Commonwealth of Pennsylvania

POSITION DESCRIPTION FOR JOB POSTING

Position Number:  00003200

Description Activated On:  1/2/2025 4:47:48 PM

Position Purpose: Describe the primary purpose of this position and how it contributes to the organization’s objectives. Example: Provides clerical and office support within the Division to ensure its operations are conducted efficiently and effectively. 

 This position is responsible for ensuring that IT and related commonwealth policies are adhered to by enterprise architects, application designers, product owners, and other stakeholders associated with the Conservation and Environment IT Delivery Center (CEDC). This position will track compliance with policies and will file for exceptions in accordance with Office of Administration protocol. As part of adhering to policy, this position will have primary responsibility for initiating IT projects in the commonwealth’s project intake system. A significant aspect of this work is the incumbent’s role in increasing compliance and reducing risk through consulting on project design and development and working with teams to implement improved processes.

Description of Duties: Describe in detail the duties and responsibilities assigned to this position. Descriptions should include the major end result of the task. Example: Types correspondence, reports, and other various documents from handwritten drafts for review and signature of the supervisor.

Serves as the CEDC expert on the IT Policy Exception Review Process and the gatekeeper for requests for exceptions.

Works closely with subject matter experts if an exception to commonwealth IT policy may be necessary; identifies the need for the exception; develops the justification for the request and prepares all necessary documentation; completes the request form; and shepherds the request through the IT Policy Exception process.

Tracks the status of submitted IT Policy Exceptions, which may include expedited requests.

Maintains an inventory of IT Policy Exceptions requested on behalf of CEDC, including expiration dates.

Monitors end dates associated with approved IT Policy Exceptions and coordinates the renewal of the exception or ensures that current conditions support the exception’s expiration.

As part of IT policy compliance, serves as the primary authority for CEDC on the commonwealth’s IT project intake process.

Submits requests for new IT projects in the enterprise project intake system.

Monitors IT project requests and responds to requests for information.

Works with teams both in CEDC and the enterprise to ensure IT project submissions adhere to the applicable policies.

Serves as a consultant to project teams and delivery center management to ensure that IT policies are considered as new projects are being undertaken.

Serves as the primary point of contact within CEDC on governance, risk, and compliance.

Partners with the CEDC Information Security Office, as well as the enterprise Governance, Risk, and Compliance Group, to improve CEDC compliance with commonwealth IT policies.

Leads efforts across the CEDC to improve practices and procedures in support of increasing overall compliance.

Works to reduce the number of exceptions requested by the CEDC by promoting project design and management consistent with current commonwealth IT policy.

Recommends changes to projects to ensure compliance with policy.

Reviews requests for the purchase of IT services to ensure the services are compliant with IT policies.

Educates members of the CEDC and its business partners on the existence of IT policies and the need to adhere to IT policies.

Keeps abreast of current and future projects and operational activities within the CEDC in order to consult effectively on IT policy impacts.

Keeps abreast of IT policy changes issued from the Office of Administration and communicates changes to the CEDC community.

Serves on teams and committees where a strategic view of IT policy compliance is required.

Performs other duties as assigned.

Decision Making: Describe the types of decisions made by the incumbent of this position and the types of decisions referred to others. Identify the problems or issues that can be resolved at the level of this position, versus those that must be referred to the supervisor. Example: In response to a customer inquiry, this work involves researching the status of an activity and preparing a formal response for the supervisor’s signature.

The incumbent can consult with internal and external stakeholders with regard to IT Policy compliance and exceptions with minimal supervision. Request for IT Policy Exceptions submitted through the review process must be approved by the employee’s chain of command.

Requirements Profile: Identify any specific experience or requirements, such as a licensure, registration, or certification, which may be necessary to perform the functions of the position. Position-specific requirements should be consistent with a Special Requirement or other criteria identified in the classification specification covering this position. Example: Experience using Java; Professional Engineer License

Experience:



Licenses, registrations, or certifications:

1.   N/A
 
2.   N/A
 
3.   N/A
 
4.  
 
5.  
 
6.  

Essential Functions: Provide a list of essential functions for this position. Example: Transports boxes weighing up to 60 pounds.
 
 1. Communicates effectively in writing.
 2. Communicates effectively orally.
 3. Understand how to access and interpret commonwealth IT policies.
 4. Builds effective working relationships.
 5. Keeps abreast of advances in information technology.
 6. Tracks the status of submitted IT Policy Exceptions.
 7. Applies effective project management practices.
 8. Understands customer business needs and culture.
 9. Uses standard office equipment and software.
 10. Understands and applies policies to current and future projects.