologies (COBIT) framework.

• Four (4) years of professional experience with Information Security Policies, Business Continuity and Disaster Recovery best practices, processes as defined by the Disaster Recovery Institute International (DRII), and/or similar standards.

• Four (4) years of professional experience managing an IT system security program for a public or private organization.

• Four (4) years of professional experience developing information system security policies and procedures for a large public or private organization.

• Four (4) years of professional experience working with internal and external information technology audits for a public or private organization.

• Ability to analyze administrative problems and adopt an effective course of action.

• Ability to develop and maintain cooperative working relationships.

• Demonstrated verbal and written communication skills.

• Certification in one or more of the following: Certified Information Systems Security Professional (CISSP - ISC (2)); Certified Information Security Manager (CISM - ISACA); Certified Information Systems Auditor (CISA - ISACA); Certified Business Continuity Professional (BCP - DRI International); Governance, Risk and Compliance Certification (CGRC - ISC (2)); Certified Risk and Information Systems Control.

Employment Conditions

NOTE: Applicants must possess the ability to meet ALL of the following conditions of employment, with or without reasonable accommodation, to be considered for this position.

• Requires the ability to verify identity.

• Requires employment authorization to accept permanent full-time position with the State of Illinois

• Requires ability to pass a position specific, agency required background check.

• Requires ability to work outside of normal business hours to meet deadlines.

• Requires ability to use agency-supplied equipment (cell phone, laptop, etc.).

• Requires ability to attend seminars, conferences, and trainings to stay current on methods, tools, ideologies, or other industry related topics relevant to the job duties.

• Requires ability to lift and carry objects weighing up to 20 pounds. This is considered light work as defined by the U.S. Department of Labor (20 CFR 404.1567(b)). Light work involves lifting no more than 20 pounds at a time with frequent lifting or carrying of objects weighing up to 10 pounds.

• Requires the ability to travel in performance of duties.

• Requires the ability to serve in an on-call capacity.

The conditions of employment listed are incorporated and/or related to any duties included in the position description.

Work Hours: 8:30am

• 5:00pm M-F

Work Location: 100 South Grand Ave E, Springfield, Illinois, 62762

Agency Contact: jena.kershaw@illinois.gov

Posting Group: Leadership & Management; Science, Technology, Engineering & Mathematics

The Department of Innovation & Technology (DolT) is the state's IT agency delivering an enterprise approach to statewide technology, innovation and telecommunication services, as well as policy and standards development, lifecycle investment planning, and cybersecurity services. With over 1,500 employees, DolT delivers IT services and innovative solutions to customer agencies to improve services provided to Illinois residents, DolT offers employees the opportunity to advance their careers, develop new skills and reach their potential, both personally and professionally. DoIT is committed to promoting and preserving a workplace culture that embraces diversity and inclusion. We welcome and value employees with different backgrounds, life experiences and talents. It is the collective sum of our individual differences that provides a broad perspective, leading to greater innovation and achievement. In recruiting for our team, we recognize the unique contributions of each applicant regardless of culture, ethnicity, race, national origin, sex, gender identity and expression, age, religion, disability, and sexual orientation.

Revolving Door:

Certain provisions of the revolving door restrictions contained in 5 ILCS 430/5-45 apply to this position. As a result, the employee should be aware that if offered non-State employment during State employment or within one year immediately after ending State employment, the employee shall, prior to accepting any such non-State employment offer, notify the Office of the Executive Inspector General for the Agencies of the Illinois Governor ("OEIG") or may be subject to a fine.

Term Appointment:

Candidates hired into a term position shall be appointed for a term of 4 years and are subject to a probationary period. The term may be renewed for successive four-year terms at the Director of the Department of Innovation and Technology's discretion.

The main form of communication will be through email. Please check your "junk mail", "spam", or "other" folder for communication(s) regarding any submitted application(s). You may receive emails from the following addresses:

• donotreply@SIL-P1.ns2cloud.com
• systems@SIL-P1.ns2cloud.com

Nearest Major Market: Springfield