Oregon Health Authority
Salem, OR
Information Security and Privacy Office (ISPO) Awareness and Education (A&E) Program Coordinator (Operations and Policy Analyst 2)
Location: Salem, OR /Hybrid
The Oregon Health Authority (OHA) has a fantastic opportunity for an experienced Awareness & Education Program Coordinator to join an excellent team and work to support agency awareness and education. This is a full-time opportunity for anyone to apply.
The Office of Information Service’s mission is to deliver technology solutions and services that support Oregon Health Authority and Oregon Department of Health Services in helping Oregonians achieve health, well-being, and independence.
What's in it for you?
Medical, vision, and dental benefits
11 paid holidays
8 hours of vacation per month, eligible to be used after 6 months of service
8 hours of sick leave per month, eligible to be used as accrued
24 hours of personal business leave per fiscal year, eligible to be used after 6 months of service
Pension and retirement programs
Opportunity to potentially receive loan forgiveness under the Public Service Loan Forgiveness Program (PSLF)
Continuous growth and development opportunities
Opportunities to serve your community and make an impact through meaningful work
A healthy work/life balance, including fulltime remote options as well
What you will do!
We are seeking a highly motivated individual to join our team as an Awareness and Education (A&E) Coordinator. The ISPO Education & Awareness Coordinator will be responsible for creating and communicating a security and privacy awareness compliance program to align with all federal and state requirements including but not limited to best practices and other regulatory requirements.
This role will focus on supporting security and privacy training, phishing education, technical information around security changes, team web-site updates, and information security alerting and notifications. The coordinator will also create and perform presentations to agency staff and leadership utilizing best practices and methodologies around agency communication. This role will work closely with Agency Divisions, Programs, including but not limited to Human Resources, Department of Administrative Services (DAS) and OHA Office of Information Services (OIS) and ODHS business units and analysts to ensure adequate training is provided to all staff in order to reduce risk to the organization.
Additionally, the coordinator will facilitate information security and privacy training to ensure that our staff including contractors and external partners are equipped with the knowledge and tools they need to maintain the highest standards of security and privacy.
This position reports to the ISPO Compliance and Privacy Manager and offers an excellent opportunity to grow your skills and experience in a dynamic and challenging environment. If you are a team player with a passion for information security and privacy, we encourage you to apply.
What we are looking for!
MINIMUM REQUIREMENTS:
(a) A Bachelor's Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science, or any degree demonstrating the capacity for the knowledge and skills; and two years professional-level evaluative, analytical, and planning work.
OR
(b) Any combination of experience and education equivalent to five years of experience that typically supports the knowledge and skills for the classification.
Desired Attributes/Responsibilities:
Excellent documentation and communication skills including knowledge of communication best practices.
Ability to create and perform professional training presentations including hands on.
Knowledge of Microsoft SharePoint to maintain web-based information.
Knowledge on how to manage, track, and deploy professional training.
Working knowledge of information security, information technology and privacy practices and methodologies.
Provide necessary hands-on security training to staff and leadership.
Curate presentation of the ISPO compliance program during new employee orientation.
Support Workday Learning platform reporting and troubleshooting inquiries to training needs.
Create and maintain content for an internal information security SharePoint site.
Work with agency communication groups to standardize methods of information dissemination to staff.
Provide training related to new security and privacy controls or tools for staff.
Create and update training based on various security initiatives, such as phishing tests and privacy trends.
Manage reports and metrics that help track compliance and participation with education content.
Work with Information and Cyber Security teams to understand and mitigate gaps in security-related educational content.
Be involved in security and risk management projects to identify awareness opportunities and manage creation of content.
Cybersecurity and privacy awareness training, web page and content creation including but not limited to HTML coding
Ensure education material is relevant and valuable.
Assist in curating ISPO program training and documentation to ensure communication standards are met.
The Oregon Health Authority is an equal opportunity, affirmative action employer committed to workforce diversity.
How to Apply:
Please apply via Workday at the following link –
https://oregon.wd5.myworkdayjobs.com/SOR_External_Career_Site/job/Salem--OHA--Fairview-Industrial-Drive-3991/Information-Security-and-Privacy-Office--ISPO--Awareness-and-Education--A-E--Program-Coordinator--Operations-and-Policy-Analyst-2--Hybrid-Position_REQ-123780
Application Deadline: 05/08/2023
Information Security and Privacy Office (ISPO) Awareness and Education (A&E) Program Coordinator (Operations and Policy Analyst 2)
Location: Salem, OR /Hybrid
The Oregon Health Authority (OHA) has a fantastic opportunity for an experienced Awareness & Education Program Coordinator to join an excellent team and work to support agency awareness and education. This is a full-time opportunity for anyone to apply.
The Office of Information Service’s mission is to deliver technology solutions and services that support Oregon Health Authority and Oregon Department of Health Services in helping Oregonians achieve health, well-being, and independence.
What's in it for you?
