Chief Information Security Officer - Unclassified

The Office of Information Security & Cyber Defense (OISCD) establishes and maintains the Governor's Technology Office (GTO) vision, strategy, and program to ensure information assets and technology are adequately protected. This office serves as the primary focal point for cyber security strategy, policy, planning and coordination for the State of Nevada. As part of the ongoing service delivery, OISCD provides leadership and oversight of a comprehensive state information security program which includes continuous monitoring, vulnerability scanning, security incident response coordination, physical security access services, cyber security, and other operational security services for the executive branch. The OISCD team identifies, develops, implements, and maintains enterprise security processes to reduce information technology and cyber security risk. OISCD Responsibilities: - Vulnerability discovery, testing, and mitigation. - Continuous monitoring, incident triage, and response coordination. - Threat intelligence notification. - End user security awareness training and testing. - Audit and compliance support. - Physical card access and surveillance video platform - Nevada Camera/Card Access System (NCAS). - Statewide Information Security Officer coordination, tracking, and oversight.Bachelor's degree from an accredited college or university with major course work in computer science, management information systems, or closely related field and eight years of progressively responsible professional IT experience which involved strategic planning, project management, quality assurance, and computer operations, systems administration, network administration, database administration, applications analysis and development, or information security. Five years of this experience must have been in a supervisory or project manager capacity; OR one year of experience as an IT Manager III in Nevada State service; OR an equivalent combination of education and experience. CISSP or CISM and SEC+ or similar certification must be obtained within 12 months of appointment and maintained as a condition of continued employment. Experience in lieu of certifications/education will be considered.The Governor's Technology Office is seeking to fill a Chief IT Manager located either in Carson City or Las Vegas. This position will serve as its Chief Information Security Officer (CISO) for the Security section. This position is responsible for developing and implementing the state's information security strategy, policies, and programs. The CISO drives the development and enforcement of cybersecurity policies, risk management practices, incident response coordination, and security governance across executive branch agencies. The CISO works in close partnership with state leadership, agency directors, and external partners to safeguard the confidentiality, integrity, and availability of Nevada's digital infrastructure and public data. The CISO provides expert input into security investments and strategic IT planning. Incumbents function as managers who train, supervise and evaluate the performance of subordinates; develop policies and procedures; and allocate staff and resources to accomplish goals and objectives. •Cybersecurity strategy development •Risk management, regulatory compliance, and governance •Incident response and crisis management •Audit and examination procedures •Cybersecurity awareness •Budget development and policy administration •Information technology concepts •Public speaking and legislative testimony •Regulatory framework interpretation •Leadership and team management •Strategic thinking •Conflict resolution •Adaptability and flexibility •Integrity and ethical judgment •Strong verbal and written communication •Interpersonal skills •Collaboration and relationship building •Problem-solving •Willingness to learn and grow •Security architecture design •Data protection and privacy •Threat intelligence and monitoring •Security awareness training curriculum •Vendor and third-party management •Business continuity planning