Wt: Chief Information Security Officer - 41500700

Requisition No: 846546 

Agency: Florida Gaming Control Commission

Working Title: WT: CHIEF INFORMATION SECURITY OFFICER - 41500700

 Pay Plan: SES

Position Number: 41500700 

Salary:  $90,000 - $103,000 

Posting Closing Date: 02/28/2025 

Total Compensation Estimator Tool

FLORIDA GAMING CONTROL COMMISSION

Office of Information Technology

 

Chief Information Security Officer

 Hiring Salary: $90,000 - $103,000

Position Number: 41500700

***Open Competitive***

 

*Anticipated Vacancy*

 

The Florida Gaming Control Commission seeks a dynamic information technology leader to join our unique agency as its Chief Information Security Officer. This key position allows the successful candidate to champion the Commission’s information technology initiatives, driving innovation and efficiency while ensuring that technology solutions effectively support the Commission’s mission and enhance the delivery of services to Floridians.

 

Overview:

The Florida Gaming Control Commission (“Commission”) is a five-member commission comprised of 198 full-time employees. Our mission is to preserve and protect the integrity of gaming activities through fair regulation, licensing, effective criminal investigation, and enforcement.

 

The Commission regulates legal gambling in the state, including licensed pari-mutuel wagering facilities, cardrooms, and slot machine gaming facilities. In addition, the Commission investigates criminal gambling activity through the Division of Gaming Enforcement and enforces the state’s criminal gambling laws.

 

The Division of Gaming Enforcement is a criminal justice agency comprised of sworn law enforcement officers and criminal intelligence analysts handling complex cases involving RICO, money laundering, and illegal gambling throughout the state.

 

The Commission offers a supportive work environment that fosters growth and collaboration.

 

Position Responsibilities:

This position serves as the Chief Information Security Officer (CISO) and Network Manager for the Florida Gaming Control Commission and is responsible for maintaining and enforcing the Agency’s information security policies and designing and maintaining network infrastructure. This position is responsible for developing and implementing an information security program, which includes procedures and policies designed to protect enterprise communications, systems, and assets from both internal and external threats. Duties include, but are not limited to:

Security:

• Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program.
• Assist resource owners and IT staff in understanding and responding to security audit failures reported by auditors. Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and are in compliance with policies and audit requirements. Design, coordinate and oversee security testing procedures to verify the security of systems, networks, and applications, and manage the remediation of identified risks.
• Develop and enhance an information security management framework.
• Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems, and services.
• Provide leadership to the enterprise's information security organization.
• Partner with business stakeholders across the company to raise awareness of risk management concerns.
• Assist with the overall business technology planning, providing current knowledge and future vision of technology and systems.

Network:

• Oversee the development/design, implementation, and maintenance of FGCC’s enterprise network infrastructure.
• Monitor network performance and troubleshoot issues.
• Conduct regular network maintenance and updates.
• Implement and manage network monitoring tools and systems.
• Performance Optimization: Analyze network performance metrics and optimize network configuration. Identify and resolve network bottlenecks and performance issues.
• Documentation and Reporting: Maintain detailed documentation of network configurations, procedures, and changes. Generate regular reports on network performance, security incidents, and project status.
• Disaster Recovery and Business Continuity: Develop and implement network disaster recovery and business continuity plans.
• Compliance: Ensure network operations comply with relevant regulations and standards.

Team Management:

• Lead and supervise network and security staff and engineers.
• Provide training and support to team members.

 

Required Knowledge, Skills, and Abilities:

• Knowledge of distributed processing operations, software, procedures, and equipment.
• Knowledge of Information Security, principles, and best practices.
• Knowledge of problem-solving techniques.
• Knowledge of computers and software.
• Knowledge of the principles, practices, and techniques of computer systems analysis.
• Knowledge of the principles of networking and telecommunication.
• Knowledge of telecommunications principles, equipment, procedures, and terminology.
• Knowledge of audit procedures.
• Knowledge of the principles of cryptography and cryptanalysis.
• Knowledge of application and system technology security testing.
• Ability to develop and maintain policies, procedures, standards, and guidelines.
• Ability to process information logically and solve problems.
• Ability to develop training programs related to distributed processing operations and procedures.
• Ability to monitor, troubleshoot, and resolve problems with distributed computer systems components.
• Ability to identify and define user needs.
• Ability to communicate effectively.
• Ability to establish and maintain effective working relationships with others.
• Ability to prioritize, plan, organize and coordinate work assignments.
• Ability to author technical reports.
• Ability to analyze security requirements and relate them to the appropriate security controls.