Medical, vision, and dental benefits
11 paid holidays
8 hours of vacation per month, eligible to be used after 6 months of service
8 hours of sick leave per month, eligible to be used as accrued
24 hours of personal business leave per fiscal year, eligible to be used after 6 months of service
Pension and retirement programs
Opportunity to potentially receive loan forgiveness under the Public Service Loan Forgiveness Program (PSLF)
Continuous growth and development opportunities
Opportunities to serve your community and make an impact through meaningful work
A healthy work/life balance, including fulltime remote options as well
What you will do!
We are seeking a highly motivated individual to join our team as an Awareness and Education (A&E) Coordinator. The ISPO Education & Awareness Coordinator will be responsible for creating and communicating a security and privacy awareness compliance program to align with all federal and state requirements including but not limited to best practices and other regulatory requirements.
This role will focus on supporting security and privacy training, phishing education, technical information around security changes, team web-site updates, and information security alerting and notifications. The coordinator will also create and perform presentations to agency staff and leadership utilizing best practices and methodologies around agency communication. This role will work closely with Agency Divisions, Programs, including but not limited to Human Resources, Department of Administrative Services (DAS) and OHA Office of Information Services (OIS) and ODHS business units and analysts to ensure adequate training is provided to all staff in order to reduce risk to the organization.
Additionally, the coordinator will facilitate information security and privacy training to ensure that our staff including contractors and external partners are equipped with the knowledge and tools they need to maintain the highest standards of security and privacy.
This position reports to the ISPO Compliance and Privacy Manager and offers an excellent opportunity to grow your skills and experience in a dynamic and challenging environment. If you are a team player with a passion for information security and privacy, we encourage you to apply.
What we are looking for!
MINIMUM REQUIREMENTS:
(a) A Bachelor's Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science, or any degree demonstrating the capacity for the knowledge and skills; and two years professional-level evaluative, analytical, and planning work.
OR
(b) Any combination of experience and education equivalent to five years of experience that typically supports the knowledge and skills for the classification.
Desired Attributes/Responsibilities:
Excellent documentation and communication skills including knowledge of communication best practices.
Ability to create and perform professional training presentations including hands on.
Knowledge of Microsoft SharePoint to maintain web-based information.
Knowledge on how to manage, track, and deploy professional training.
Working knowledge of information security, information technology and privacy practices and methodologies.
Provide necessary hands-on security training to staff and leadership.
Curate presentation of the ISPO compliance program during new employee orientation.
Support Workday Learning platform reporting and troubleshooting inquiries to training needs.
Create and maintain content for an internal information security SharePoint site.
Work with agency communication groups to standardize methods of information dissemination to staff.
Provide training related to new security and privacy controls or tools for staff.
Create and update training based on various security initiatives, such as phishing tests and privacy trends.
Manage reports and metrics that help track compliance and participation with education content.
Work with Information and Cyber Security teams to understand and mitigate gaps in security-related educational content.
Be involved in security and risk management projects to identify awareness opportunities and manage creation of content.
Cybersecurity and privacy awareness training, web page and content creation including but not limited to HTML coding
Ensure education material is relevant and valuable.
Assist in curating ISPO program training and documentation to ensure communication standards are met.
The Oregon Health Authority is an equal opportunity, affirmative action employer committed to workforce diversity.
How to Apply:
Please apply via Workday at the following link –
https://oregon.wd5.myworkdayjobs.com/SOR_External_Career_Site/job/Salem--OHA--Fairview-Industrial-Drive-3991/Information-Security-and-Privacy-Office--ISPO--Awareness-and-Education--A-E--Program-Coordinator--Operations-and-Policy-Analyst-2--Hybrid-Position_REQ-123780
Application Deadline: 05/08/2023
Oregon Health Authority
Salem, OR
The Oregon Health Authority has a fantastic opportunity for an Information Security and Risk Expert to join an excellent team and work to advance their Information Security risk program. This position falls under the Classification Operations & Policy Analyst 3.
What you will do!
As an Information Security Risk Coordinator, you will coordinate the information security risk program within the Office of Information Services’ (OIS) Information Security and Privacy Office (ISPO). You will create short and long-term plans for identifying, assessing and remediating ongoing information security risk in consultation with senior management.
In this role, you will be responsible for developing tactical and strategic goals and plans to mature the information security risk program in alignment with the State Enterprise Security Office’s risk program goals and guided by operational metrics. You will be responsible for presenting risk findings and giving consultative advice to senior managers, risk owners, and those with responsibility for the remediation of risk.
Additionally, you will be a member of a team responsible for information technology policies/procedures, audit tracking, information exchange, privacy and e-discovery. You will also assist in building and maintaining these programs and will work under the guidance and supervision of the Chief Information Risk Officer (CIRO).
WHAT WE ARE LOOKING FOR:
(a) Seven (7) years of professional-level evaluative, analytical and planning experience involving Information Security and/or Privacy. OR (b) A Bachelor's Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science or a related field AND Four (4) years of professional-level evaluative, analytical and planning experience involving Information Security and/or Privacy. OR (c) A Master’s Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science or a related field AND Three (3) years of professional-level evaluative, analytical and planning experience involving Information Security and/or Privacy. OR (d) A Doctor’s Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science or a related field AND Two (2) years of professional-level evaluative, analytical and planning experience involving Information Security and/or Privacy.
