isecjobs.com

IT Security Audit Compliance Specialist (INFORMATION SERVICES SPECIALIST II, OPT. A)

Springfield, IL, US, 62762

Applications have closed
State of Illinois logo

State of Illinois

Find places to go, things to see. Search through all the different services offered by the various Illinois agencies.

View all jobs at State of Illinois

Find more jobs like this Jobs in the United States

Position Title: INFORMATION SERVICES SPECIALIST II, Option A

Agency :  Department of Innovation and Technology 

Posting Date: 7/12/2024
Closing Date/Time: 07/25/2024 
Salary:   $6,005-$8,678  
Job Type:   Salaried 
County:   Sangamon  
Number of Vacancies:   1  
Plan/BU: RC063   

 

This position is a union position; therefore, provisions of the relevant collective bargaining agreement/labor contract apply to the filling of this position.

 

All applicants who want to be considered for this position MUST apply electronically through the illinois.jobs2web.com website. State of Illinois employees should click the link near the top left to apply through the cloud.com/sf/careers/jobsearch?bplte_company=SILHCM20P1" target="_blank">SuccessFactors employee career portal.

Applications submitted via email or any paper manner (mail, fax, hand delivery) will not be considered.

Proof of educational coursework is required. Acceptable proof of coursework includes unofficial transcripts, copies of official transcripts, account records (including screenshots) of academic coursework, and any similar documents created by an academic institution.

 

Posting Identification Number  39824 

 

Are you looking for a rewarding career with an organization that values their staff? The Department of Innovation & Technology (DoIT) is seeking to hire qualified candidates with the opportunity to work in a dynamic, creative thinking, problem solving environment. This position serves as an IT Security Audit Compliance Specialist supporting the Illinois Department of Human Services (DHS).  In this role, you will design and modify data processing system and operations documentation and investigate internal and external information security risks and exception assessments.  In addition, you will program, test and code moderately difficult programs. If you possess these knowledges, skills, abilities, and experience, we invite you to apply for this position to join the DoIT Team!

 

As a State of Illinois employee, you receive a comprehensive benefits package including:

  • Competitive Group Insurance benefits including health, life, dental and vision plans.
  • Flexible work schedules (when available and dependent upon position)
  • 10 -25 days of paid vacation time annually (10 days for first year of state employment)
  • 12 days of paid sick time annually which carryover year to year
  • 3 paid personal business days per year
  • 13-14 paid holidays per year dependent on election years
  • 12 weeks of paid parental leave
  • Pension plan through the State Employees Retirement System
  • Deferred Compensation Program – voluntary supplemental retirement plan
  • Optional pre-tax programs -Medical Care Assistance Plan (MCAP) & Dependent Care Assistant Plan (DCAP)
  • Tuition Reimbursement Program and Federal Public Service Loan Forgiveness Program eligibility

 

For more information regarding State of Illinois Benefits follow this link: https://www2.illinois.gov/cms/benefits/Pages/default.aspx
 

Essential Functions

35% Under general supervision, serves as an IT Security Audit Compliance Specialist for the Department of Innovation & Technology (DoIT) supporting the Department of Human Services (DHS):

  • Designs and modifies data processing system and operations documentation. 
  • Develops logic to produce a specific task or series of tasks.
  • Creates written programming specifications using Excel, Word, SQL or other programming languages and coordinates the assignments of tasks.  
  • Implements processes, such as GRC (governance, risk and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing.
  • Compiles reporting metrics, dashboards, and evidence artifacts.
  • Performs cross-checks and auditing procedures to ensure accurate and reliable information services practices.
  • Utilizes regulatory frameworks such as PCI DSS, HIPAA, MARS-E, NIST 800-53, or IRS Pub 1075 in performance of duties.  

 

30% Confers with Unit Supervisor and co-workers to determine requirements for individual tasks or projects of limited size:

  • Analyzes and revises agency work procedures to adapt to changes of the user and data processing procedures.
  • Investigates internal and external information security risks and exception assessments
  • Assesses incidents, vulnerability management, scans, patching status, secure baselines, penetration test result, phishing, and social engineering tests and attacks.
  • Makes recommendations on the feasibility of revising existing operations or adapting new applications.
  • Interviews users to determine the technical requirements for complying with specific requests and quality assurance reviews.  

 

25% Programs, tests, and codes moderately difficult programs:

  • Determines and corrects program deviations.  
  • Assists in detailed studies and analysis of data processing functions, methods, and procedures.  
  • Prepares system and program flowcharts, creates system production documentation, and analyzes program test materials, output reports, file dumps, etc. to ensure accurate program results.

 

5% Keeps abreast of new developments in the development of detailed systems design and programming field:

  • Continues education by attending meetings, training sessions, seminars, and conferences to increase familiarity with and remain current on products, vendors, techniques, and procedures.
  • Attends demonstrations and exhibitions related to assigned operations.

 

5% Performs other duties as required or assigned which are reasonably within the scope of the duties enumerated above.

 

Minimum Qualifications

  1. Requires knowledge, skill, and mental development equivalent to completion of two (2) years of college with course work in computer science or directly related fields. 
  2. Requires one (1) year of professional experience in Application Services or related Information Technology experience.

Preferred Qualifications

  1. One (1) year of related Information Technology experience in cyber security, security programs, or compliance assurance.
  2. One (1) year of professional experience working in an audit environment that includes coding to retrieve audit data.
  3. One (1) year of professional experience creating metrics (KPI/KRI) and reporting, including creating and displaying reports.
  4. One (1) year of professional experience conducting technology and cybersecurity risk assessments and creating risk profiles.
  5. One (1) year of professional experience identifying and mitigating security vulnerabilities.
  6. Working knowledge of the major regulatory frameworks such as PCI DSS, HIPAA, MARS-E, NIST 800-53, or IRS Pub 1075.
  7. Working knowledge of information security best practices.
  8. Ability to analyze data logically and exercise sound judgement in defining and evaluating problems of an operational or procedural nature.
  9. Developed verbal and written communication skills to present technical information to others with clarity and precision.

