Job Description

Job Description and Duties

Under the general administrative and policy direction of the Chief Information Security Officer, an IT Manager II, the IT Manager I (Security Operations Manager) is a hands-on technology professional responsible for the direction, oversight, and operations of the Authority’s Information Security Program and personnel. The Security Operations Manager also ensures the protection of Authority information assets and compliance with federal and state information security mandates, policies, standards, and procedures. The incumbent serves as the backup Information Security Officer for the Authority.

This advertisement is posted as Open Until Filled and the advertisement will remain open until the vacancy is filled. Cut-offs for applications will be every other Monday starting September 2nd, 2024, and applications will be reviewed per those cut-off dates. Hires can be made at any time based on the applications received by the cut-off dates.

You will find additional information about the job in the .

Working Conditions

Part time telework, up to three days per week, is available based on the requirements of the position for California residents and may be discussed during the interview process. Hiring interviews may be available virtually, using teleconferencing or video conferencing options.

While working on-site, the incumbent works in a professional office environment, in a climate-controlled area which may fluctuate in temperature and is under artificial light. The incumbent will be required to use a computer, mouse, and keyboard, and will be required to sit for long periods of time at a computer screen. The incumbent must be able to focus for long periods of time, multi-task, adapt to changes in priorities, and complete tasks or projects with short notice. The incumbent must develop and maintain cooperative working relationships and display professionalism and respect for others in all contact opportunities.

Special Requirements

A Statement of Qualifications (SOQ) is required and must be included. An SOQ is a narrative that describes your qualifications for this position. The SOQ must be no more than two (2) pages long, single-spaced, with one-inch margins, in 12-point font, organized and numbered as reflected below. You must respond to all the following items:

1. Describe your knowledge and experience collecting metrics and data to create reports and dashboards demonstrating the current state of an Information Security program.

2. Describe your knowledge and experience as the lead or as a member of a Cyber Security Incident Response teams. If you have not been a member of a Cyber Security Incident Response team, please describe your knowledge of what a Cyber Security Incident Response team is.

3. Describe your experience documenting a company or department’s adherence to security control frameworks such as NIST 800-53, NIST Cybersecurity Framework, SIMM-5300, etc.

4. Describe your knowledge and experience developing and maintaining information security policies, standards, procedures, and guidelines.

Applications received without the SOQ may not be considered. A resume is required but does not take the place of the SOQ.

Desirable Qualifications

In addition to evaluating each candidate's relative ability, as demonstrated by quality and breadth of experience, the following factors will provide the basis for competitively evaluating each candidate:

• Associate or bachelor’s degree in an information technology related field of study.

• 3 years of related experience in information security or equivalent combination of education and experience.

• Possession of the one of the following active certifications is desirable:

• CompTIA Security+

• Certified Cloud Security Professional (CCSP)

• Certified Information Security Auditor (CISA)

• Certified Information Security Manager (CISM)

• Certified Information Systems Security Professional (CISSP)

• GIAC Continuous Monitoring Certification (GMON)

• Demonstrate comprehensive understanding of the National Institute of Standards and Technology (NIST) Cybersecurity Framework, California State Administrative Manual (SAM), and California Statewide Information Management Manual (SIMM).

• Knowledge of information security incident response processes and procedures.

• Working knowledge of cloud computing platforms such as Amazon Web Services (AWS), Microsoft Azure, or Google Cloud.

• Knowledge of security devices such as network firewalls, web application firewalls, web content filters, and intrusion prevention/detection systems.

• Knowledge of networking concepts and practices.

• Exhibit a talent and passion for information security; is creative and resourceful in solving problems.

• Ability to meet business needs through innovative solutions and demonstrate a service oriented, customer relations-sensitive attitude.

• Ability to establish and maintain cooperative working relationships with all levels of staff and management; communicate effectively with peers, other technical teams, executives, external partners, vendors, and others.

• Ability to manage multiple high priority initiatives in a fast-paced achievement-oriented environment and work under pressure to meet deadlines.

• Working knowledge of project management practices, the system development lifecycle, etc.

• Ability to maintain confidentiality of sensitive tasks, assignments, and information.

• Ability to prepare and produce clear and concise documentation (e.g., processes and procedures, plans, information security policies, etc.).

• Willingness to work excess hours to achieve business results.

• Display enthusiasm for continuous learning.

Benefits

The State of California offers a comprehensive benefits package that includes health, vision, dental, a retirement pension, a telework stipend if applicable, and an array of other options.

Benefit information can be found on the CalHR website and the CalPERS website.

Application Information

The STD. 678 is required and each section must be filled out completely and thoroughly. Please do not include your Social Security Number, date of birth, veteran status, personal photos, LEAP information, or any other personally identifying information on any documents in your application package.

Using the online application system as specified in the announcement is the preferred method of applying for civil service job opportunities; however, applicants may instead apply by way of U.S. mail, parcel delivery or courier service, or in person, as set forth in this announcement. Dates printed on envelopes by mobile barcodes or equivalent mobile print technology are not acceptable proof of the date the application and any other required documents or materials were filed.

If applying via postal mail or by dropping off your application, applicants must include JC-440901 Security Operations Manager, 311-420-1405-001 in the 'Job Title' section of the STD. 678 to be considered for this position. Please indicate on the STD 678 your basis of eligibility in the "Explanations" field (i.e. SROA, surplus, reemployment, reinstatement, transfer, or list eligible.)

Surplus/SROA candidates must provide a copy of their surplus/SROA letter with their application. Consideration may be given to applicants on another Department's employment list, provided the criteria are met to transfer the eligibility from the employment list to the Authority's employment list. The High-Speed Rail Authority does not currently offer Training and Development opportunities at this time.

NOTE: To be considered for this job opportunity, applicants must be reachable on an employment list, have transfer eligibility, or have reinstatement eligibility. If you are new to California State service and you do not have list eligibility, you must take the exam for this classification. To gain employment list eligibility, please  click here to access the exam bulletin.

Required Application Package Documents

The following items are required to be submitted with your application. Applicants who do not submit the required items timely may not be considered for this job:

• Current version of the State Examination/Employment Application STD Form 678 (when not applying electronically), or the Electronic State Employment Application through your Applicant Account at All Experience and Education relating to the Minimum Qualifications listed on the Classification Specification should be included to demonstrate how you meet the Minimum Qualifications for the position.
• Resume is required and must be included.
• Statement of Qualifications - A Statement of Qualifications (SOQ) is required to apply. Please see above “Special Requirements” section for SOQ instructions.

Job Tags

Permanent employment, Full time, Part time, Remote job, 3 days per week,

Similar Jobs