Information Security Engineer - ITS4

Working Title: Information Security Engineer

Job Class: Information Technology Specialist 4

Agency: Minnesota IT Services

• Job ID : 82578

• Location : St. Paul

• Telework Eligible : Yes #LI-Hybrid

• Full/Part Time : Full-Time

• Regular/Temporary : Unlimited

• Who May Apply : Open to all qualified job seekers

• Date Posted : 12/31/2024

• Closing Date : 01/14/2025

• Hiring Agency/Seniority Unit : Minnesota IT Services

• Division/Unit : Office of Enterprise Tech / LOB General Govt Staff

• Work Shift/Work Hours : Day Shift

• Days of Work : Monday - Friday

• Travel Required : No

• Salary Range: $36.52 - $60.24 / hourly; $76,253 - $125,781 / annually

• Job Class Option : Information Security

• Classified Status : Classified

• Bargaining Unit/Union : 214 - Professional Employees (MAPE)

• FLSA Status : Exempt - Administrative

• Designated in Connect 700 Program for Applicants with Disabilities (~~~/) : Yes

The work you'll do is more than just a job.

At the State of Minnesota, employees play a critical role in developing policies, providing essential services, and working to improve the well-being and quality of life for all Minnesotans. The State of Minnesota is committed to equity and inclusion, and invests in employees by providing benefits, support resources, and training and development opportunities.

Join the 2,600+ professionals of Minnesota IT Services (~~~/) (MNIT) who connect Minnesotans to services that will improve their lives. This position will be part of the Enterprise Security team, which embeds security protection statewide.

The Information Security Engineer plays a vital role in protecting Minnesota's information systems against threats that may compromise their confidentiality, integrity, availability, and continuous operation. This position is responsible for supporting a comprehensive program designed to mitigate risks resulting from both intentional and accidental human actions.

Key responsibilities include developing and enforcing security policies, standards, and procedures; implementing secure systems engineering practices; managing change control processes; and coordinating incident reporting and response. The Information Security Engineer will also oversee security for hardware, networks, system software, applications, databases, and the physical protection of IT investments.

As a subject matter expert, the Information Security Engineer will champion a secure computing environment by establishing and maintaining policies and procedures that safeguard sensitive information. This includes designing and executing user awareness programs to promote security best practices and conducting regular security assessments in partnership with personnel across state agencies.

This role demands a proactive approach to mitigating risks, ensuring resilience, and maintaining the highest standards of information security for the State of Minnesota.

This position is currently eligible for full-time telework:

• Telework (~~~) for Minnesota IT Services allows an employee to perform work from a telework location and an employee may be required to be in the office based on business needs and other dependencies in Saint Paul, Minnesota.

• Only candidates located in Minnesota and bordering states (Iowa, North Dakota, South Dakota, or Wisconsin) are telework eligible.

This position was previously announced on 12/14/2024 - 12/28/2024. If you previously applied for this job, you do not need to reapply.

Minimum Qualifications

Candidates must clearly demonstrate all of the following qualifications in their resume. Resume tips here. (~~~) :

Position requires a minimum of four (4) years of IT related experience in information security, including policy development, secure systems engineering, change management, incident response, and safeguarding IT assets.

Experience must include

• Experience conducting vendor and software risk assessments.

• Experience completing System Security Plans (SSP's).

• Experience developing, implementing, and updating information system security policies, guidelines, and technical standards.

• Knowledge of and experience working with ensuring the security of Microsoft, Unix/Linux, internet applications/systems and hardware to secure these systems (i.e. firewalls, virtual private networks, encryption, digital certificates).

• Experience training end users on how to use enterprise software.

• Experience working across diverse business lines to resource and monitor remediation efforts to ensure compliance policies and standards or regulations.

• Ability to deliver effective verbal or written messages that facilitate a mutual understanding on both parties.

• Customer service skills that include active listening, empathy, and problem-solving.

A master's degree in Information Technology or an IT related field substitutes for three (3) years of experience, OR an IT related bachelor's degree substitutes for two (2) years, OR an IT related associate's degree substitutes for one (1) year.

Preferred Qualifications

• Familiarity with the Minnesota Data Practices Act, federal and state disclosure laws, and regulations governing data security and privacy.

• CISSP certification (Certified Information System Security Professional) or equivalent security credentials.

• Ability to communicate complex security requirements and solutions to both technical and non-technical internal and external customers, agency staff, vendors, and other governmental agencies.

• Experience in developing and delivering presentations and training sessions on computer security policies and procedures, including proficiency in PowerPoint.

• Familiarity with emerging technologies and their implications for enhancing system security.

• Negotiation and consensus building skills.

• Leadership and project management skills.

Additional Requirements

It is the policy of Minnesota IT Services that a successful candidate must pass all legally required checks prior to employment which may consist of the following:

• SEMA4 Records Check (applies to current and past state employees only)

• Criminal History Check

• Reference Check

• Social Security and Address Verification

• Education Verification

• CJIS Background Check

• Other legally required checks

Minnesota IT Services does not participate in E-Verify. Minnesota IT Services will not sponsor applicant for work visas, including F-1 STEM OPT extensions. All applicants must be legally authorized to work in the United States.

AN EQUAL OPPORTUNITY EMPLOYER

Minnesota State Colleges and Universities is an Equal Opportunity employer/educator committed to the principles of diversity. We prohibit discrimination against qualified individuals based on their race, sex, color, creed, religion, age, national origin, disability, protected veteran status, marital status, status with regard to public assistance, sexual orientation, gender identity, gender expression, or membership in a local commission as defined by law. As an affirmative action employer, we actively seek and encourage applications from women, minorities, persons with disabilities, and individuals with protected veteran status.

Reasonable accommodations will be made to all qualified applicants with disabilities. If you are an individual with a disability who needs assistance or cannot access the online job application system, please contact the job information line at ~~~ or email ~~~ . Please indicate what assistance is needed.