Description of Work
The North Carolina Department of Health and Human Services (DHHS), in collaboration with our partners, protects the health and safety of all North Carolinians and provides essential human services.
The primary purpose of the Information Security Official position is to achieve and support program privacy, security, and continuity of operations goals, policies and practices. This position is responsible for analyzing and developing privacy, security, and continuity of operations related activities for Information Technology Division and Office of the Controller. Other job responsibilities include the following:
Update department BCP and COOP plan
Perform Business Impact Analyses
Conduct Access Control Reviews
Monitor Employee HIPAA and Security Training
Perform NIST and HIPAA based risk assessments
Review CAPS\POAMS and vulnerability scanner findings and assist with remediation
Respond to privacy and security incidents
Review security exception requests and Privacy Threshold Analyses
Participate in system reviews/audits while administering security policies, activities, and standards in accordance with Federal, State and Departmental (DHHS) regulations and policies affecting DHHS applications.
Salary Grade IT06; Recruitment Range: $61,972 - $88,358
About the DHHS IT Division:
The NC Department of Health and Human Services (DHHS) IT Division provides enterprise information technology leadership to the department, counties, other state agencies, and their partners so that they can leverage technology, resulting in the delivery of consistent, cost effective, reliable, accessible and secure services.
Knowledge, Skills and Abilities / Competencies
To receive credit for all of your work history and credentials, you must list the information on the application form. Any information listed under the text resume section or on an attachment will not be considered for qualifying credit. Qualified applicants must document on the application that they possess all of the following:
Proven experience in information security
Experience managing vulnerability and patch reports
Experience with COOP\BCP plans
Knowledge in performance of risk assessments
Experience responding to security incidents
Experience with North Carolina DHHS business and IT functions
Review firewall change requests
Demonstrated working knowledge of industry best practice i.e., NIST, ISO/IEC 27002 etc.
Experience with Qualys and Tenable Security Center reports and dashboards
Experience reviewing SOC2 Type 2 reports
Demonstrated working knowledge of HIPAA
Ability to work with others to create plans for accomplishing objectives and strategy that comply with multiple security standards
General understanding of computer systems and networks, application, administrative and physical security
Self-starter capable of understanding "big picture" concepts; enjoys accepting challenges and persists until goals are achieved
Minimum Education and Experience Requirements
Bachelor's degree in Computer Science, Computer Engineering or an Information Security degree or closely related field from an appropriately accredited institution and one year of experience in IT Security;
Bachelor's degree from an appropriately accredited institution and two years of experience in IT Security or closely related area;
Associate's degree in Information Systems Security from an appropriately accredited institution and two years of experience in IT Security or closely related area;
An equivalent combination of education and experience.
Supplemental and Contact Information
The North Carolina Department of Health and Human Services is an Equal Opportunity Employer.
Due to the volume of applications received, we are unable to provide information regarding the status of your application over the phone. To check the status of your application, please log in to your account. You will either receive a call to schedule an interview or an email notifying you when the job has been filled.
For technical issues with your applications, please call the NEOGOV Help Line at 855-524-5627. Applicants will be communicated with, via email only, for updates on the status of their application. If there are any questions about this posting other than your application status, please contact HR at 919-855-4930.
State Of North Carolina