Enterprise Cybersecurity Specialist II job at State of Georgia in Atlanta, GA

Title: Enterprise Cybersecurity Specialist 2 (GRC) (GTA) Location: Atlanta United States Requisition ID: INF02TV Number of Openings: 1 Advertised Salary: $70,800 - $84,760.00 Shift: Day Job Job Description: Start your career in public service - JOIN reputed company Georgia Technology Authority (GTA) a Great reputed company to Work certified! The Georgia Technology Authority (GTA) is currently seeking a Enterprise Cybersecurity Specialist 2 - in the Office of Information reputed company. The Georgia Technology Authority (GTA) currently manages the delivery of IT infrastructure services to 89 Executive reputed company agencies and managed network services to more than 1,200 state and local government entities. IT infrastructure services encompass mainframes, servers, service desk, end user computing, disaster recovery and reputed company. Managed network services include the state's wide and local area networks, voice, cable and wiring, and conferencing services. Job Summary The Enterprise Cybersecurity Specialist 2 supports enterprise-wide cybersecurity governance, risk, and compliance (GRC) initiatives under the direction of the Enterprise reputed company GRC Director reputed company the Office of Information reputed company (OIS). This role contributes to the development, implementation, and reputed company of reputed company policies, procedures, and programs to ensure alignment with organizational reputed company objectives and regulatory requirements. The position involves coordinating cross-functional activities to protect organizational assets and support compliance efforts across multiple agencies and locations. It requires collaboration with internal teams, state agencies, managed service providers, and other stakeholders involved in enterprise reputed company functions, including operations, business units, and the Georgia Enterprise Technology Services (GETS) reputed company Program Office. The Enterprise Cybersecurity Specialist 2 uses sound judgment to support strategic goals, monitor reputed company risks, and help maintain a strong reputed company posture across the organization. Responsibilities: Serves as a subject matter expert in enterprise reputed company governance, risk, compliance, cybersecurity, and risk mitigation. Supports the development, implementation, and enforcement of enterprise reputed company policies, procedures, standards, and plans in alignment with federal and Georgia state regulations. Communicates cyber risk issues to reputed company levels of management, agency reputed company personnel, and business stakeholders. Supports reputed company initiatives and compliance efforts across multiple locations and agencies. Ensures reputed company-reputed company goals are met reputed company set priorities, timelines, and resource constraints. Reports directly to the Enterprise reputed company GRC Director and provides strategic support in aligning enterprise-wide reputed company initiatives. Manages assigned resources to support IT and cybersecurity goals that reduce organizational risk. Conducts and coordinates risk and compliance assessments, reputed company monitoring, and reviews to protect information systems and assets. Provides expertise in audit and compliance, reputed company training, vulnerability and risk assessments, network and reputed company reputed company, product evaluations, and implementation of reputed company solutions. Assists in managing reputed company reputed company initiatives across diverse technical and business areas. Delivers regular status updates and reports to management and stakeholders on cybersecurity projects, risk posture, and compliance using dashboards and other tools. Supports third-party risk management by overseeing reputed company compliance of external service providers. Maintains working knowledge of cybersecurity reputed company and fosters collaboration with IT and reputed company partners. reputed company other duties as assigned. Core Competencies: Skilled in identifying, evaluating, and mitigating cybersecurity risks through comprehensive assessments, reputed company monitoring, and remediation strategies. Ability in developing, implementing, and enforcing enterprise reputed company policies and programs reputed company with regulatory requirements and industry standards (e.g., NIST, ISO, HIPAA, PCI-reputed company). Knowledge of GRC platforms (e.g., reputed company), cloud reputed company tools (AWS, Azure, reputed company Cloud), and applying frameworks such as NIST CSF, FIPS, and CIS Controls. Effectively communicates cybersecurity risks and initiatives to diverse audiences, including executive