The Georgia Department of Revenue is seeking an Information Technology Security
Manager to be a lead member of the Information Security team. This position will
report directly to the Chief Information Security Officer and be responsible for
directing subordinate supervisors and staff in the development and delivery of
IT security standards, and best practices.
The ITSM will performs two core functions for the Department.
The first is overseeing the operations of the of the Security Operations Center
(SOC) and security analysts. The second is supporting the Compliance team in
maintaining and establishing a stronger security stance through policy,
architecture and training processes. Secondary tasks will include assisting in
the selection of appropriate security solutions, and oversight of any
vulnerability audits and assessments.
The IT SM is expected to interface with peers in the Systems and Network
departments as well as with the leaders of the business units to both share the
corporate security vision with those individuals and to solicit their
involvement in achieving higher levels of enterprise security through
information sharing and co-operation.
Responsibilities included but are not limited to:
• Overseeing the deployment, integration and initial configuration of all new
security solutions and of any enhancements to existing security solutions in
accordance with standard best operating procedures generically and the
enterprise’s security documents specifically.
• Creating and maintaining the department’s security architecture design.
• Working with our InfoSec Compliance team to create and maintain the
department’s Business Continuity Plan and Disaster Recovery Plan, where
appropriate.
• Implementing processes and methods for auditing and addressing information
security standards noncompliance to acceptable compliant environments.
• Providing support in maintaining the department’s security awareness training
program.
• Conducting studies within and outside the organization to ensure compliance
with industry and security standards and best practices.
• Managing and participating in the planning and implementation of security
administration for all IT projects and responsible for evaluation and selection
of security applications & systems.
• Making recommendations and assisting in the implementation of changes to work
methods and procedures to make them more effective or to strengthen security
measures.
• Continuing InfoSec’s efforts to maintain security documents, such as policies,
standards, baselines, guidelines and procedures.
• Experience with security and technology tools such as, SIEM tools, i.e.,
Splunk or endpoint security and threat intelligence tools.
• Supervise all investigations into problematic activity and provide on-going
communication with the CISO and InfoSec team.
• Supervise the design and execution of vulnerability assessments, penetration
tests and security audits.
•DOR will conduct a background check on all candidates considered for the
position. Individuals must be compliant with Georgia tax obligations.
•Individuals having any overdue and unpaid taxes, or any felony convictions (no
matter how long ago) will not be offered the position or hired.
•All employees will be fingerprinted.A
American Technology Consulting