Security Compliance/Risk Engineer

Recruitment #211014-UNCB-223

Introduction

A resume and cover letter must be submitted with your application.

The Office of Management and Enterprise Services (OMES) is dedicated to providing excellent service, expert guidance, and continuous improvement in support of our partners’ goals. We are a highly-qualified workforce committed to serve those who serve Oklahomans and make government run in the most efficient, innovative manner possible. Achieving this mission takes a collaborative, agile, respectful team with humble leaders who make a difference and get things done. 

For more information about OMES, please visit our website.  

OMES is seeking a full time Security Compliance/Risk Engineer. This is an unclassified position in state government, located in Oklahoma City.OMES offers a comprehensive Benefits Package, including a generous benefit allowance to offset the cost of insurance premiums for employees and their eligible dependents. For more information about the benefit allowance [click here]. The annual salary for this position is up to $75,000, based on education and experience.

This position is a key, client-focused role responsible for supporting our Oklahoma Cyber Command program. Oklahoma Cyber Command Security Defense Engineers should be passionate about customer service, compliance, third-party risk and cybersecurity technologies as well as eager to make a difference in the cybersecurity industry. This position will be charged with identifying defensive solutions for systems, designing controls for new projects, ensuring the successful completion of projects and acting as an escalation point for issues from the Cyber Command Operations teams.

Oklahoma Cyber Command unifies the direction of cyberspace operations, strengthens Oklahoma’s cyberspace capabilities and integrates and bolsters Oklahoma’s cyber expertise. Oklahoma Cyber Command Security Defense Engineers are assigned responsibilities for designing and implementing leading defensive strategies and practices to protect the state’s information assets.

Position Responsibilities
• Support the process of standardizing and streamlining annual and ad-hoc information security audits and assessments in compliance with SSA, FTI, CJIS, HIPAA, etc.
• Remains current on best practices and acts as the Oklahoma Cyber Command’s technical resource for security assessment and regulatory compliance.
• Assist in the coordination and review of third-party security assessments.
• Assist in the monitoring and enforcement of compliance to security policies.
• Assist with contract and vendor management issues related to security requirements and projects.
• Assist with oversight and execution of third-party and internal risk management procedures.
• Aid in the development, evaluation and implementation of governance and compliance processes to mitigate cybersecurity risk and ensure protection of State of Oklahoma assets and information.
• Consults with stakeholders to ensure that State of Oklahoma data, processes and technology are designed for data protection and compliance.
• Investigates and documents information security compliance issues.
• Provide technical assistance for writing of standard operating procedures (SOPs) and State standards.

MINIMUM QUALIFICATIONS

Requirements include Security+ certification and a bachelor’s degree from an accredited college/university and six years of information security experience; or an equivalent combination of education and experience, substituting 12 semester hours in computer science or management information systems course work for each year of the required experience.

Preference will be given to candidates who possess
• Industry recognized certification (CISSP, CISA, CISM, etc.)
• 3+ years of experience in utilizing security-relevant tools, systems, and applications (SMG, IPS, Proxy, CASB, Encryption, PAM, MFA/SSO, etc.)
• PowerShell, Bash, Python scripting, and coding abilities.

NOTES

Please read instructions carefully and include all required documents when you submit your application.

No additional information will be accepted after the application has been submitted.

Conclusion

Veteran’s preference points apply only for initial appointment in the classified service.