|
Commonwealth of Pennsylvania |
|
|
POSITION DESCRIPTION FOR JOB POSTING |
|
|
Position Number: 00088807 |
Description Activated On: 10/10/2025 1:58:04 PM |
Position Purpose: Describe the primary purpose of this position and how it contributes to the organization’s objectives. Example: Provides clerical and office support within the Division to ensure its operations are conducted efficiently and effectively. This position is responsible to safeguard the Pennsylvania Liquor Control Board’s (PLCB) information system assets and data by identifying and responding to potential and actual IT security threats and incidents. |
|
Description of Duties: Describe in detail the duties and responsibilities assigned to this position. Descriptions should include the major end result of the task. Example: Types correspondence, reports, and other various documents from handwritten drafts for review and signature of the supervisor. Monitors IT security applications and tools to detect anomalies, assess alerts, and differentiate false positives from actual threats. Investigates alerts to identify root causes, resolves or escalates incidents to the Chief Information Security Officer (CISO), and ensures compliance with established policy and procedures. Supports the PLCB vulnerability management program by scheduling and conducting vulnerability scans, identifying system vulnerabilities, and compiling results into reports. Defines corrective actions and identifies residual risks, creates and implements compensating controls to mitigate vulnerabilities, and monitors ongoing progress. Monitors and analyzes vulnerability dashboards and reports using established tools. Reviews and delivers security reports that monitor risks across IT functions. Ensures compliance with Management Directives, Office of Administration IT policies, PCI-DSS, Auditor General requirements, and industry best practices. Collaborates with PLCB IT managers to enforce security policies and procedures. Supports security team members in their assigned areas. Assists business areas staff with secure management of PLCB employee business partner access to PLCB data and systems, both on-premises and in the cloud. Assists desktop, server, and network personnel as required. Remains current with emerging threats, industry trends, and best practices. Performs other related duties as assigned. |
Decision Making: Describe the types of decisions made by the incumbent of this position and the types of decisions referred to others. Identify the problems or issues that can be resolved at the level of this position, versus those that must be referred to the supervisor. Example: In response to a customer inquiry, this work involves researching the status of an activity and preparing a formal response for the supervisor’s signature. This position performs independent research of complicated technical issues, defining options, recommending solutions, implementing corrective actions to resolve technical problems. Assists senior IT staff with defining and implementing operational objectives to ensure security of PLCB data and security programs. |
||||||||||||||||||||
Requirements Profile: Identify any specific experience or requirements, such as a licensure, registration, or certification, which may be necessary to perform the functions of the position. Position-specific requirements should be consistent with a Special Requirement or other criteria identified in the classification specification covering this position. Example: Experience using Java; Professional Engineer License Experience: Licenses, registrations, or certifications: 1. N/A 2. N/A 3. N/A 4. 5. 6. |
||||||||||||||||||||
Essential Functions: Provide a list of essential functions for this position. Example: Transports boxes weighing up to 60 pounds.
|