Sign In

Blog

Latest News

Information Security Officer
Contract, Hybrid
Augusta, ME
Posted 6 days ago

Information Security Officer

Posted: June 20, 2025 Job Type: Contract Industry: Computer and Mathematical

Our client is seeking a dedicated Information Security Officer for a 12+ month contract. This crucial role offers a hybrid work opportunity, primarily remote with an on-site requirement in Augusta, Maine, typically two times per month. We are actively looking for local candidates within the New England area.

About the Job Details:

This is a unique hybrid work opportunity, predominantly remote, with a mandatory on-site presence typically every other Tuesday in Augusta, Maine. The successful candidate will be required to visit the facility upon their start to obtain equipment and complete a facility tour. There may be a few additional occasions requiring an extra on-site day, such as for on-site audits.

The Agency Information Security Officer serves a pivotal function, providing expert consultative and professional advice on security issues to agency and executive management. This individual acts as the agency’s primary Subject Matter Expert (SME) on all information security matters. The position involves close collaboration with various state agencies and IT divisions to proactively identify, meticulously assess, prevent, protect, and mitigate information security risks, threats, and vulnerabilities, all aimed at safeguarding essential business operations. This individual will serve as a central point of contact for security-related matters for agencies, assisting them in their strategic planning, operational needs, incident response operations, and critical regulatory compliance efforts.

What You Will Do:

As the Agency Information Security Officer, you will be instrumental in fortifying the state’s security posture:

  • Security Posture Enhancement: Collaborate extensively with various agencies and IT divisions to strengthen the state’s overall security posture. This involves continuous assessment of vulnerabilities, implementing proactive security measures, and meticulously aligning security initiatives with overarching business goals.
  • Independent Security Judgment: Exercise independent judgment on critical security matters, including conducting thorough risk assessments, making informed decisions on resource allocation for security initiatives, and overseeing policy implementation. Your work will ensure that the agency’s operations and inter-agency relationships remain secure and compliant with both state and federal regulations.
  • Program Implementation & Collaboration: Work closely with different sections of the Information Security Office to effectively implement and support the comprehensive State of Maine Information Security Program Plan. You will foster robust cross-functional collaboration to proactively address emerging threats and vulnerabilities.
  • Stakeholder Engagement & Strategy Integration: Engage strategically with stakeholders across various agencies to seamlessly integrate security strategies into core business objectives. This ensures that security operations and initiatives directly support the agency’s missions, goals, and critical regulatory compliance needs.
  • Cybersecurity Issue Escalation & Resolution: Serve as the primary point of contact for the escalation of complex cybersecurity issues. You will ensure that concerns are promptly addressed and resolved in a timely, coordinated, and efficient manner to minimize risk and maintain essential business continuity.
  • Security Policies & Standards Advice: Provide expert advice on security policies and standards. This includes developing, meticulously reviewing, and rigorously enforcing security policies, standards, and best practices to ensure strict agency compliance with state and federal regulations.
  • Risk Assessment & Management: Conduct comprehensive security risk assessments, thoroughly analyze findings, and recommend effective remediation strategies to mitigate identified threats and vulnerabilities.
  • Incident Management & Response: Assist with security incident investigations, coordinate unified response efforts, and provide crucial guidance on incident containment, remediation, and required reporting procedures.
  • Third-Party Risk Management: Evaluate vendor and third-party security controls to ensure their compliance with state security requirements and industry standards, safeguarding the supply chain.
  • Audit & Compliance Support: Provide strong support for internal and external security audits by furnishing necessary documentation, offering expert guidance, and ensuring adherence to all regulatory requirements.
  • Emerging Threat & Technology Assessment: Stay continuously informed about evolving cybersecurity threats, new technologies, and emerging best practices. You will provide timely recommendations for continuously improving agency defenses.
  • Business Continuity & Disaster Recovery: Collaborate actively with agencies to develop, maintain, and rigorously test business continuity and disaster recovery plans to ensure resilience and rapid restoration of operations in the event of a significant security incident or disruption.

What Makes This Job Unique?

This is more than just a security role; it’s an opportunity for significant impact:

  • Make a Difference: The broad scope of this position profoundly impacts the trajectory of application security within the state, directly ensuring the integrity and confidentiality of critical government systems and citizen data.
  • Show Your Strength: This is a prime chance to apply your deep expertise in information and application security, demonstrating your capabilities in a high-visibility, high-impact environment.
  • Experience in State Government: An invaluable opportunity to gain experience and contribute within a large IT enterprise that supports critical State applications, offering unique insights into public sector technology.
  • Selfless Service: Play a pivotal role in safeguarding the State’s critical systems, directly contributing to the public good by protecting citizens’ data and ensuring the secure and continuous operation of essential government services.

Preferred Qualifications:

The ideal candidate will also possess these key attributes:

  • Proactive: Uses time effectively, demonstrates strong initiative, and makes sound decisions independently.
  • Collaborative: Builds strong coalitions and fosters effective partnerships among supported agencies for efficient and unified information security program management.
  • Expertise: Possesses subject matter expertise or demonstrates the clear capacity to quickly become an expert in all the role’s essential functions.
  • Versatility: A dynamic individual capable of skillfully balancing complex information security demands with agency business functions and broader statewide risk considerations.

Why Will You Love It Here?

If you are seeking a culture that genuinely supports professional growth, fosters success, and offers a key role in maintaining the confidentiality, integrity, and availability of vital data and systems, then this IT organization is where you need to be! With the IT Information Security Office, you can expect:

  • Immersion in State Government: Immersion in the rapidly evolving issues of state government and a fast-moving organization full of opportunity for impact and learning.
  • Talented Collaboration: Direct collaboration with talented peers and exposure to creative and innovative problem-solving approaches.
  • Unique Projects: Opportunities to tackle unique and complex projects specifically in application security, pushing your skills and experience to new levels.

Minimum Qualifications:

  • Leadership Experience: A self-motivated leader with 5 to 7 years of progressive experience in a leadership role, encompassing information security, relationship management, and proven success in cross-functional goal achievement.
  • Education/Experience: A Bachelor’s degree in information technology or a related field. Four years of direct experience with information security consultancy may be used in lieu of a degree.
  • NIST Expertise: Demonstrated expertise working with Security and Privacy Controls for Information Systems and Organizations as established by the National Institute of Standards and Technology (NIST).
  • Background Check: Ability to successfully pass all required background checks.
  • Preferred Support Function Experience: While not mandatory, experience with support functions—such as consolidated data centers, shared print facilities, and disaster recovery sites—as they relate to the regulatory compliance requirements for federally protected data types is preferred.

If this is a role that interests you and you’d like to learn more, click “apply now” and a recruiter will be in touch with you to discuss this great opportunity. We look forward to speaking with you!

Job Features

Job CategoryHybrid, Security

Apply For This Job

A valid phone number is required.
Copyright @ 2024 eStreet Security. All Rights Reserved by eStreet!