Commonwealth of Pennsylvania

POSITION DESCRIPTION FOR JOB POSTING

Position Number:  00074924

Description Activated On:  6/26/2026 5:14:58 PM


Position Purpose:
Describe the primary purpose of this position and how it contributes to the organization’s objectives. Example: Provides clerical and office support within the Division to ensure its operations are conducted efficiently and effectively. 

This position is assigned to the Employment, Banking and Revenue (EBR) delivery center Security Operations section involving administrative and advanced technical work directing security hardware and software infrastructure for EBR and Enterprise security administration, planning, and design. All activities of this position are based on and support of the public policy objectives of the Governor's Policy Office as well as security and network policies of the Enterprise and Enterprise Information Security Office (EISO) in support of the Commonwealth.

This person provides technical control over the security operations supporting firewall management applications, load balancing/proxy and their associated infrastructure. This position works with EBR and the Enterprise to enable them to meet their business objectives while lowering the risk of misuse of information and denial of service.

Description of Duties:
Describe in detail the duties and responsibilities assigned to this position. Descriptions should include the major end result of the task. Example: Types correspondence, reports, and other various documents from handwritten drafts for review and signature of the supervisor.

This is an advanced and highly technical position within the OA/EISO Security Operations Section. This individual is responsible for configuring, implementing, and maintaining security policies at access points to EBR networks including the Internet, delivery center firewalls, delivery center network intrusion prevention, delivery center network threat prevention, and Remote Access/VPN. Uses software tools to test and certify the connections as compliant with the policies.

Leads efforts to design, manage and oversee procedures for identifying network security policy violations. Directs the automation for the review of logs. Reviews and manages the determination and documentation of appropriate actions and channels of communication in the event of suspected violations of network security.

Administers various firewalls and network monitoring systems administered by OA/EISO. Oversees the installation, configuration, testing, and maintenance of operating systems, databases, security and related software. Ensures that the latest security patches are maintained.

Works with the delivery center and vendors concerning security and network access requirements. Serves as a central point of contact to coordinate and implement network access and ensure network security. Assists in security efforts regarding the development and implementation of secure Commonwealth systems and applications.Works with EISO and appropriate groups to review, revise, and create policies related to Enterprise security.

Acts as EBR team lead as part of the Commonwealth Computer Incident Response Team with the EISO to perform response functions to security violations reported or observed. Investigates security incidents and determines course of action for resolution. Follows established incident response processes and procedures. Works with entities involved to resolve and coordinate appropriate response. Tracks, analyzes, and report security incidents.

Leads the team with investigating, testing, and documenting of network accesses and security measures to ensure compliance with policies and standards.

Submits and works Change Management requests, Incident management and Service Request management using ServiceNow ITSM tool. Adheres to established service management processes and procedures.

Adheres to the generation of knowledge documents for inclusion in an established knowledge management system.

Reports time spent on all work activities. Determines time estimates and schedule for own work and resolves issues in a timely manner.

Monitors security newsletters and alerts for new security risks, vulnerabilities, and virus information.

Reviews and monitors all Enterprise security policies and procedures; communicates and manages enforcement of policies and procedures to the delivery center.

Assists in the development of the strategic OA/EISO technology/services data plan, translating Commonwealth and delivery center business plans and needs into comprehensive technical plans and solutions that is cognizant of other Commonwealth IT requirements.

Participates with proof of concepts to test new security methods, technologies, and products. Evaluates new products. Makes acquisition recommendations. Modifies policies and procedures as required.

Assists in the implementation and testing of disaster recovery procedures related to Commonwealth security systems. In the event of an actual disaster, assists in the recovery and activation of all security systems. Responds to the designated alternate or secondary location when directed in response to a catastrophic incident.

Provides support through 24x7 on call rotation for security questions, changes, and troubleshooting. Coordinates tickets within team and other groups as necessary. Possesses Commonwealth mobile device for communications with senior management and appropriate contacts.

Contribute to and consistently follow established service management processes and procedures.

Support and apply established knowledge management processes and procedures while contributing to their ongoing improvement.

Ensure the consistent application of established digital accessibility regulations and standards and assist in maintaining their effectiveness.

Travels as required, including overnight stays.

Performs other duties as assigned.

Decision Making:
Describe the types of decisions made by the incumbent of this position and the types of decisions referred to others. Identify the problems or issues that can be resolved at the level of this position, versus those that must be referred to the supervisor. Example: In response to a customer inquiry, this work involves researching the status of an activity and preparing a formal response for the supervisor’s signature.

Advises technical workgroups in the determination, development, and implementation of Enterprise infrastructure standards and policies. Works closely with agency management and vendors to select, evaluate and integrate new technologies or services.

Organizes, directs, and oversees the preparation of technical reports of activities, risk, and analysis reports, recommendations and position papers. Prepares written proposals and makes executive level presentations to management.

The incumbent is given wide latitude concerning decision making that may affect the day to day operations for which he or she is responsible.

Receives general direction from management but works independently and must exercise independent judgment and initiative in the performance of duties.

Requirements Profile: Identify any specific experience or requirements, such as a licensure, registration, or certification, which may be necessary to perform the functions of the position. Position-specific requirements should be consistent with a Special Requirement or other criteria identified in the classification specification covering this position. Example: Experience using Java; Professional Engineer License

Experience:



Licenses, registrations, or certifications:

1. 
  N/A
 
2.  
N/A
 
3.  
N/A
 
4.  

 
5.  

 
6.  


Essential Functions
: Provide a list of essential functions for this position. Example: Transports boxes weighing up to 60 pounds.
 
 1. Develops, administers, implements, and enforces IT security standards, guidelines, and procedures.
 2. Interprets and advises on policies and state and federal laws and regulations.
 3. Uses administrative principles and practices applicable to IT development and support.
 4. Maintains a familiarity with industry standard software application programs and stay abreast of new technologies in the IT field.
 5. Prepares and presents oral and written reports.
 6. Develops and conducts oral presentations and conduct information technology training.
 7. Interacts with individuals at all levels of government.
 8. Uses a computer and standard office equipment.
 9. Communicates effectively orally and in writing.
 10. Travels as required.