Job Posting: Information Security Specialist

CA High Speed Rail Authority

JC-467266
-
Information Security Specialist
INFORMATION TECHNOLOGY SPECIALIST II

$8,374.00 - $11,220.00 per Month

Final Filing Date: Until Filled

Job Description and Duties

Under general direction of the Security Operations Manager, an Information Technology (IT) Manager I, the IT Specialist II (Information Security Specialist) works independently and as part of a team to implement, maintain, and/or oversee the Enterprise Vulnerability Management Program, perform penetration testing, and monitor the Authority’s Security Information Event Management (SIEM) system. The incumbent also leads the implementation of Zero Trust principles.

This advertisement is posted as Open Until Filled and the advertisement will remain open until the vacancy is filled. Cut-offs for applications will be every other Friday starting May 30th, 2025, and applications will be reviewed per those cut-off dates. Hires can be made at any time based on the applications received by the cut-off dates.

You will find additional information about the job in the Duty Statement.

Working Conditions

Part time telework is available for this position up to three days per week for California residents based on the requirements of the position and may be discussed during the interview process. Hiring interviews may be available virtually, using teleconferencing or video conferencing options.

While working on-site, the incumbent works in a professional office environment, in a climate-controlled area which may fluctuate in temperature and is under artificial light. The incumbent will be required to use a computer, mouse, and keyboard, and will be required to sit for long periods of time at a computer screen. The incumbent must be able to focus for long periods of time, multi-task, adapt to changes in priorities, and complete tasks or projects with short notice. The incumbent must develop and maintain cooperative working relationships and display professionalism and respect for others in all contact opportunities.

Minimum Requirements

You will find the Minimum Requirements in the Class Specification.

Additional Documents

Position Details

Job Code #:
JC-467266
Position #(s):
311-420-1414-003
Working Title:
Information Security Specialist
Classification:
INFORMATION TECHNOLOGY SPECIALIST II
$8,374.00 - $11,220.00 A

Candidates who are new to California state service will be hired at the minimum salary of the classification. For classifications with alternate ranges, range placement is based on education/experience.
# of Positions:
1
Work Location:
Sacramento County
Telework:
Hybrid
Job Type:
Permanent, Full Time

Department Information

Are you looking for a different type of state government job? Something with a little more excitement and a more fast-paced and fluid environment? How about an opportunity to be part of one of the most remarkable transportation projects in California's history? The California High-Speed Rail Authority is a small and dynamic state agency that is looking for employees who are interested in a challenging and rewarding job opportunity.

Please let us know how you heard about our position by taking this brief survey. Completing this survey is not required to be considered for this vacancy.

https://www.surveymonkey.com/r/HCM6SCC

Department Website: https://hsr.ca.gov/jobs/

Special Requirements

A Statement of Qualifications (SOQ) is required and must be included. An SOQ is a narrative that describes your qualifications for this position. The SOQ must be no more than two (2) pages long, single-spaced, with one-inch margins, in 12-point font, organized and numbered as reflected below. Applicants who do not follow these instructions may be disqualified from the hiring process. You must respond to all the following items:

1. Describe your experience related to Vulnerability Management. Describe the environment including the types and numbers of devices/endpoints on the network and if there was a cloud component, indicate if AWS, Azure, or other. What role(s) or tasks were you responsible for? What tools have you used, implemented, or managed to identify and remediate vulnerabilities?

2. Describe and provide examples of your experience performing penetration testing. How did you document your findings? What actions did you take to address and resolve identified vulnerabilities?

3. Describe and provide examples of your experience with Security Information and Event Management (SIEM) policies, practices, and operations. What tools have you worked with?

4. Describe your experience working across IT teams to ensure policies/controls are implemented; vulnerabilities are mitigated; and/or other actions are taken to ensure secure operations of the environment. Provide an example of a time when a critical vulnerability was not address/remediated within the expected timeline. What steps did you take to address the problem? What was the outcome?

Applications received without the SOQ may not be considered. Cover Letters, Resumes, and other materials do not take the place of the SOQ.

Artificial Intelligence (AI) tools can be useful in the development of written responses; however, it is important to use these tools responsibly and ethically. Responses within the SOQ must be your own original work and representative of your own knowledge, skills, and experience. Applicants must write in their own words and avoid plagiarism. Failure to comply may be cause for disqualification.

