Project Coordinator - Information Security Officer
Job in
West Haverstraw, Rockland County, New York, 10993, USA
Listed on 2026-03-09
Listing for:
StateJobsNY
Full Time
position Listed on 2026-03-09
Job specializations:
-
IT/Tech
Cybersecurity, Information Security, IT Consultant, Data Security
Job Description & How to Apply Below
Duties Description This position will matrix report to the Project Director and DOH Chief Information Security Officer (CISO) within the Office of Health Information Management (OHIM). In coordination with the Department CISO, the Project Coordinator will serve as Information Security Officer and will implement cybersecurity controls required by the NYS Title 10, Section 405.46 - Hospital Cybersecurity Requirements of the Health Insurance Portability and Accountability Act (HIPAA) and other relevant regulations at Helen Hayes Hospital.
They will serve as subject matter expert in multiple areas of cybersecurity, such as incident response, digital forensics, risk assessments, digital identity management, and state and federal compliance requirements. The Project Coordinator may be responsible for supervising staff, assigning tasks, writing performance and probationary evaluations, conducting interviews, and hiring staff.
The Project Coordinator will also be responsible for the facility's information, security incident response, risk and compliance, and cyber governance. They will also support the implementation and improvement of information security incident response plans and reports. They will investigate alleged information security violations, refer cases to entities like NYS Cyber Command or law enforcement as required, and respond to external investigation requests.
They will perform analysis (e.g., logs, packet capture, reverse engineering) during cyber investigations to establish root cause and provide remediation recommendations.
Duties include:
Implementation of information security and compliance programs; participation in the development, interpretation, review and communication of information security regulations, policies, procedures, and standards; monitoring of security compliance information, and improvement recommendations; support of the implementation of information security procedures and protocols and participate in security risk reviews and remediation activity, including producing written reports; collaboration with internal and external partners to address information security issues;
planning and conducting outreach programs and activities to increase cybersecurity awareness; tracking and reporting on all security-related project portfolio tasks; support management in the resolution of security threats to agency and facility information systems; participation in information security risk analysis and risk management processes with business and IT units; review vulnerability scanning and analysis reports to help determine the scope of risk and prioritization of remediation;
collect and maintain a risk register, including reporting and tracking of remediation; monitoring of external data sources to maintain the currency of threat conditions and their potential impact on the enterprise. The Project Coordinator will also participate in the identification and modeling of new threat scenarios to provide proactive defensive measures to technical teams for mitigation of risk and will disseminate threat and vulnerability intelligence products.
They will participate in the continuous monitoring and protection of technology resources and determine events that require investigation and response.
In addition, the Project Coordinator will design, plan, and facilitate cybersecurity tabletop exercises to foster information sharing and enhance cyber awareness with stakeholders; conduct post-exercise after-action analysis, reporting, and assessment; develop recommendations; and design future exercises to validate improvements.
The Project Coordinator will evaluate systems and contracts for alignment with agency and State security policies; review contracts, service level agreements, memorandum of understanding language, and other documents to verify that they meet information security needs and requirements that align with facility, agency, and State security policies; provide information security expertise, advice, and recommendations to agency executives on a broad range of information security matters;
and act as an information security leader on projects and initiatives to ensure security by design through the implementation of the Secure Systems Development Lifecycle (SSDLC).
The Project Coordinator will monitor information security trends, tools, and techniques; they will keep abreast of relevant laws and regulations that could affect the security controls and classification of information assets and communicate legal and regulatory requirements; conduct research, administer, and utilize specialized cybersecurity tools, techniques, and procedures; represent the agency at internal and external information security meetings and conferences to maintain awareness and evaluate the applicability of the latest information security techniques and tools to the agency's security program;
participate in the creation and maintenance of dashboards and reports that present information security data in an…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×