-
Deputy Chief Information Security Officer
- Commonwealth of Pennsylvania (PA)
-
Deputy Chief Information Security Officer
Print (https://www.governmentjobs.com/careers/pabureau/jobs/newprint/5121572)
Apply
Deputy Chief Information Security Officer
Salary
$195,170.00 Annually
Location
Dauphin County, PA
Job Type
Non-Civil Service Permanent Full-time
Job Number
N-2025-35364
Department
Executive Offices
Division
EX OA Entrprs Info Scy Off
Opening Date
10/31/2025
Closing Date
11/4/2025 11:59 PM Eastern
Job Code
U8280
Position Number
50693841
Union
Non Union
Bargaining Unit
99
Pay Group
XH66
Bureau / Division Code
00812072
Bureau / Division
Enterprise Information Security Office
Worksite Address
Keystone Building 400 North Street
Worksite Address
5th Floor
City
Harrisburg, Pennsylvania
Zip Code
17110
Contact Name
Matthew Zyroll
Contact Phone
717.836.3503
Contact Email
+ Description
+ Benefits
+ Questions
THE POSITION
The Commonwealth of Pennsylvania is seeking a strategic and innovative leader to serve as the state’s Deputy Chief Information Security Officer (Deputy CISO). This professional provides executive-level leadership and operational oversight of the Commonwealth's enterprise cybersecurity program, making critical decisions by overseeing operational performance across all Enterprise Information Security Office (EISO) service towers to ensure effective delivery of enterprise security services. Make your career aspirations a reality with this exciting opportunity.
DESCRIPTION OF WORK
Reporting directly to the Chief Information Security Officer (CISO), this position is responsible for advancing the Commonwealth's security strategy, ensuring alignment with statewide risk management objectives, and leading day-to-day operations across multiple cybersecurity service towers — including Network Security Operations, Security Operations Center, Vulnerability Management, Identity and Access Management, and Cloud Security Architecture and Engineering.
The Deputy CISO acts as the principal advisor to the CISO on all aspects of enterprise information security, policy enforcement, and incident response coordination. You will have the opportunity to partner with agency leadership, delivery center Security Business Partners, and executive stakeholders to mature the Commonwealth's cyber resilience posture and ensure consistent application of security frameworks, policies, and standards across all agencies.
Interested in learning more? Additional details regarding this position can be found in the position description (https://careers.employment.pa.gov/pd/PD\_NEOGOV.asp?p=50693841) .
Work Schedule and Additional Information:
+ Full-time employment
+ Work hours are 8:00 AM to 4:30 PM, Monday - Friday, with 60-minute lunch.
+ Telework: You may have the opportunity to work from home (telework) part-time, three days in office, two days telework. In order to telework, you must have a securely configured high-speed internet connection and work from an approved location inside Pennsylvania. If you are unable to telework, you will have the option to report to the headquarters office in Harrisburg. The ability to telework is subject to change at any time. Additional details may be provided during the interview.
+ Salary: In some cases, the starting salary may be non-negotiable.
+ You will receive further communication regarding this position via email. Check your email, including spam/junk folders, for these notices.
REQUIRED EXPERIENCE, TRAINING & ELIGIBILITY
QUALIFICATIONS
Minimum Experience and Training Requirements:
+ Seven (7) years of progressively responsible experience in information security management, cybersecurity operations, or IT risk management.
+ Three (3) years of supervisory or managerial experience leading security or technology teams.
Additional Requirements:
+ You must have experience with cybersecurity frameworks such as NIST CSF, CIS Controls, ISO 27001, or CMMC.
+ You must have experience with enterprise IT architecture, network defense, and incident management.
+ You must have experience in leadership, effective communication, and strategic planning.
+ You must be eligible for or able to obtain federal or state-level security clearances.
+ You must be able to perform essential job functions.
Preferred Qualifications (not required):
+ Industry certifications such as CISSP, CISM, CISA, CRISC, or GIAC leadership credentials
+ Experience in government or regulated industry cybersecurity leadership roles
+ Familiarity with Commonwealth IT governance, OA-OIT policies, and agency operations
+ Demonstrated success leading cross-agency or enterprise-level cybersecurity initiatives
Legal Requirement:
+ You must pass a background investigation and meet Criminal Justice Information Services (CJIS) compliance requirements.
How to Apply:
+ Resumes, cover letters, and similar documents willnotbe reviewed, and the information contained therein will not be considered for the purposes of determining your eligibility for the position. Information to support your eligibility for the position must be provided on the application (i.e., relevant, detailed experience/education).
+ If you are claiming education in your answers to the supplemental application questions, you must attach a copy of your college transcripts for your claim to be accepted toward meeting the minimum requirements. Unofficial transcripts are acceptable.
+ Your application must be submitted by the posting closing date. Late applications and other required materials will not be accepted.
+ Failure to comply with the above application requirements may eliminate you from consideration for this position.
Veterans:
+ Pennsylvania law (51 Pa. C.S. §7103) provides employment preference for qualified veterans for appointment to many state and local government jobs. To learn more about employment preferences for veterans, go to www.pa.gov/agencies/employment/how-to-apply.html and click on Veterans.
