Duties
The Illinois State Board of Education is looking for an IT Security Specialist to plan, analyze, design, configure, test, implement, maintain, and support the Agency's network and application security. While reporting to Infrastructure management on network security issues (patch management, cyber-security, evaluation of internal controls, etc.), this position would also assist the Software Solutions department with security activities surrounding application access (web-based, LAN, and mainframe) and vulnerability testing. The position requires a detail-oriented, results-driven individual with strong technical, organizational, and communications skills. Chicago applicants must be willing to occasionally travel to the Springfield office.
- Identifies and communicates current and emerging security threats.
- Evaluates existing internal controls, makes decisions based on industry best practices and leading technologies, and formulates elements to mitigate threats as they emerge.
- Creates solutions that balance business needs with IT and cyber-security requirements.
- Scans Syslogs, IPS/IDS, servers, etc., in search of intrusions.
- Investigates suspected or confirmed malware/virus/Trojan/TrickBot or other malicious infections, researches such attacks, and remediates issues as they occur.
- Networks with vendors and other governmental bodies regarding successful incident management and reports findings for management consideration.
- Performs internal and external penetration tests, reviews results, plans and coordinates remediation of indicated issues with developers.
- Performs supplier/vendor SOC report reviews, creation/updates of policy and procedure documentation.
- Develops patch management program for laptops, desktops, and servers.
- Recommends enhancements and change, coordinates updates and new software purchases to maintain leading edge anti-virus, anti-malware, and SIEM in providing maximum internal network protection.
- Develops and aligns IT security and data privacy/security standards, policies, and practices that: A) protect ISBE's network and data with effective computer/infrastructure/network/hardware/software security controls; B) safeguards, secures, and controls access to hardware, software, and personal confidential information stored in ISBE's systems; and c) defines well-designed and well-managed controls for safeguarding, securing, and controlling access to sensitive hard copy data.
- Promotes and lobbies for adoption and implementation of IT security policies and procedures.
- Coordinates audit inquiries regarding IT security policies and practices and reports to IT department management teams.
- Facilitates meetings regarding IT security.
- Interprets, documents, plans, and prioritizes data privacy and data security issues to strengthen confidentiality of agency data solutions.
- Catalogs and maintains data privacy and data security documentation of existing agency systems to align with current policies and procedures.
- Performs internal vulnerability assessments, schedules and coordinates vulnerability/penetration testing with qualified outside entities.
- Performs other duties as assigned.
How to Apply
To view full posting and apply electronically, please visit SENIOR SYSTEMS ADMINISTRATOR. Interested parties must submit the required application, cover letter, resume, and transcripts (unofficial until recommended for hire). The subject line should include the position number(s) you are applying for.