|
Commonwealth of Pennsylvania |
|
|
POSITION DESCRIPTION FOR JOB POSTING |
|
|
Position Number: 00258349 |
Description Activated On: 6/24/2025 2:40:13 PM |
Position Purpose: Describe the primary purpose of this position and how it contributes to the organization’s objectives. Example: Provides clerical and office support within the Division to ensure its operations are conducted efficiently and effectively. This position is assigned to the User Gateway Services section involving administrative and advanced technical work directing security hardware and software infrastructure for Public Safety and Enterprise security administration, planning, and design. All activities of this position are based on and support of the public policy objectives of the Governor's Policy Office as well as security and network policies of the Enterprise and Network, Unified Telecommunications, and Security Operations Division (NUTSO) in support of the Commonwealth. This person provides technical and administrative control over the security operations solutions supporting firewall management applications, remote access, incident response and their associated infrastructure. This position works with Public Safety delivery center and the Enterprise to enable them to meet their business objectives while lowering the risk of misuse of information and denial of service. |
|
Description of Duties: Describe in detail the duties and responsibilities assigned to this position. Descriptions should include the major end result of the task. Example: Types correspondence, reports, and other various documents from handwritten drafts for review and signature of the supervisor. This is an advanced and highly technical position within the OA/NUTSO Security Operations Section. This individual is responsible for configuring, implementing, and maintaining security policies at access points to Public Safety networks including the Internet, delivery center firewalls, delivery center network intrusion prevention, delivery center network threat prevention, and Remote Access/RADIUS/VPN. Uses software tools to test and certify the connections as compliant with the policies. Administers, Manages and Maintains various firewalls and network monitoring systems administered by OA/NUTSO. Oversees the installation, configuration, testing, and maintenance of operating systems, databases, security and related software. Ensures that the latest security patches are maintained. Leads efforts to design, manage and oversee procedures for identifying network security policy violations. Directs the review of logs. Reviews and manages the determination and documentation of appropriate actions and channels of communication in the event of suspected violations of network security. Works with the delivery center and vendors concerning security and network access requirements. Serves as a central point of contact to coordinate and implement network access and ensure network security. Assists in security efforts regarding the development and implementation of secure Commonwealth systems and applications. Works with EISO and appropriate groups to review, revise, and create policies related to Enterprise security. Acts as Public Safety team lead as part of the Commonwealth Computer Incident Response Team with the EISO to perform response functions to security violations reported or observed. Investigates security incidents and determines course of action for resolution. Follows established incident response processes and procedures. Works with entities involved to resolve and coordinate appropriate response. Tracks, analyzes, and report security incidents. Leads the team with investigating, testing, and documenting of network accesses and security measures to ensure compliance with policies and standards. Submits and works Change Management requests, Incident management and Service Request management using ServiceNow ITSM tool. Adheres to established service management processes and procedures. Adheres to the generation of knowledge documents for inclusion in an established knowledge management system. Reports time spent on all work activities. Determines time estimates and schedule for own work and resolves issues in a timely manner. Monitors security newsletters and alerts for new security risks, vulnerabilities, and virus information. Reviews and monitors all Enterprise security policies and procedures; communicates and manages enforcement of policies and procedures to the delivery center. Assists in the development of the strategic OA/NUTSO technology/services data plan, translating Commonwealth and delivery center business plans and needs into comprehensive technical plans and solutions that is cognizant of other Commonwealth IT requirements. Participates with proof of concepts to test new security methods, technologies, and products. Evaluates new products. Makes acquisition recommendations. Modifies policies and procedures as required. Assists in the implementation and testing of disaster recovery procedures related to Commonwealth security systems. In the event of an actual disaster, assists in the recovery and activation of all security systems. Responds to the designated alternate or secondary location when directed in response to a catastrophic incident. Administers support operations for the Public Safety VPN/RADIUS infrastructure through access controls in firewall policies, VPN ACLs, monitoring of logs and maintaining appropriate VPN/RADIUS infrastructure patching and code levels. Perform account management support for all PSP employees using CUPPS and Active Directory. Managing and configuring data access for File & Print servers. Providing incident and installation support for all PSP network printers. Provides support through 24x7 on call rotation for security questions, changes, and troubleshooting. Coordinates tickets within team and other groups as necessary. Possesses Commonwealth mobile device for communications with senior management and appropriate contacts. Travels as required, including overnight stays. Performs other duties as assigned. |
Decision Making: Describe the types of decisions made by the incumbent of this position and the types of decisions referred to others. Identify the problems or issues that can be resolved at the level of this position, versus those that must be referred to the supervisor. Example: In response to a customer inquiry, this work involves researching the status of an activity and preparing a formal response for the supervisor’s signature. This position is responsible for evaluating all network security policies and making highly technical system changes and decisions that affect the Delivery Center and the Enterprise. Determines when existing policy should be revised or new policy needs to be drafted. Determines the appropriate security changes to be made based on change requests and system requirements. |
||||||||||||||||||||
Requirements Profile: Identify any specific experience or requirements, such as a licensure, registration, or certification, which may be necessary to perform the functions of the position. Position-specific requirements should be consistent with a Special Requirement or other criteria identified in the classification specification covering this position. Example: Experience using Java; Professional Engineer License Experience: Licenses, registrations, or certifications: 1. N/A 2. N/A 3. N/A 4. 5. 6. |
||||||||||||||||||||
Essential Functions: Provide a list of essential functions for this position. Example: Transports boxes weighing up to 60 pounds.
|