Telecommunications Relay Service (TRS):
+ 711 (hearing and speech disabilities or other individuals).
If you are contacted for an interview and need accommodations due to a disability, please discuss your request for accommodations with the interviewer in advance of your interview date.
The Commonwealth is an equal employment opportunity employer and is committed to a diverse workforce. The Commonwealth values inclusion as we seek to recruit, develop, and retain the most qualified people to serve the citizens of Pennsylvania. The Commonwealth does not discriminate on the basis of race, color, religious creed, ancestry, union membership, age, gender, sexual orientation, gender identity or expression, national origin, AIDS or HIV status, disability, or any other categories protected by applicable federal or state law. All diverse candidates are encouraged to apply.
Learn more about our Total Rewards by watching this shortvideo (https://www.youtube.com/embed/HtcSRnndflc?rel=0) !
See the total value of your benefits package by exploring ourbenefits calculator.
Health & Wellness
We offer multiple health plans so our employees can choose what works best for themselves and their families. Our comprehensive benefits package includes health coverage, vision, dental, and wellness programs.*
Compensation & Financial Planning
We invest in our employees by providing competitive wages and encouraging financial wellness by offering multiple ways to save money and ensure peace of mind including multiple retirement and investment plan options.
Work/Life Balance
We know there’s more to life than just work! Our generous paid leave benefits include paid vacation, paid sick leave, eight weeks of paid parental leave, military leave, and paid time off for most major U.S. holidays, as well as flexible work schedules and work-from-home opportunities.*
Values and Culture
We believe in the work we do and provide continual opportunities for our employees to grow and contribute to the greater good. As one of the largest employers in the state, we provide opportunities for internal mobility, professional development, and the opportunity to give back by participating in workplace charitable giving.
Employee Perks
Sometimes, it is the little “extras” that make a big difference. Our employees receive special employee-only discounts and rates on a variety of services and memberships.
For more information on all of these Total Rewards benefits, please visitwww.employment.pa.gov and click on the benefits box.
*Eligibility rules apply.
01
Do you possess seven or more years of full-time progressively responsible experience in information security management, cybersecurity operations, or IT risk management?
+ Yes
+ No
02
If you are claiming experience in the above question, please list the employer(s) where you gained this experience in the text box below. The employer(s) and a description of the experiencemustalso be included in the appropriate sections of your application if you would like the experience to be considered in the eligibility decision. If you claimed you do not have experience, type N/A in the text box below.
03
Do you possess three or more years of full-time supervisory or managerial experience leading security or technology teams?
+ Yes
+ No
04
If you are claiming experience in the above question, please list the employer(s) where you gained this experience in the text box below. The employer(s) and a description of the experiencemustalso be included in the appropriate sections of your application if you would like the experience to be considered in the eligibility decision. If you claimed you do not have experience, type N/A in the text box below.
05
Additional Requirement- Do you possess experience with cybersecurity frameworks such as NIST CSF, CIS Controls, ISO 27001, or CMMC?
+ Yes
+ No
06
If you are claiming experience in the above question, please list the employer(s) where you gained this experience in the text box below. The employer(s) and a description of the experiencemustalso be included in the appropriate sections of your application if you would like the experience to be considered in the eligibility decision. If you claimed you do not have experience, type N/A in the text box below.
07
Additional Requirement- Do you possess experience with enterprise IT architecture, network defense, and incident management?
+ Yes
+ No
08
If you are claiming experience in the above question, please list the employer(s) where you gained this experience in the text box below. The employer(s) and a description of the experiencemustalso be included in the appropriate sections of your application if you would like the experience to be considered in the eligibility decision. If you claimed you do not have experience, type N/A in the text box below.
09
Additional Requirement- Do you possess experience in leadership, effective communication, and strategic planning?
+ Yes
+ No
10
If you are claiming experience in the above question, please list the employer(s) where you gained this experience in the text box below. The employer(s) and a description of the experiencemustalso be included in the appropriate sections of your application if you would like the experience to be considered in the eligibility decision. If you claimed you do not have experience, type N/A in the text box below.
11
Preferred Criteria- Do you possess any of the following industry certifications? (Select all that apply)
+ CISSP
+ CISM
+ CISA
+ CRISC
+ GIAC leadership credentials
+ None
12
Preferred Criteria- Do you possess experience in government or regulated industry cybersecurity leadership roles?
+ Yes
+ No
13
Preferred Criteria- Are you familiar with Commonwealth IT governance, OA-OIT policies, and agency operations?
+ Yes
+ No
14
Preferred Criteria- Have you demonstrated success leading cross-agency or enterprise-level cybersecurity initiatives?
+ Yes
+ No
Required Question
Employer
Commonwealth of Pennsylvania
Address
613 North Street
Harrisburg, Pennsylvania, 17120
Website
http://www.employment.pa.gov
-
Recent Jobs
-
Deputy Chief Information Security Officer
- Commonwealth of Pennsylvania (PA)