Application Instructions

Dates printed on Mobile Bar Codes, such as the Quick Response (QR) Codes available at the USPS, are not considered Postmark dates for the purpose of determining timely filing of an application.

Final Filing Date: Until Filled

Who May Apply

Individuals who are currently in the classification, eligible for lateral transfer, eligible for reinstatement, have list or LEAP eligibility, are in the process of obtaining list eligibility, or have SROA and/or Surplus eligibility (please attach your letter, if available). SROA and Surplus candidates are given priority; therefore, individuals with other eligibility may be considered in the event no SROA or Surplus candidates apply.

Applications will be screened and only the most qualified applicants will be selected to move forward in the selection process. Applicants must meet the Minimum Qualifications stated in the Classification Specification(s).

How To Apply

Complete Application Packages (including your Examination/Employment Application (STD 678) and applicable or required documents) must be submitted to apply for this Job Posting. Application Packages may be submitted electronically through your CalCareer Account at www.CalCareers.ca.gov. When submitting your application in hard copy, a completed copy of the Application Package listing must be included. If you choose to not apply electronically, a hard copy application package may be submitted through an alternative method listed below:

Address for Mailing Application Packages

You may submit your application and any applicable or required documents to:

CA High Speed Rail Authority
High Speed Rail Authority
Attn: Human Resources
770 L Street, Suite 620, MS 4
Sacramento, CA 95814

Address for Drop-Off Application Packages

You may drop off your application and any applicable or required documents at:

CA High Speed Rail Authority
High Speed Rail Authority
Human Resources
770 L Street, Suite 620, MS 4
Sacramento, CA 95814
08:00 AM - 05:00 PM

Required Application Package Documents

The following items are required to be submitted with your application. Applicants who do not submit the required items timely may not be considered for this job:

  • Current version of the State Examination/Employment Application STD Form 678 (when not applying electronically), or the Electronic State Employment Application through your Applicant Account at www.CalCareers.ca.gov. All Experience and Education relating to the Minimum Qualifications listed on the Classification Specification should be included to demonstrate how you meet the Minimum Qualifications for the position.
  • Resume is optional. It may be included, but is not required.
  • Statement of Qualifications - A Statement of Qualifications (SOQ) is required to apply. Please see above “Special Requirements” section for SOQ instructions.
Applicants requiring reasonable accommodations for the hiring interview process must request the necessary accommodations if scheduled for a hiring interview. The request should be made at the time of contact to schedule the interview. Questions regarding reasonable accommodations may be directed to the EEO contact listed on this job posting.

Desirable Qualifications

In addition to evaluating each candidate's relative ability, as demonstrated by quality and breadth of experience, the following factors will provide the basis for competitively evaluating each candidate:

• Associate or bachelor’s degree in an information technology related field of study.
• Five (5) years of experience in Information Security Operations.
• Possess of one or more of the following certifications (active):
   o Associate of (ISC)2
   o Certified Information Systems Security Professional (CISSP)
   o Certified Information Security Manager (CISM)
   o Certified Information Systems Auditor (CISA)
   o CompTIA Security+
   o CompTIA PenTest+
   o GIAC Information Security Fundamentals
   o AWS Certified Solutions Architect Associate
   o AWS Certified SysOps Administrator Associate
   o Microsoft Certified Azure Administrator
   o Microsoft Certified Azure Security Engineer
• Experience with Windows-based operating systems, configurations, Active Directory, and Group Policy.
• Experience managing Endpoint Detection & Response (EDR) solutions such as CrowdStrike and Microsoft Defender.
• Knowledge of cloud computing platforms such as Amazon Web Services or Microsoft Azure.
• Knowledge of penetration testing tools like Burp Suite, Nmap, Nessus, and Wireshark.
• Knowledge of Zero-Trust Networking and Center for Internet Security (CIS) Controls and Benchmarks.
• Knowledge and thorough understanding of NIST, SAM, and SIMM.
• Demonstrated ability to exercise good judgement in the performance of responsibilities, requiring minimal supervision.
• Demonstrate a talent and passion for information security, creativity, and resourcefulness in solving problems.
• Ability to think critically and independently analyze and resolve issues.
• Ability to meet business needs through innovative solutions and demonstrate a service oriented, customer relations-sensitive attitude.
• Ability to establish and maintain cooperative working relationships with all levels of staff and management; communicate effectively with peers, other technical teams, executives, external partners, vendors, and others.
• Ability to manage multiple high priority initiatives in a fast-paced achievement-oriented environment and work under pressure to meet deadlines.
• Ability to maintain confidentiality of sensitive tasks, assignments, and information.
• Ability to prepare and produce clear and concise documentation (e.g., processes and procedures, plans, technical diagrams, information security policies, etc.).
• Exhibit a talent and passion for information security.
• Willingness to work excess hours to achieve business results.
• Display enthusiasm for continuous learning.

