Working Title | Enterprise Information Security Administrator |
---|---|
Role Title | Info Technology Specialist III |
Role Code | 39113-SW |
FLSA | Exempt |
Pay Band | 06 |
Position Number | 26100116 |
Agency | VCCS-System Office |
Division | System Office (Div) |
Work Location | Chesterfield - 041 |
Hiring Range | 80,000-100,000 |
Emergency/Essential Personnel | No |
EEO Category | C-Technician |
Full Time or Part Time | Full Time |
Does this position have telework options? -Telework options are subject to change based on business needs- | |
Does this position have a bilingual or multilingual skill requirement or preference? | No |
Work Schedule | 40 hours Monday - Friday with additional hours during system maintenance windows as needed. Must be available for assigned on-call hours weekends and holidays as necessary. Telework options may be available for qualified talent outside of commuting range. |
Sensitive Position | No |
Job Description | The chief objective of this position is to provide on-going information security administration, information security support, and privileged access control for all enterprise applications and services. This position is responsible for the maintenance of PeopleSoft (ERP) application security roles and responsibilities and developing supporting documentation for use by all colleges. This position serves as backup security administrator for all Enterprise Application Systems. This position provides information security access control management and support to 25 state agencies across the state. The employee is expected to work outside of normal business days and hours to meet established business goals. The further expectation is that the nature of the work requires that the employee must be able to work fully remote and be on-call nights and weekends for investigation of information security related events or to address emergency information security access requests. |
Special Assignments | May be required to perform other duties as assigned. May be required to assist the agency or state government generally in the event of an emergency declaration by the Governor. |
KSA's/Required Qualifications | Virginia's community colleges have a 50-year track record of educational excellence and innovation to serve the needs of our citizens and strengthen the Commonwealth's economy. When Virginia's General Assembly established the Virginia Community College System in 1966, the need for a comprehensive system was well known. Over the two decades after the end of World War II, leaders in government, business, professional sectors, and academia had called for a new approach to providing educational opportunity. A key concern was Virginia's ability to develop a skilled and knowledgeable workforce to expand the state's economy. Today our community colleges give every Virginian the opportunity to gain a quality education. With 23 colleges on 40 campuses located throughout the state, Virginia's Community Colleges are committed to serving Virginia families, helping them acquire the knowledge and skills to seize the opportunities of today and tomorrow. Demonstrated knowledge of role based security principles and access controls. Demonstrated knowledge of relational database design and structured query language programming. Knowledge of enterprise resource planning (ERP) software security administration (Peoplesoft, SAP). Demonstrated knowledge of IT Security and IT Audit concepts and techniques. * Comprehensive knowledge of Virginia's security standards. * Knowledge of current trends and advancements in information systems and enterprise-wide security * Knowledge and implementation experience with commonly accepted industry standards and best practices, including ISO 17799 or 27002, NIST publications, ISF Best Practices, etc * Substantial experience with current legal and regulatory requirements around information security and privacy, including FERPA, PCI, SOX, HIPAA, GLBA, etc * Commonwealth of Virginia Data Classification and Data Retention Standards * Current trends and advancements in messaging and other related technologies. * Network Security (Firewalls, Microsoft Entra, Purview, etc). * Application Security (Application Firewall) * Internet, Intranet, Extranet, and Remote Access network design Standards and protocols. * Internet application Standards and protocols (Telnet, FTP, etc.). * Internet network Standards and protocols (TCP and UDP). * Desktop applications to include email, office software product, etc. * HTML, XML, SQL, CGI, SAS, REXX, Scripting, Perl, JAVA. * Global Directory Services (LDAP, X.500). * Electronic Messaging. * Directory Services Security automation * Web services Implementation and SSL security * Client/server technology. * Specialized hardware to include network routers, servers, etc. * Internet transport Standard and protocol (IP). * Virtual Private Networks (VPNs). * Internet Domain Name Server (DNS) Standards and protocols. * Unix & Microsoft Operating Systems. * SQL PL SQL programming Skills * Considerable skill in all the items listed above * Working skill in all the items listed above * Outstanding oral/written communication. Ability: * To learn new things and to apply them when and where appropriate. * To work on multiple tasks simultaneously. * To apply general work experience to a task. * To work independently or as part of a team. * To work in stressful situations. * To use logic to resolve complex problems. * To communicate and work well with everyone from the highest levels of technical Management to staff level. * Ability to understand a technical environment, and plan accordingly. * To find creative solutions to problems. * To analyze user needs and solve problems. * To be a self-starter and work independently. * To use logic to resolve complex problems. * Coordinate work of a team. * To coordinate multiple projects and priorities. * To define and develop solutions based on business requirements. Education & Experience: * Education and/or coursework in Information Systems, Computer Science or a related field * Experience working as an IT security analyst, administrator, or consultant. * Experience in project management or in systems analysis/design. |
Additional Considerations | * Comprehensive knowledge of Peoplesoft Application and Oracle Database security principles, operations, and procedures for applying role based security on the basis of least privilege and segregation of duties. * Demonstrated knowledge of Peoplesoft Campus Solutions, Finance, and Human Capital Management application systems. * Comprehensive knowledge of VCCS security standards * Considerable knowledge of PeopleSoft ERP (Student Information System (SIS), Administrative Information System (AIS), Human Capital Management System (HCMS) * Working knowledge of Oracle enterprise products. * Author of technology based white papers, models, guidelines and presentations for IT management, vendors, peers and other agencies. Peoplesoft security training will be provided to candidates that meet all other job requirements and pre-requisite knowledge. |
Operation of a State Vehicle | No |
Supervises Employees | No |
Required Travel | Travel as needed. |
Posting Number | CLS_3019P |
---|---|
Recruitment Type | General Public - G |
Number of Vacancies | 1 |
Position End Date (if temporary) | |
Job Open Date | 05/10/2024 |
Job Close Date | 05/24/2024 |
Open Until Filled | No |
Agency Website | www.vccs.edu |
Contact Name | |
Phone Number | |
Special Instructions to Applicants | In support of the Commonwealth's commitment to inclusion, we are encouraging individuals with disabilities to apply through the Commonwealth's Alternative Hiring Process. To be considered for this opportunity, applicants will need to provide their AHP Letter (formerly called a Certificate of Disability) provided by the Department for Aging & Rehabilitative Services (DARS), or the Department for the Blind & Vision Impaired (DBVI). Service-Connected Veterans may also apply via the AHP if they also provide an AHP Letter. To request an AHP Letter, use this link: https://www.dars.virginia.gov/drs/cpid/PWContact.aspx or call DARS at 800-552-5019, or DBVI at 800-622-2155 |
Additional Information | This position is a state classified position. All classified employees new to the Commonwealth of Virginia will serve a 12-month probationary period. The VCCS offers competitive compensation along with excellent benefits and opportunity for career development. |
Background Check Statement Disclaimer | The selected candidate's offer is contingent upon the successful completion of a criminal background investigation, which may include: fingerprint checks, local agency checks, employment verification, verification of education, credit checks (relevant to employment). Additionally, selected candidates may be required to complete the Commonwealth's Statement of Economic Interest. For more information, please follow this link: http://ethics.dls.virginia.gov/ |
EEO Statement | The Virginia Community College System, anEEOemployer, welcomes applications from people of all backgrounds and recognizes the benefits of a diverse workforce. Therefore, theVCCSis committed to providing a work environment free of discrimination and harassment. Employment decisions are based on business needs, job requirements and individual qualifications. We prohibit discrimination and harassment on the basis of race, color, religion, sex, national origin, age, sexual orientation, mental or physical disabilities, political affiliation, veteran status, gender identity, or other non-merit factors. |
ADA Statement | TheVCCSis anEOEand Affirmative Action Employer. In compliance with the Americans with Disabilities Acts (ADA and ADAAA), VCCS will provide, if requested, reasonable accommodation to applicants in need of access to the application, interviewing and selection processes. |
E-Verify Statement | VCCSuses E-Verify to check employee eligibility to work in the United States. You will be required to complete an I-9 form and provide documentation of your identity for employment purposes. |
Quicklink for Posting | https://jobs.vccs.edu/postings/73235 |