Experience developing information security risk, security and privacy policies and procedures.
In process or successful completion of information security risk, information security, privacy, and/or audit certifications including CRISC, CIPP, CISA, CISSP, CISM or equivalent is preferred and/or required within 2 years of employment.
Expert-level knowledge of concepts, methodologies and techniques to lead the development of agency-wide information security risk, privacy and security policies and procedures.
Strong working knowledge of agency-specific and statewide information security risk, security and privacy policies.
Audit and compliance experience, as well as knowledge of public records laws and e-discovery.
Extensive knowledge of computer technology and information security risk.
Familiarity with the Project Management Body of Knowledge (PMBOK).
Excellent written and verbal communication, interpersonal, teamwork, presentation and organizational skills.
Experience in promoting a culturally competent and diverse work environment.
WHAT’S IN IT FOR YOU?
We offer a workplace that balances productivity with enjoyment; promote an atmosphere of mutual respect, dedication, and enthusiasm. You will collaborate in an open office with a team of bright individuals to work with and learn from. We offer full medical, vision and dental with paid sick leave, vacation, personal leave and ten paid holidays per year plus pension and retirement plans . If you're driven by the passion to do something meaningful that changes lives, the Oregon Health Authority is the place for you.
This is a full-time, permanent position that is classified and represented by SEIU. The Oregon Health Authority is committed to developing and promoting culturally and linguistically appropriate programs and a diverse and inclusive workforce representing the diversity, culture, strengths and values of the people of Oregon. Click here , to learn more about OHA’s mission, vision and core values. OHA is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, age, protected veteran or disabled status, genetic information or any other protected class under state or federal law.
The Oregon Health Authority has a fantastic opportunity for an Information Security and Risk Expert to join an excellent team and work to advance their Information Security risk program. This position falls under the Classification Operations & Policy Analyst 3.
What you will do!
As an Information Security Risk Coordinator, you will coordinate the information security risk program within the Office of Information Services’ (OIS) Information Security and Privacy Office (ISPO). You will create short and long-term plans for identifying, assessing and remediating ongoing information security risk in consultation with senior management.
In this role, you will be responsible for developing tactical and strategic goals and plans to mature the information security risk program in alignment with the State Enterprise Security Office’s risk program goals and guided by operational metrics. You will be responsible for presenting risk findings and giving consultative advice to senior managers, risk owners, and those with responsibility for the remediation of risk.
Additionally, you will be a member of a team responsible for information technology policies/procedures, audit tracking, information exchange, privacy and e-discovery. You will also assist in building and maintaining these programs and will work under the guidance and supervision of the Chief Information Risk Officer (CIRO).
WHAT WE ARE LOOKING FOR:
(a) Seven (7) years of professional-level evaluative, analytical and planning experience involving Information Security and/or Privacy. OR (b) A Bachelor's Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science or a related field AND Four (4) years of professional-level evaluative, analytical and planning experience involving Information Security and/or Privacy. OR (c) A Master’s Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science or a related field AND Three (3) years of professional-level evaluative, analytical and planning experience involving Information Security and/or Privacy. OR (d) A Doctor’s Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Political Science or a related field AND Two (2) years of professional-level evaluative, analytical and planning experience involving Information Security and/or Privacy.
Experience developing information security risk, security and privacy policies and procedures.
In process or successful completion of information security risk, information security, privacy, and/or audit certifications including CRISC, CIPP, CISA, CISSP, CISM or equivalent is preferred and/or required within 2 years of employment.
Expert-level knowledge of concepts, methodologies and techniques to lead the development of agency-wide information security risk, privacy and security policies and procedures.
Strong working knowledge of agency-specific and statewide information security risk, security and privacy policies.
Audit and compliance experience, as well as knowledge of public records laws and e-discovery.
Extensive knowledge of computer technology and information security risk.
Familiarity with the Project Management Body of Knowledge (PMBOK).
Excellent written and verbal communication, interpersonal, teamwork, presentation and organizational skills.
Experience in promoting a culturally competent and diverse work environment.
WHAT’S IN IT FOR YOU?
We offer a workplace that balances productivity with enjoyment; promote an atmosphere of mutual respect, dedication, and enthusiasm. You will collaborate in an open office with a team of bright individuals to work with and learn from. We offer full medical, vision and dental with paid sick leave, vacation, personal leave and ten paid holidays per year plus pension and retirement plans . If you're driven by the passion to do something meaningful that changes lives, the Oregon Health Authority is the place for you.
This is a full-time, permanent position that is classified and represented by SEIU. The Oregon Health Authority is committed to developing and promoting culturally and linguistically appropriate programs and a diverse and inclusive workforce representing the diversity, culture, strengths and values of the people of Oregon. Click here , to learn more about OHA’s mission, vision and core values. OHA is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, age, protected veteran or disabled status, genetic information or any other protected class under state or federal law.