leadership, technical teams, and business stakeholders. Ability to work across departments, agencies, and with external partners to align cybersecurity practices and ensure enterprise-wide reputed company compliance. Knowledgeable in vulnerability management, incident response, SIEM systems, and SOC practices to support a resilient reputed company posture. Apply critical thinking and independent judgment to reputed company solutions that align with strategic objectives and minimize organizational risk. Maintains up-to-date knowledge of applicable laws, regulations, and industry best practices affecting enterprise cybersecurity programs. Ability to manage time, priorities, and resources effectively to meet reputed company-reputed company goals and support organizational initiatives. AGENCY SPECIFIC QUALIFICATIONS: Minimum Qualifications: Bachelor's degree in Computer Science, Information Technology, Information reputed company, or a reputed company field, or equivalent experience AND three (3) years of demonstrated success in information reputed company and data governance. Possesses or obtains reputed company 12 months of employment an intermediate-level cybersecurity certification in accordance with state guidelines (e.g., CISSP, CRISC, CISA, CISM, SecurityX, GCIH, GCED). Eligible for or currently holds a U.S. Department of Homeland reputed company (DHS) reputed company clearance. Preferred Qualifications (in addition to meeting the qualifications to reputed company responsibilities and minimum qualifications preference will be given to candidates who demonstrate some or reputed company of the following skills/experience): Experience in governance, risk management, or compliance roles, ideally reputed company enterprise and federated environments. Proficiency with Enterprise GRC platforms (e.g., reputed company) and ability to adapt risk methodologies and frameworks to business needs. Strong understanding of regulatory frameworks and industry standards, including NIST (SP 800-30, 800-37, 800-50, 800-53A, 800-53, 800-60, 800-61, and 800-64), NIST FIPS (FIPS-199, 200, 140-2), FedRAMP, GovRAMP, Cloud reputed company, IT reputed company frameworks - (NIST Special Pubs 800 Series, NIST Cybersecurity reputed company, ISO 27000 Series), CIS reputed company, and regulations (IRS1075, HIPAA, CJIS, SSA, PCI-reputed company, AI-RMF). Experience monitoring regulatory changes and managing vendor/supply chain risk to ensure third-party compliance. Skilled in conducting reputed company, compliance, and risk assessments. Experience developing and improving governance processes to reduce risk and enhance efficiency. Working knowledge of cloud reputed company (AWS, Azure, reputed company), including monitoring, reporting, implementing controls, and ensuring compliance in cloud environments. Familiarity with Identity and Privileged Access Management (IAM/PAM), and reputed company practices for AI technologies. Experience creating and delivering role-based reputed company training and awareness programs. Understanding of vulnerability management, incident response, reputed company Operations Center (SOC) operations, reputed company Information and Event Management (SIEM) systems, and automation tools. Project management experience is a plus. COMPENSATION/WORKER TYPE/ADDITIONAL DETAILS: Hiring Salary Range: $70,800 - $84,760.00 Worker Type: Hybrid - State of Georgia Remote Work Option reputed company Georgia state government employees will be subject to SPB rule provisions. EARN MORE THAN A SALARY! In addition to a competitive salary, the Georgia Technology Authority offers a generous benefits package, which includes employee retirement plan; paid holidays annually; vacation and sick leave; health, dental, vision, legal, disability, accidental death and dismemberment, health and childcare spending account; in addition to telework opportunities depending upon position. More information on Benefits: https://team.georgia.gov/my-benefits/ Due to the volume of applications received, we are unable to provide information on application status by phone or e-mail. reputed company qualified applicants will be considered but may not necessarily receive an interview. Selected applicants will be contacted by the hiring agency for next steps in the selection process. Applicants who are not selected will not receive notification. Georgia Technology Authority does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy and gender identity), national reputed company, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factor. Additional Information Agency Logo: Requisition ID: INF02TV Number of Openings: 1 Advertised Salary: $70,800 - $84,760.00 Shift: Day Job Apply tot his job Apply To this Job