.. Competitive benefits including health insurance and retirement savings plans, six paid holidays and PTO (paid time off) Continuing education to provide you opportunity to develop your full potential and enhance your clinical skills to provide education and care to your patients Access to an expansive .. read more
**Description**
*The Center for Disability Services offers hope, innovation and achievement to the people we support.*
*For 75 years, we have been one of upstate New Yorks largest providers of programs and services for individuals who have disabilities. Many of the innovative programs and vital services that we offer are not available elsewhere.*
We are searching for an **Information Security Officer** to join our agency!
The Information Security Officer is responsible for establishing and maintaining the enterprise, vision, strategy and program to ensure information assets and technologies are protected. This positions reports to the Chief Information Officer.
**Responsibilities:**
* In conjunction with the Chief Information Officer, develop and manage information and organizational security policies, standard and procedures to protect CFDSNY from internal and external threats and vulnerabilities
* Provide methodology for assessing organizational and information risks, gap analysis based on current controls
* Develop repeatable processes for risk tolerance, risk prioritization and mitigation
* Guide Security practices with 3rd party providers such as cloud services, technology vendors, or any other services outsources to a 3rd party to ensure compliance with CFDS policies and standards
* Identify information assets and categorizes according to criticality and sensitivity
* Formalize processes to catalog and maintain inventory of all software and hardware assets.
* Develop internal security training programs and maintain materials for end users
* Standardize subject access control to digital and physical assets, including data storage, applications and services, physical and network infrastructure
* Provide management and support of infrastructure planning and acceptance, malware protection, cryptography, PKI, backup and recovery, network and media management
* Assist business units in the secure development of new and existing business systems
* In conjunction with the Chief Information Officer, develop and implement plans to protect technology physical assets, including data centers and other controlled areas and controls for securing assets and equipment.
* In conjunction with the Chief Information Officer, develop an incident management Lifecycle process that includes detection and analysis, containment, eradication and recovery, and post-incident activity
* Collaborate with the business units at CFDSNY, assist in the development of a business continuity plan, continuity of operations plan, and disaster recovery plan
* Provide guidance for compliance and regulatory requirements
* Stay current on security practices, threat landscape, laws and regulations
**Requirements:**
* Bachelors Degree in field of Business Administration, Information Systems, Computer Science or related field is required
* At least 5 years of experience, specifically in information security of multiple platforms, operating systems, software and network protocols
* CISSP or CISM Certifications are preferred
* Knowledge of cyber security requirements of the following: HIPAA, FERPA, DSRIP
* Knowledge of ITIL based Service Management, Change Management, Problem Management and Incident Management best practices
* Ability to present complex technical concepts to a variety of audiences
* Communicate clearly and effectively orally and in writing
*At The Center for Disability Services, we dont just accept difference we celebrate it, support it, and thrive on it for the benefit of our employees and the people we support. We are proud to be an Equal Opportunity Employer and do not discriminate against any protected class of job applicant or employee in our employment practices.*