Conditions of Employment

NOTE: Applicants must possess the ability to meet ALL of the following conditions of employment, with or without reasonable accommodation, to be considered for this position. 

  1. Requires the ability to verify identity.
  2. Requires employment authorization to accept permanent full-time position with the State of Illinois.
  3. Requires the ability to pass a position specific, agency required background check.
  4. Requires self-disclosure of criminal history. 
  5. Requires the ability to use agency supplied equipment such as laptop, personal computer, work cell phone and any other required equipment or devices.
  6. Requires the ability to travel in performance of duties.
  7. Requires the ability to serve in an on-call capacity.
  8. Requires the ability to work overtime including scheduled, unscheduled, short notice, evenings, weekends, and holidays.
  9. Requires the ability to attend seminars, conferences, and training to remain current on methods, tools, ideologies, or other industry related topics relevant to job duties.
  10. Requires the ability to lift and carry objects or equipment weighing up to 20 pounds.  This is considered light work as defined by the U.S. Department of Labor (20 CFR 404.1567(b)). Light work involves lifting no more than 20 pounds at a time with frequent lifting or carrying of objects weighing up to 10 pounds. 

The conditions of employment listed are incorporated and/or related to any duties included in the position description.

Work Hours:  8:30 AM-5:00 PM  
Work Location: 100 South Grand Ave E, Springfield, Illinois, 62762  
Agency Contact: 

Maddie Beyer

Email: madison.beyer@illinois.gov

Posting Group:  Science, Technology, Engineering & Mathematics  

 

This position DOES NOT contain “Specialized Skills” (as that term is used in CBAs).

 

The Department of Innovation & Technology (DolT) is the state's IT agency delivering an enterprise approach to statewide technology, innovation, and telecommunication services, as well as policy and standards development, lifecycle investment planning, and cybersecurity services. With over 1,500 employees, DolT delivers IT services and innovative solutions to customer agencies to improve services provided to Illinois residents, DolT offers employees the opportunity to advance their careers, develop new skills and reach their potential, both personally and professionally. DoIT is committed to promoting and preserving a workplace culture that embraces diversity and inclusion. We welcome and value employees with different backgrounds, life experiences and talents. It is the collective sum of our individual differences that provides a broad perspective, leading to greater innovation and achievement. In recruiting for our team, we recognize the unique contributions of each applicant regardless of culture, ethnicity, race, national origin, sex, gender identity and expression, age, religion, disability, and sexual orientation.

 

APPLICATION INSTRUCTIONS

Use the “Apply” button at the top right or bottom right of this posting to begin the application process.

If you are not already signed in, you will be prompted to do so. 

State employees should sign in to the career portal for State of Illinois employees – a link is available at the top left of the Illinois.jobs2web.com homepage in the blue ribbon. 

Non-State employees should log in on the using the “View Profile” link in the top right of the Illinois.jobs2web.com homepage in the blue ribbon.  If you have never before signed in, you will be prompted to create an account.

If you have questions about how to apply, please see the following resources:

State employees: Log in to the career portal for State employees and review the Internal Candidate Application Job Aid

Non-State employees: on Illinois.jobs2web.com – click “Application Procedures” in the footer of every page of the website.

 

The main form of communication will be through email. Please check your “junk mail”, “spam”, or “other” folder for communication(s) regarding any submitted application(s). You may receive emails from the following addresses:

  • donotreply@SIL-P1.ns2cloud.com
  • systems@SIL-P1.ns2cloud.com
Find more jobs like this Jobs in the United States

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  3  0  0
Category: Compliance Jobs

Tags: Audits Cloud Compliance Computer Science Governance HIPAA Mathematics NIST NIST 800-53 PCI DSS Risk assessment SQL Travel Vulnerabilities Vulnerability management

Perks/benefits: Career development Competitive pay Conferences Flex hours Flex vacation Gear Health care Insurance Medical leave Parental leave

Region: North America
Country: United States

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information Security Manager jobsInformation Security Officer jobsInformation System Security Officer jobsSenior Cloud Security Engineer jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsSystems Administrator jobsSystems Engineer jobsSecurity Consultant jobsSenior Information Security Analyst jobsIT Security Analyst jobsSecurity Specialist jobsChief Information Security Officer jobsSenior Cyber Security Engineer jobsInformation System Security Officer (ISSO) jobsSenior Penetration Tester jobsInformation Systems Security Engineer jobsStaff Security Engineer jobsThreat Intelligence Analyst jobsCyber Threat Intelligence Analyst jobsSecurity Operations Analyst jobsCyber Security Architect jobs
Kubernetes jobsEncryption jobsGDPR jobsJava jobsSaaS jobsEDR jobsSplunk jobsRMF jobsForensics jobsIDS jobsDoDD 8570 jobsSQL jobsIPS jobsBash jobsIntrusion detection jobsSDLC jobsThreat detection jobsActive Directory jobsCompTIA jobsGIAC jobsFinance jobsCRISC jobsITIL jobsClearance Required jobsTerraform jobs
OWASP jobsDocker jobsPolygraph jobsSANS jobsIndustrial jobsUNIX jobsCCSP jobsHIPAA jobsVPN jobsTCP/IP jobsOSCP jobsJavaScript jobsDNS jobsSOC 2 jobsIT infrastructure jobsSAP jobsBanking jobsData Analytics jobsAnsible jobsGCIH jobsMITRE ATT&CK jobsNIST 800-53 jobsSOX jobsSOAR jobsCryptography jobs