The Technical College System of Georgia (TCSG) is seeking highly qualified applicants for their full-time Cybersecurity Specialist position in the Office of Information Technology and Data Resources. The Cybersecurity Specialist was established to participate in information security related projects and ensuring people, processes, and technology aligns with the desired security posture of the organization. The Cybersecurity Specialist is trained and experienced in meeting security needs of the agency and its employees in multiple locations. This is a federally funded position.



RESPONSIBILITIES

Assists with the development and enforcement of policies and plans in compliance with laws, regulations, policies, and standards in support of organizational information technology and cybersecurity activities.
Communicates with all levels of management and other supporting or supported agency business owners on cyber risks existing within the organization.
Manages assigned resources to support IT and security goals and objectives to reduce the overall organizational risk.
Advises management on technology, information system policy matters, and maintains continuous lines of communication by keeping the agency ISO informed of all critical information security issues.
Provides status reporting on security projects and cybersecurity maturity using dashboards as directed.
Provides support in the areas of audit & compliance, security awareness training, vulnerability assessment, risk assessment, network security, endpoint security, product evaluation, and security solution implementation.
Provides assistance in the agency cyber incident management, plan and conduct table-top exercises
Provides assistance in the agency disaster recovery planning and business continuity planning activities
Maintains a working knowledge of IT and cybersecurity support contracts, develops and maintains necessary relationships with IT and cybersecurity partners.
Knowledge pertaining to concepts, principles and application of cyber risk management and/or compliance practices.
Experience in the development of cybersecurity and business processes and the integration of new processes into existing ones.
Performs other duties as assigned.


COMPENTENCIES

Must have attention to detail to ensure that all systems function properly
Strong information security assessment skills
Ability to work in a team environment
Ability to manage multiple assignments
Ability to read and comprehend complex technical documents
Skill in the operation of computers and job-related software programs
Oral and written communication skills
Skill in interpersonal relations and in dealing with the public
Strong decision making and problem-solving skills
Advanced understanding of network devices and protocols
Strong analytical skills
Strong customer service skills
Must be a team player, self-motivated and able to work independently


MINIMUM QUALIFICATIONS

Associate degree *and* Three (3) years of work-related experience
Note: Experience may substitute for the degree on a year-for-year basis.


PREFERRED QUALIFICATIONS

In addition to meeting the minimum qualifications preference will be given to candidates who demonstrate some or all of the following skills/experience.

Knowledge with various cybersecurity best practices, frameworks, and regulations such as: NIST Special Publications documents (SP 800-30, 800-37, 800-50, 800-53A, 800-53, 800-60, 800-61, and 800-64), NIST FIPS (FIPS-199, 200, 140-2), IT Security frameworks - (NIST Special Pubs 800 Series, NIST Cybersecurity Framework, ISO 27000 Series), CIS CSC, and regulations (FISMA, HIPAA, CJIS, SSA, PCI-DSS).
Knowledge of Microsoft Active Directory, and Microsoft enterprise security best practices, various Windows application server platforms and end user applications.
Working knowledge of enterprise network solutions, delivery technologies, and engineered network security solutions
Experience in project management a plus