 

Minimum Qualifications:

• Four (4) years of information security experience with at least three (3) years responding to security incidents. An associate's degree can substitute for 2 years of the direct experience.

• At least one (1) year managing security projects, efforts, or teams.
• Experience with various regulatory requirements, laws, and security frameworks, such as NIST, ISO 27001, PCI DSS, HIPAA, HITECH, SOX, GDPR, CCPA, CIS, or SOC 2.
• Sufficient experience in the Duties & Responsibilities described above can be considered to satisfy any of the minimum requirements.
• Ability to manage a project, internal/external contractors’ team, vendors, budget and initiatives.

 

Preferred Qualifications, not required:

• A bachelor’s degree from an accredited college or university in information technology, computer engineering, business administration or a related field.
• Industry recognized certifications such as: CISSP, CISM, CCSP, OSCP, CEH/CND, CySA+, Sec+, or related GIAC certification.
• Experience securing cloud environments like Microsoft Azure, Amazon Web Services, or Google Cloud Platform.
• Experience with firewalls and IAM/PAM systems and vendors.

 

Where you will work:

This position is located in Tallahassee, Florida.

 

Benefits of Working for the State of Florida:

Working for the State of Florida is more than a paycheck. The state offers a comprehensive compensation package for employees that features a highly competitive set of benefits including:

• Low premium health, dental, vision, life, and supplemental coverage options!
• Paid personal time that includes annual leave, sick leave, nine paid holidays, and one personal holiday!
• Paid administrative leave for mentoring, volunteering, voting, and more!
• Family planning support that includes adoption benefits and paid/unpaid leave options for family and medical responsibilities!
• Retirement plans that include employer contributions (For more information, please click www.myfrs.com)!
• Deferred compensation plans!
• FREE basic life insurance plus additional options for you, your spouse, and children!
• Flexible Spending Accounts!
• Tuition waivers that allow eligible employees to take up to six credit hours per semester, tuition free at any state university or state college!

 

IMPORTANT NOTICES:

• The Florida Gaming Control Commission has employment restrictions for all commission employees referenced in sections 16.713 and 16.715, Florida Statutes.

• This position requires a Level 2 background screening and participation in direct deposit. You will be required to provide your Social Security Number (SSN) and/or State Issued Photo Identification in order to conduct this background screening.

 

Applicants are required to apply through the People First system by the closing date, by applying online. All required documentation must be received by the closing date of the advertisement. If you have any questions regarding your application, you may call 1-877-562-7287.

 

The Florida Gaming Control Commission provides equal opportunities for applicants and employees regardless of actual or perceived race, ethnicity, national origin, religion, sex, sexual orientation, gender identity or expression, age, disability, pregnancy, genetic information, veteran status, marital status, and any other classification or status protected by law. The Commission does not show partiality or grant any special status to any applicant, employee, or group of employees unless otherwise required by law.

 

Special Reminders:

Male applicants born on or after October 1, 1962, will not be eligible for hire or promotion unless they are registered with the Selective Services System (SSS) before their 26th birthday, or have a Letter of Registration Exemption from the SSS. For more information, please visit the SSS website: http://www.sss.gov.

 

If you are a retiree of the Florida Retirement System (FRS), please check with the FRS on how your current benefits will be affected if you are re-employed with the State of Florida. Your current retirement benefits may be canceled, suspended or deemed ineligible depending upon the date of your retirement.

 

We hire only U. S. citizens and lawfully authorized alien workers. Our agency participates in the E-Verify System which is a federal government electronic database available for employers to use to verify the identity and employment eligibility of all persons hired to work in the United States.

 

 

The Florida Gaming Control Commission is committed

to increasing recruitment and hiring of individuals with disabilities and improving employment outcomes.

The State of Florida is an Equal Opportunity Employer/Affirmative Action Employer, and does not tolerate discrimination or violence in the workplace.

Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must notify the agency hiring authority and/or People First Service Center (1-866-663-4735). Notification to the hiring authority must be made in advance to allow sufficient time to provide the accommodation.

The State of Florida supports a Drug-Free workplace. All employees are subject to reasonable suspicion drug testing in accordance with Section 112.0455, F.S., Drug-Free Workplace Act.