Benefits

The State of California offers a comprehensive benefits package that includes health, vision, dental, a retirement pension, a telework stipend if applicable, and an array of other options.

Benefit information can be found on the CalHR website and the CalPERS website.

Contact Information

The Human Resources Contact is available to answer questions regarding the position or application process.

Department Website: https://hsr.ca.gov/jobs/
Human Resources Contact:
Human Resources
(916) 669-6606
recruitment@hsr.ca.gov

Please direct requests for Reasonable Accommodations to the interview scheduler at the time the interview is being scheduled. You may direct any additional questions regarding Reasonable Accommodations or Equal Employment Opportunity for this position(s) to the Department's EEO Office.

EEO Contact:
EEO Office
(916) 324-1541
eeo@hsr.ca.gov
California Relay Service: 1-800-735-2929 (TTY), 1-800-735-2922 (Voice) TTY is a Telecommunications Device for the Deaf, and is reachable only from phones equipped with a TTY Device.

Application Information

The STD. 678 is required and each section must be filled out completely and thoroughly. Please do not include your Social Security Number, date of birth, veteran status, personal photos, LEAP information, or any other personally identifying information on any documents in your application package.

Using the online application system as specified in the announcement is the preferred method of applying for civil service job opportunities; however, applicants may instead apply by way of U.S. mail, parcel delivery or courier service, or in person, as set forth in this announcement. Dates printed on envelopes by mobile barcodes or equivalent mobile print technology are not acceptable proof of the date the application and any other required documents or materials were filed.

If applying via postal mail or by dropping off your application, applicants must include JC-467266 and Information Security Specialist, 311-420-1414-003 in the 'Job Title' section of the STD. 678 to be considered for this position. Please indicate on the STD 678 your basis of eligibility in the "Explanations" field (i.e. SROA, surplus, reemployment, reinstatement, transfer, or list eligible.)

Surplus/SROA candidates must provide a copy of their surplus/SROA letter with their application. Consideration may be given to applicants on another Department's employment list, provided the criteria are met to transfer the eligibility from the employment list to the Authority's employment list. The High-Speed Rail Authority does not currently offer Training and Development opportunities at this time.

NOTE: To be considered for this job opportunity, applicants must be reachable on an employment list, have transfer eligibility, or have reinstatement eligibility. If you are new to California State service and you do not have list eligibility, you must take the exam for this classification. To gain employment list eligibility, please click here to access the exam bulletin.

Location

The High-Speed Rail Authority headquarters building is located in downtown Sacramento on the corner of 8th and L Street. We are located one block away from the 8th and Capitol light rail stop, as well as the 7th and Capitol light rail stop. The building is also within walking distance of DOCO, the California State Capitol Park, a farmer’s market during summer months, and Old Sacramento.

Equal Opportunity Employer

The State of California is an equal opportunity employer to all, regardless of age, ancestry, color, disability (mental and physical), exercising the right to family care and medical leave, gender, gender expression, gender identity, genetic information, marital status, medical condition, military or veteran status, national origin, political affiliation, race, religious creed, sex (includes pregnancy, childbirth, breastfeeding and related medical conditions), and sexual orientation.

It is an objective of the State of California to achieve a drug-free work place. Any applicant for state employment will be expected to behave in accordance with this objective because the use of illegal drugs is inconsistent with the law of the State, the rules governing Civil Service, and the special trust placed in public servants.