Information Security Officer

Essential Functions:

The Information Security Officer is a member of Judicial Information Systems (JIS) senior management and will direct strategy and operations for the protection of enterprise information assets. The position is responsible for developing plans, strategies, and roadmaps for addressing the need to introduce and maintain policies, processes, and technologies designed and implemented to ensure the effectiveness of the JIS security program. Reporting to the Deputy Chief Information Officer (DCIO) of JIS, the responsibility encompasses multiple disciplines, including security engineering, operations, administration, governance, risk management, and IT disaster preparedness/business continuity planning.

Education: Bachelor's Degree from an accredited college or university.

Experience: Six (6) years of work experience in the areas of IT security awareness, IT security engineering, IT risk management, or IT disaster preparedness. Three (3) years of experience supervising professional staff.

Note: Professional work experience as defined above may be substituted on a year for year basis for up to four (4) years of the required education.

Knowledge, Skills, and Abilities:

Information Security:

• Knowledge and a strong background in information security, risk management and security compliance in a large-scale enterprise environment. Must possess the skill to understand the Judiciary’s technical and business environment, have familiarity with national security standards, an in-depth knowledge of applicable laws and regulations as they relate to security, experience with business continuity, disaster recovery, auditing, risk management, vulnerability assessments, contractor/vendor negotiations & management and security incident management.
• Ability to act quickly to mitigate vulnerabilities, threats, or attacks against Judiciary information systems and resources.
• Skill and practical experience with operating a Security Operations Center (SOC) using a variety of security technologies, including vulnerability scanning systems and SIEM tools.
• Ability to stay actively involved with industry peers to stay current with security practices, guidelines, legislation, etc. Use this knowledge to implement and promote continuous improvement of Judiciary’s state of security.

Oversight & Functional Management:

• Ability to serve as an effective member of a senior management team and be an effective leader to a team of highly trained and skilled professionals and consultants. Must interact effectively with internal and external agencies, internal and external auditors, consultants, vendors, all disciplines within JIS and all business users of the Judiciary.
• Skill in effective communication and the ability to communicate with all levels of IT and business community and management and executive management both orally and in writing and effectively tailoring the communication to the needs and experience of the intended audience.
• Skill in solid leadership and management to include strategic planning, team building, collaboration, problem-solving and negotiation. Ability to effectively set and manage priorities. Exceptionally self- motivated and directed. Ability to motivate and develop a team-oriented, collaborative environment.
• Ability to provide adequate staff development, cross training, succession planning, performance reviews and mentoring to develop a customer focused, competent, and responsive team able to withstand resource losses while maintaining service levels.