Job Description
Are you a seasoned cybersecurity expert passionate about public service? The Department of Technology Services is seeking a strategic and analytical Senior Cybersecurity Policy Analyst to fortify our state's digital infrastructure. You will play a pivotal role in shaping the security posture of public sector systems, ensuring that our constituents' data remains protected while enabling digital transformation.
This position offers a rare opportunity to influence statewide security governance in a collaborative, mission-driven environment.
Responsibilities
- Develop and maintain comprehensive cybersecurity policies, standards, and procedures aligned with NIST frameworks.
- Conduct cross-departmental risk assessments to identify vulnerabilities in public infrastructure.
- Lead incident response coordination and strategic communication with executive stakeholders.
- Evaluate emerging technologies and provide security recommendations for state procurement initiatives.
- Audit compliance with state and federal data privacy regulations (e.g., CCPA, HIPAA).
- Facilitate security awareness training programs for diverse government workforce segments.
- Liaise with law enforcement and federal intelligence agencies regarding regional threat landscapes.
Qualifications
- Bachelor's degree in Information Security, Computer Science, or a related public administration field.
- Minimum of 5-7 years of experience in cybersecurity policy, governance, or risk management.
- Proven track record of managing security compliance within large-scale or government environments.
- Professional certifications such as CISSP, CISM, or CRISC are highly preferred.
- Deep understanding of NIST 800-53, FISMA, and related regulatory standards.
- Exceptional technical writing and verbal communication skills for executive-level presentations.
- Ability to obtain and maintain a high-level government security clearance.