Deputy Chief Information Security Officer of Operations & Technology (SPSA Opt.3)

Agency: Department of Innovation and Technology
Class Title: SENIOR PUBLIC SERVICE ADMINISTR - 40070 
Skill Option: Management Information System/Data Processing/Telecommunications 
Bilingual Option: None 

Posting Date: 02/06/2025
Closing Date/Time: 02/21/2025
Salary: Anticipated Starting Monthly Salary: $12,917-$13,773 ($155,000-$165,276/Annually)
Job Type: Salaried
Category: Full Time 
County: Sangamon
Number of Vacancies: 1
Plan/BU: Exempt

****************A RESUME IS REQUIRED FOR THIS JOB POSTING****************

Please attach a DETAILED Resume/Curriculum Vitae (CV) to the MY DOCUMENTS section of your application. You WILL NOT be considered for the position if you attach a CMS100, CMS100b or any other document that is not a Resume or CV.

Job Posting Identification # 44518

Why Work for Illinois?

Working with the State of Illinois is a testament to the values of compassion, equity, and dedication that define our state. Whether you’re helping to improve schools, protect our natural resources, or support families in need, you’re part of something bigger—something that touches the lives of every person who calls Illinois home.

No matter what state career you’re looking for, we offer jobs that fit your life and your schedule—flexible jobs that provide the gold standard of benefits. Our employees can take advantage of various avenues to advance their careers and realize their dreams. Our top-tier benefits and great retirement packages can help you build a rewarding career and lasting future with the State of Illinois.

Are you looking for a rewarding career with an organization that values their staff? The Department of Innovation & Technology (DoIT) is seeking to hire qualified candidates with the opportunity to work in a dynamic, creative thinking, problem solving environment. This position serves as the Deputy Chief of Information Security Officer managing the Security Operations & Technology Division of DoIT. In this role you will develop policy for the division and assist in the development of enterprise-wide policy governing operations and the administration of the Information Security Office. In addition, you will oversee the cybersecurity programs including managing information security implications in the areas of Security Operations, Security Engineering and Security Programs. This position supervises a team of highly skilled IT professionals and serves as technical liaison for the operation of information systems from an information and cyber security perspective. If you possess these knowledges, skills, abilities and experience, we invite you to apply for this position to join the DoIT Team!

As a State of Illinois employee, you receive a comprehensive benefits package including:

• Competitive Group Insurance benefits including health, life, dental and vision plans
• Flexible work schedules (when available and dependent upon position)
• 10 -25 days of paid vacation time annually (10 days for first year of state employment)
• 12 days of paid sick time annually which carryover year to year
• 3 paid personal business days per year
• 13-14 paid holidays per year dependent on election years
• 12 weeks of paid parental leave
• Pension plan through the State Employees Retirement System
• Deferred Compensation Program – voluntary supplemental retirement plan
• Optional pre-tax programs -Medical Care Assistance Plan (MCAP) & Dependent Care Assistant Plan (DCAP)
• Tuition Reimbursement Program and Federal Public Service Loan Forgiveness Program eligibility

For more information regarding State of Illinois Benefits follow this link: https://www2.illinois.gov/cms/benefits/Pages/default.aspx

Essential Functions

• Subject to management approval, serves as the Deputy Chief Information Officer (CISO) managing the Security Operations & Technology Division of the Department of Innovation & Technology (DoIT).
• Serves in a leadership role supporting Department and Division initiatives, services, projects and operations.
• Makes recommendations to the Chief Information Security Officer (CISO) proposing the development of strategic operational plans, programs and the introduction of initiatives and innovations to improve security operations and capabilities.
• Serves as full-line supervisor.
• Serves as technical liaison and subject matter expert for the operation of information systems from an information and cyber security perspective.
• Speaks on behalf of the Chief Information Security Officer (CISO) at meetings, conferences, and other situations on security operations and technology issues.
• Keeps abreast of new developments in the Information Technology (IT) by continuing education through attending meetings, training sessions, seminars and conferences to increase familiarity with and maintain current on emerging security issues, risks, and vulnerabilities, IT products, vendors, techniques and procedures as well as information security industry best practices.
• Performs other duties as required or assigned which are reasonably within the scope of the duties enumerated above.
   

Minimum Qualifications

• Requires a Bachelor’s degree in management information systems, Information Technology Security, Information Technology Risk Management or directly related Information Technology field. 
• Requires five (5) years of professional  experience in management information systems or Information Technology Security in a large public or business organization. 
• Requires four (4) years of professional experience supervising a team of IT professionals. 
   

