|
Commonwealth of Pennsylvania |
|
|
POSITION DESCRIPTION FOR JOB POSTING |
|
|
Position Number: 00023250 |
Description Activated On: 8/11/2025 1:38:59 PM |
Position Purpose: Describe the primary purpose of this position and how it contributes to the organization’s objectives. Example: Provides clerical and office support within the Division to ensure its operations are conducted efficiently and effectively. Position is assigned to the Security Operations section that involves administrative and advanced technical work directing security hardware and software infrastructure for Enterprise security administration, planning, and design. All activities of this position are based on and support of the public policy objectives of the Governor's Policy Office as well as security and network policies of the Enterprise Information Security Office (EISO) in support of the Commonwealth. |
|
Description of Duties: Describe in detail the duties and responsibilities assigned to this position. Descriptions should include the major end result of the task. Example: Types correspondence, reports, and other various documents from handwritten drafts for review and signature of the supervisor. Configures, implements and maintains security policies at access points including the Internet, delivery center firewalls, data center load balancers, delivery center network intrusion prevention, delivery center network threat prevention, and remote access VPN. Uses software tools to test and certify the connections as compliant with the policies. Directs team (contractors) that manages and oversees procedures for identifying network security policy violations. Directs the automation for the review of logs. Reviews and manages the determination and documentation of appropriate actions and channels of communication in the event of suspected violations of network security. Supervises System Administrators for various firewalls, load balancers and network monitoring systems administered by OA/EISO. Oversees the installation, configuration, testing, and maintenance of operating systems, databases, security and related software. Ensures that the latest security patches are maintained. Works with the delivery centers and vendors concerning security and network access requirements. Serves as a central point of contact to coordinate and implement network access and ensure network security. Assists in security efforts regarding the development and implementation of secure Commonwealth systems and applications. Works with EISO and appropriate groups to review, revise, and create policies related to Enterprise security. Directs team of contractors participation as a part of the Commonwealth Computer Incident Response Team with the EISO to perform response functions to security violations reported or observed. Investigates security incidents and determines course of action for resolution. Follows established incident response processes and procedures. Works with entities involved to resolve and coordinate appropriate response. Tracks, analyzes, and report security incidents. Supervises investigating, testing, and documenting of network accesses and security measures to ensure compliance with policies and standards. Coordinates and supervises Change Management requests, Incident management and Service Request management using ServiceNow ITSM tool. Participates in the Change Management process and meetings. Adheres to established service management processes and procedures. Manages and reports time spent on all work activities. Determines time estimates and schedule for own work and resolves issues in a timely manner. Serves as point of escalation for security operations issues; manages resolution of problems and provides status and incident reporting to management. Monitors security news articles and alerts for new security risks, vulnerabilities, and virus information. Mitigates security risks and vulnerabilities through appropriate response actions. Reviews and monitors all Enterprise security policies and procedures; communicates and manages enforcement of policies and procedures to the delivery center. Assists in the development of the strategic OA/NUTSO technology/services data plan, translating Commonwealth and delivery center business plans and needs into comprehensive technical plans and solutions that is cognizant of other Commonwealth IT requirements. Plans and coordinates proof of concepts to test new security methods, technologies, and products. Evaluates new products. Makes acquisition recommendations. Modifies policies and procedures as required. Serves on RFP committees as requested to help agencies, delivery centers and state government to define network security needs and evaluate vendors’ proposals. Performs project management or consulting for data network and emerging technologies procurements, including drafting specifications and evaluating vendor responses. Troubleshoots and resolves network and application problems and technical issues. Directs and manages the implementation and testing of disaster recovery procedures related to Commonwealth security systems. In the event of an actual disaster, supervises and assists in the recovery and activation of all security systems. Responds to the designated alternate or secondary location when directed in response to a catastrophic incident. Provides support through 24x7 helpdesk for security questions, changes, and troubleshooting. Coordinates tickets within team and other groups as necessary. Possesses Commonwealth mobile device for communications with senior management and appropriate contacts. Travel as required, including overnight stays. Performs other duties as assigned. |
Decision Making: Describe the types of decisions made by the incumbent of this position and the types of decisions referred to others. Identify the problems or issues that can be resolved at the level of this position, versus those that must be referred to the supervisor. Example: In response to a customer inquiry, this work involves researching the status of an activity and preparing a formal response for the supervisor’s signature. This position involves conferring with the delivery center on their network and security requirements, evaluating new products and emerging technologies to determine their effective use within the managed network, and ensuring ongoing compliance with enterprise-wide standards as they evolve. It requires timely resolution of network connectivity issues, either through direct involvement or by assigning them to subordinate staff, independently resolving problems without technical guidance. The role includes directly managing and assigning work to section staff, reviewing and enforcing all Enterprise security policies and procedures across Commonwealth agencies, and managing periodic audits to ensure compliance with Commonwealth security standards. Additionally, it directs and manages Incident Response functions for the Commonwealth Enterprise Network to address security violations, oversees team planning and implementation of security changes based on change requests and system requirements, participates in approval processes as needed, and evaluates solution updates while assisting in determining timelines for production implementation. |
||||||||||||||||||||
Requirements Profile: Identify any specific experience or requirements, such as a licensure, registration, or certification, which may be necessary to perform the functions of the position. Position-specific requirements should be consistent with a Special Requirement or other criteria identified in the classification specification covering this position. Example: Experience using Java; Professional Engineer License Experience: Licenses, registrations, or certifications: 1. N/A 2. N/A 3. N/A 4. 5. 6. |
||||||||||||||||||||
Essential Functions: Provide a list of essential functions for this position. Example: Transports boxes weighing up to 60 pounds.
|