Job Description

Job Description and Duties

Under the general direction of the Chief Information Security Officer, an Information Technology (IT) Manager II for California High-Speed Rail Authority, the IT Manager I (Security Operations Manager) is a hands-on technology professional responsible for the direction, oversight, and operations of the Authority’s Information Security Program and personnel. The Security Operations Manager also ensures the protection of Authority information assets and compliance with federal and state information security mandates, policies, standards, and procedures. The incumbent serves as the backup Information Security Officer for the Authority.

You will find additional information about the job in the .

Working Conditions

Part-time telework is available for this position for California residents based on the requirements of the position and may be discussed during the interview process. Hiring interviews may be available virtually, using teleconferencing or video conferencing options.

While working on site, the incumbent works in a professional office environment, in a climate-controlled cubicle which may fluctuate in temperature and is under artificial light. Incumbent will be required to use a computer, mouse, and video display terminal and will be required to sit for long periods of time at a computer screen. Employee must be able to focus for long periods of time, multi-task, adapt to changes in priorities and complete tasks or projects with short notice. Employees may be required to travel outside of their workstation to perform general tasks.

Special Requirements

A Statement of Qualifications (SOQ) is required for this position. The SOQ must be no more than three (3) pages, single-spaced, with one-inch margins, in 12-point font, organized and numbered as reflected below. The SOQ must discuss the applicant’s applicable experience as it pertains to each item below. Applicants who do not follow these requirements may be disqualified from the hiring process. A resume is required but does not take the place of the SOQ. Cover letters and other materials will not be considered in the place of the SOQ.

You must respond to all the following items:

1. Describe a security incident or major security initiative you personally led. What was your role, how did you influence outcomes, and what did you learn that changed how you approach leadership today?

1. Provide a specific example of when you had to balance urgent vulnerability remediation with ongoing business operations. What trade-offs did you make, and how did you communicate those decisions?

1. Share an instance where you developed or enforced a policy that initially met resistance. How did you gain buy-in, and what was the measurable impact on compliance or operations?

1. Give an example of a technology or security tool you evaluated and either adopted or rejected. What criteria did you use, and how did your decision impact the organization one year later?

1. Describe a time when you addressed a performance issue or skills gap within your team. How did you handle the situation, and what did you do to ensure long-term growth for the individual and the team?

NOTE: Artificial intelligence (AI) tools such as ChatGPT, website searches, and third-party reviewers can be helpful in researching responses to the SOQ; however, by submitting your application for this position, you understand and acknowledge the SOQ you submit is your own work, in your own words, and accurately reflects your knowledge, skills, abilities, and experiences. Submitting an SOQ that is not your own may be cause for disqualification from the hiring process.

Desirable Qualifications

In addition to evaluating each candidate's relative ability, as demonstrated by quality and breadth of experience, the following factors will provide the basis for competitively evaluating each candidate:

• Associate or bachelor’s degree in an IT-related field of study.
• Three (3) years of related experience in information security or equivalent combination of education and experience.
• Possession of one of the following active certifications:

–CompTIA Security+

–Certified Cloud Security Professional (CCSP)

–Certified Information Security Auditor (CISA)

–Certified Information Security Manager (CISM)

–Certified Information Systems Security Professional (CISSP)

–GIAC Continuous Monitoring Certification (GMON)

• Demonstrate comprehensive understanding of the NIST Cybersecurity Framework, SAM, and SIMM.
• Knowledge of information security incident response processes and procedures.
• Working knowledge of cloud computing platforms such as Amazon Web Services (AWS), Microsoft Azure, or Google Cloud.
• Knowledge of security devices such as network firewalls, web application firewalls, web content filters, and intrusion prevention/detection systems.
• Knowledge of networking concepts and practices.
• Exhibit a talent and passion for information security; is creative and resourceful in solving problems.
• Ability to meet business needs through innovative solutions and demonstrate a service-oriented, customer relations-sensitive attitude.
• Ability to establish and maintain cooperative working relationships with all levels of staff and management; communicate effectively with peers, other technical teams, executives, external partners, vendors, and others.
• Ability to manage multiple high-priority initiatives in a fast-paced achievement-oriented environment and work under pressure to meet deadlines.
• Working knowledge of project management practices, the system development lifecycle, etc.
• Ability to prepare and produce clear and concise documentation (e.g., processes and procedures, plans, information security policies, etc.).

Benefits

The State of California offers a comprehensive benefits package that includes health, vision, dental, a retirement pension, a telework stipend if applicable, and an array of other options.

Benefit information can be found on the CalHR website and the CalPERS website.

Application Information

The STD. 678 is required, and each section must be filled out completely and thoroughly. Please do not include your Social Security Number, date of birth, veteran status, personal photos, LEAP information, or any other personally identifying information on any documents in your application package.

Using the online application system as specified in the announcement is the preferred method of applying for civil service job opportunities; however, applicants may instead apply by way of U.S. mail, parcel delivery or courier service, or in person, as set forth in this announcement. Dates printed on envelopes by mobile barcodes or equivalent mobile print technology are not acceptable proof of the date the application and any other required documents or materials were filed.

If applying via postal mail or by dropping off your application, applicants must include JC-504487 and Security Operations Manager, 311-420-1405-001 in the 'Job Title' section of the STD. 678 to be considered for this position. Please indicate on the STD 678 your basis of eligibility in the "Explanations" field (i.e. SROA, surplus, reemployment, reinstatement, transfer, or list eligible.)

Surplus/SROA candidates must provide a copy of their surplus/SROA letter with their application. Consideration may be given to applicants on another Department's employment list, provided the criteria are met to transfer the eligibility from the employment list to the Authority's employment list. Training and Development assignments are not being considered at this time.

NOTE: To be considered for this job opportunity, applicants must be reachable on an employment list, have transfer eligibility, or have reinstatement eligibility. If you are new to California State service and you do not have list eligibility, you must take the exam for this classification. To gain employment list eligibility, please  click here to access the exam bulletin.

Required Application Package Documents

The following items are required to be submitted with your application. Applicants who do not submit the required items timely may not be considered for this job:

• Current version of the State Examination/Employment Application STD Form 678 (when not applying electronically), or the Electronic State Employment Application through your Applicant Account at All Experience and Education relating to the Minimum Qualifications listed on the Classification Specification should be included to demonstrate how you meet the Minimum Qualifications for the position.
• Resume is required and must be included.
• Statement of Qualifications - A Statement of Qualifications (SOQ) is required to apply. Please see above “Special Requirements” section for SOQ instructions.

Job Tags

Permanent employment, Full time, Part time, Work at office, Remote work,

Similar Jobs