"Alerted.org

Working Title: Principal Information Security Engineer

Job Class: Information Technology Specialist 5

Agency: Minnesota IT Services

+ **Job ID** : 86603

+ **Location** : St. Paul

+ **Telework Eligible** : Yes #LI-Hybrid

+ **Full/Part Time** : Full-Time

+ **Regular/Temporary** : Unlimited

+ **Who May Apply** : Open to all qualified job seekers

+ **Date Posted** : 06/02/2025

+ **Closing Date** : 06/09/2025

+ **Hiring Agency/Seniority Unit** : Minnesota IT Services

+ **Division/Unit** : Office of Enterprise Tech / ISRM Envir/Ed Staff

+ **Work Shift/Work Hours** : Day Shift

+ **Days of Work** : Monday - Friday

+ **Travel Required** : No

+ **Salary Range:** $39.14 - $66.92 / hourly; $81,724 - $139,728 / annually

+ **Job Class Option** : Information Security

+ **Classified Status** : Classified

+ **Bargaining Unit/Union** : 214 - Professional Employees (MAPE)

+ **FLSA Status** : Exempt - Professional

+ Designated in Connect 700 Program for Applicants with Disabilities (https://mn.gov/mmb/careers/diverse-workforce/people-with-disabilities/connect700/) : Yes

The work you'll do is more than just a job.

At the State of Minnesota, employees play a critical role in developing policies, providing essential services, and working to improve the well-being and quality of life for all Minnesotans. The State of Minnesota is committed to equity and inclusion, and invests in employees by providing benefits, support resources, and training and development opportunities.

Join the 2,800+ professionals of Minnesota IT Services (https://mn.gov/mnit/about-mnit/careers/) (MNIT) who connect Minnesotans to services that will improve their lives. This position will be part of the Enterprise Security team, which embeds security protection statewide.

Minnesota IT Services (MNIT) is seeking a highly skilled Principal Information Security Engineer (PISE) to lead cybersecurity risk management and engineering efforts within the environmental lines of business across executive branch agencies. This position plays a critical role in implementing the State of Minnesota's Enterprise Information Security Program by designing and maintaining security framework that protect sensitive information from internal and external threats.

As a security domain expert, the PISE will lead at the agency the development and maintenance of cyber policies, procedures, and standards, establishing minimum security thresholds across participating entities. The incumbent will assess security risks, design control frameworks, and ensure security best practices are embedded into new government systems and services. This role requires a deep understanding of multiple cybersecurity domains, including system access, network and telecommunications security, incident response, governance, application security, and disaster recovery.

The successful candidate will collaborate with agency stakeholders and technical teams to drive enterprise-wide security initiatives, contribute to policy development, and support risk measurement and reporting efforts. Strong project management and communication skills are essential to translate security strategy into actionable plans and to effectively lead implementation efforts across diverse environments.

This position requires an employee to be onsite in Saint Paul, Minnesota at least 50% of the time, with some opportunity to perform work from a telework location.

+ Telework (https://mn.gov/mmb-stat/policies/1422-telework-2025.pdf) for Minnesota IT Services is available on a limited basis.

+ Only candidates residing in Minnesota and its bordering counties are eligible for telework.

+ Candidates residing 50 miles or more from the permanent work location require additional review prior to telework approval upon becoming a finalist.

Minimum Qualifications

Candidates must clearly demonstrate all of the following qualifications in their resume.** Resume tips here. (https://mn.gov/mnit/about-mnit/careers/hiringprocess.jsp) **:

Position requires a minimum of five (5) years of IT related experience in information security risk management, secure systems architecture, and the implementation of enterprise cybersecurity controls across diverse technology platforms.

Experience must include:

+ Experience leading the assessment and secure implementation of SaaS solutions in a multi-platform environment.

+ Experience with vendor risk management, system architecture, and security operations as evidenced by relevant projects or responsibilities.

+ Experience implementing and/or auditing against established information security standards (e.g., NIST, ISO 27001, COBIT, ITIL).

+ Deep technical knowledge of security practices related to networking, firewalls, and operating systems, with demonstrated application in regulatory compliance context (e.g., HIPAA, CJIS, FTI, PCI).

+ Ability to deliver effective verbal or written messages that facilitate a mutual understanding on both parties.

+ Customer service skills that include active listening, empathy, and problem-solving.

A master’s degree in Information Technology or an IT related field substitutes for three (3) years of experience, OR an IT related bachelor’s degree substitutes for two (2) years, OR an IT related associate’s degree substitutes for one (1) year.

Preferred Qualifications

+ Familiarity with federal, state, and local regulations pertaining to information security and privacy.

+ Experience designing or managing cross-system relational structures within enterprise environments.

+ Experience with directory services and identity management systems, including LDAP and Active Directory.

+ Experience conducting network, platform, and application security assessments and vulnerability testing using industry tools and best practices.

+ Applied understanding of information security principles and theories, particularly within risk management or incident response contexts.

+ Relevant certification such as CISSP, CEH, GSEC, CISM, ITIL, or equivalent.

+ Experience working across mainframe, midrange, and/or LAN/server environments, including knowledge of security mechanism and system analysis.

Additional Requirements

It is the policy of Minnesota IT Services that a successful candidate must pass all legally required checks prior to employment which may consist of the following:

+ SEMA4 Records Check (applies to current and past state employees only)

+ Criminal History Check

+ Reference Check

+ Social Security and Address Verification

+ Education Verification

+ CJIS Background Check

+ Other legally required checks

Minnesota IT Services does not participate in E-Verify. Minnesota IT Services will not sponsor applicant for work visas, including F-1 STEM OPT extensions. All applicants must be legally authorized to work in the United States.

AN EQUAL OPPORTUNITY EMPLOYER

Minnesota State Colleges and Universities is an Equal Opportunity employer/educator committed to the principles of diversity. We prohibit discrimination against qualified individuals based on their race, sex, color, creed, religion, age, national origin, disability, protected veteran status, marital status, status with regard to public assistance, sexual orientation, gender identity, gender expression, or membership in a local commission as defined by law. As an affirmative action employer, we actively seek and encourage applications from women, minorities, persons with disabilities, and individuals with protected veteran status.

Reasonable accommodations will be made to all qualified applicants with disabilities. If you are an individual with a disability who needs assistance or cannot access the online job application system, please contact the job information line at 651-259-3637 or email [email protected] . Please indicate what assistance is needed.