Preferred Qualifications

• Five (5) years of professional experience with information security frameworks, including the National Institute of Standards and Technology (NIST) Cybersecurity Framework, information security controls including NIST SP 800-53 and the Center for Internet Security Critical Controls.
• Five (5) years of professional experience in computer networking concepts and protocols, network security methodologies and emerging security issues, risks, and vulnerabilities.
• Five (5) years of professional experience with multiple compliance regulations including Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Security Standards Council (PCI SSC), Federal Information Security Modernization Act (FISMA) and Personal Identification Information (PII).
• Five (5) years of administrative experience with multiple control standards and security/risk standards including National Institute of Standards and Technology (NIST), Information Technology Infrastructure Library (ITIL), Control Objectives for Information and Related Technologies (CoBIT) and the Committee of Sponsoring Organizations (COSO). 
• Thorough knowledge of emerging security issues, risks, and vulnerabilities and what constitutes a network attack and the relationship to both threats and vulnerabilities.
• Thorough knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.
• Thorough knowledge of project management concepts and information security industry best practices.
• Four (4) years of managerial experience evaluating programs and personnel performance, developing budgets, and determining resource requirements.
• Demonstrated verbal and written communication skills to present technical information with clarity and precision. 
• Certification in one (1) or more of the following:
  • Certified Information Security Systems Professional
  • Certified Information Security Manager
  • Certified Information Systems Auditor
  • Certified Authorization Professional
  • Certified Business Continuity Professional
  • Certified in Risk and Information Systems Control.  
  • Certified Authorization Professional
     

Conditions of Employment

NOTE: Applicants must possess the ability to meet ALL the following conditions of employment, with or without reasonable accommodation, to be considered for this position. 

• Requires the ability to verify identity.
• Requires employment authorization to accept permanent full-time position with the State of Illinois.
• Requires the ability to ability to successfully complete a fingerprint-based background check as defined in the Department of Justice, Federal Bureau of Investigation Criminal Justice Information Services (CJJS) Security Policy, Internal Revenue Service Publication I 075 and background check done by the Illinois State Police.
• Requires the ability to lift and carry objects or equipment weighing up to ten (10) pounds. This is considered sedentary work as defined by the U.S. Department of Labor (20 CFR 404.1567(a)). Sedentary work involves lifting no more than 10 pounds at a time and requires occasional lifting, carrying, walking, and standing.  
• Requires the ability to travel.
• Requires the ability to serve in an on-call capacity.
• Requires the ability to work overtime including scheduled, unscheduled, short notice, evenings, weekends and holidays.
• Requires adherence to the revolving door restrictions outlined in 5 ILCS 430/5-45. Consequently, employees should be aware that in the event of receiving a non-State employment offer during state employment or within one year immediately following the termination of State employment, they are required to inform the Office of the Executive Inspector General (OEIG) for the Agencies of the Illinois Governor before accepting such non-State employment. Failure to notify the OEIG may result in the imposition of a fine.
• Requires compliance with the provisions outlined in section 4A-101 of the Illinois Governmental Ethics Act, necessitating the occupant of this position to file of a Statement of Economic Interest. Pursuant to the Illinois Governmental Ethics Act (5 ILCS 420/4A et seq.), specific state officials and employees are required to annually submit Statements of Economic Interest to the Office of the Secretary of State, which will be accessible to the public for examination and copying. Employees subject to this requirement must also file a Supplemental Statement of Economic Interest with the Executive Ethics Commission, as specified in Executive Order 15-09. Failure to submit these statements in a timely manner may result in fines and penalties.
• Ability to obtain one (1) or more of the following within twelve (12) months of assuming the position: 
  • Certified Information Security Systems Professional
  • Certified Information Security Manager
  • Certified Information Systems Auditor
  • Certified Authorization Professional
  • Certified Business Continuity Professional
  • Certified in Risk and Information Systems Control
  • Certified Authorization Professional

The conditions of employment listed are incorporated and/or related to any duties included in the position description. 
 

Work Hours:  Monday-Friday 8:30am-5:00pm 
Work Location: 120 W Jefferson St Springfield, IL 62702-5170 
Agency Contact:  Brittany.Vespa2@Illinois.gov
Posting Group: Leadership & Management 

Revolving Door:
Certain provisions of the revolving door restrictions contained in 5 ILCS 430/5-45 apply to this position. As a result, the employee should be aware that if offered non-State employment during State employment or within one year immediately after ending State employment, the employee shall, prior to accepting any such non-State employment offer, notify the Office of the Executive Inspector General for the Agencies of the Illinois Governor (“OEIG”) or may be subject to a fine.

Statement of Economic Interests: 

This position is subject to Statement of Economic Interests filing as required by the Illinois Governmental Ethics Act. 

The Department of Innovation & Technology (DolT) is the state's IT agency delivering an enterprise approach to statewide technology, innovation and telecommunication services, as well as policy and standards development, lifecycle investment planning, and cybersecurity services. With over 1,500 employees, DolT delivers IT services and innovative solutions to customer agencies to improve services provided to Illinois residents, DolT offers employees the opportunity to advance their careers, develop new skills and reach their potential, both personally and professionally. DoIT is committed to promoting and preserving a workplace culture that embraces diversity and inclusion. We welcome and value employees with different backgrounds, life experiences and talents. It is the collective sum of our individual differences that provides a broad perspective, leading to greater innovation and achievement. In recruiting for our team, we recognize the unique contributions of each applicant regardless of culture, ethnicity, race, national origin, sex, gender identity and expression, age, religion, disability, and sexual orientation.

The main form of communication will be through email. Please check your “junk mail”, “spam”, or “other” folder for communication(s) regarding any submitted application(s). You may receive emails from the following addresses:

• donotreply@SIL-P1.ns2cloud.com
• systems@SIL-P1.ns2cloud.com