Massachusetts Information Technology Jobs

Search for Jobs in Information Technology
MassHire JobQuest Logo

Job Information

State of Massachusetts Deputy Chief Information Security Officer in Quincy, Massachusetts

The Massachusetts Executive Office of Health and Human Services (EOHHS) is the largest secretariat in MA state government, comprised of 16 agencies with over 20,000 employees statewide. EOHHS services directly touch the lives of slightly more than 1 in 4 residents in the Commonwealth — some of our most vulnerable children, youth, adults, and elders. EOHHS provides access to medical and behavioral health care, substance misuse treatment, long term services and support, and nutritional and financial benefits to those with low incomes. We connect elders, individuals with disabilities, and veterans with employment opportunities, housing, and supportive services. We steer troubled youth towards a more successful path and do everything possible to keep children in our child welfare system safe. We support individuals who are developmentally disabled, mentally ill, blind, deaf, or hard of hearing. EOHHS is seeking to hire aDeputy Chief Information Security Officer (CISO)that will work under the direction of the Secretariat CISO and will be primarily responsible in manage day-to-day operations and direction of the EOHHS Security Office in one of the three major verticals in the Security Office: 1) maintaining the general acceptable control environment throughout EOHHS (Secretariat Security Liaisons); 2) managing the continuous monitoring program (Secretariat Security Analysts); and 3) managing the forensics and technology group (Forensic Analysts). The Deputy Chief Security Officer will be responsible for managing Security Office staff including, but not limited to oversight and coordination of team schedules and attendance, management of workload priorities, approve staff time (if required), and completion of yearly EPRS’s. The primary work location for this role will be at 100 Hancock Street Quincy, Massachusetts 02171. The work schedule for this position isMonday thru Friday, 9:00AM to 5:00PM. This position would be expected to follow a hybrid model of reporting to work that combines in-office workdays and work from home days as needed. Schedules are subject to change based on the operational needs of the business. Additional Responsibilities and Duties: * Assist with development and management of a general security control framework, including policies and procedures to meet industry standard information security requirements that adhere to: o Federal standards o EOTSS requirements o Legal, 3rd party regulatory, and contractual drivers o Agency practice * Assist with development and management of a continuous monitoring program designed to assess: o Ongoing compliance with the general security control framework o Ongoing appropriate management of application vulnerabilities in the EOHHS environment o Ongoing appropriate management of various Agency processes which could impact the integrity of the EOHHS environment. * Assist with oversight of an audit and compliance unit that assists with; security reviews of agency applications based on control sets used during audits, and prioritizing reviews based on audit schedules and sensitivity of data. * Assist with oversight of a forensic unit that assists with management of a portfolio of tools designed to detect and monitor aberrant or unacceptable use on EOHHS information resources; and performing investigations of incidents to find root cause and engage in effective remediation and future preventative actions * Interface with Agency and Secretariat leadership and staff to ensure propagation of good security practices and to assist with agency requests for security expertise which may include assistance with procurements, system and/or process evaluations, and modifications to systems and/or processes. Preferred Knowledge, Skills & Abilities: * 5 years of proven experience and knowledge in information security and IT compliance with emphasis on cloud and application security, integration technologies and distributed computing platforms. * 3 years of managerial or supervisory experience leading multiple teams in a large matrix enterprise environment. experience managing in a union environment is a plus. * Extensive knowledge and exposure of various security frameworks including NIST, HIPAA, HITrust, FedRAMP, and ISO * Proficient knowledge of state and federal security rules and regulations that apply to Information Security. * Experience leading decision-making processes in a matrixed environment * Demonstrated knowledge of various security frameworks including NIST, HIPAA, HITrust, FedRAMP, and ISO * Excellent written and verbal communication skills, with a proven ability to translate security and risk to all levels of the business in technical and non-technical terms * Ability to develop and maintain effective working relationships with a variety of stakeholders * Strong analytic, organizational and documentation skills Education and Certifications: * Bachelor’s Degree in computer science, Information Systems, Business Administration or other related field, or equivalent work experience. * Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) Certification OR other relevant IT Security certifications is preferred. Total Compensation: As an employee of the Commonwealth of Massachusetts you are offered a great career opportunity influencing a wide-spectrum of services to the diverse populations we serve - but it's more than a paycheck. The State's total compensation package features an outstanding set of employee benefits which you should consider towards your overall compensation, including: * 75% state paid medical insurance premium * Reasonable Dental and Vision Plans * Flexible Spending Account and Dependent Care Assistance programs * Low cost basic and optional life insurance * Retirement Savings: State Employees' Pension and a Deferred Compensation 457(b) plan * 12 paid holidays per year and competitive Sick, Vacation and Personal Time * Tuition Benefit for employee and spouse at state colleges and universities * Short-Term Disability and Extended Illness program participation options * Incentive-based Wellness Programs * Professional Development and Continuing Education opportunities * Qualified Employer for Public Service Student Loan Forgiveness Program Pre-Offer Process: A criminal and tax history background check will be completed on the recommended candidate as required by the regulations set forth by the Executive Office of Health and Human Services prior to the candidate being hired. For more information, please visit Education, licensure and certifications will be verified in accordance with the Human Resources Division’s Hiring Guidelines. Education and license/certification information provided by the selected candidate(s) is subject to the Massachusetts Public Records Law and may be published on the Commonwealth’s website. If you require assistance with the application/interview process and would like to request an ADA accommodation, please click on the link and complete the Reasonable Accommodation Online Request Form For questions, please the contact the Office of Human Resources at 1-800-510-4122 and select option #2. MINIMUM ENTRANCE REQUIREMENTS: Applicants must have at least (A) six (6) years of full-time or, equivalent part-time, professional, administrative, supervisory, or managerial experience in business administration, business management, public administration, public management, clinical administration or clinical management of which (B) at least two (2) years must have been in a supervisory or managerial capacity or (C) any equivalent combination of the required experience and substitutions below. Substitutions: I. A certificate in a relevant or related field may be substituted for one (1) year of the required (A) experience. II. A Bachelor’s degree in a related field may be substituted for two (2) years of the required (A) experience. III. A Graduate degree in a related field may be substituted for three (3) years of the required (A) experience. IV. A Doctorate degree in a related field may be substituted for four (4) years of the required (A) experience. Executive Order #595:As a condition of employment, successful applicants will be required to have received COVID-19 vaccination or an approved exemption as of their start date. Details relating to demonstrating compliance with this requirement will be provided to applicants selected for employment. Applicants who receive an offer of employment who can provide documentation that the vaccine is medically contraindicated or who object to vaccination due to a sincerely held religious belief may make a request for exemption. An Equal Opportunity / Affirmative Action Employer. Females, minorities, veterans, and persons with disabilities are strongly encouraged to apply. Job: Information Systems and Technology* *Organization: Exec Office Of Health and Human Services *Title: *Deputy Chief Information Security Officer * Location: *Massachusetts-Quincy - 100 Hancock Street Requisition ID: 2200059M