Job details

Agency Information Security Officer

Get a free resume review

Overview

Knowledge Services is seeking an Agency Information Security Officer for a contract through the end of June 2026 (potential for extension) with the State of Maine Office of Technology in Augusta, ME.

Hybrid work schedule with a potential to work remotely as much as 90% of the time with management approval
Applicants must be current residents of Maine

Responsibilities

Agency Information Security Officer Responsibilities:

• The role of the Agency Information Security Officer is to provide consultative, professional advice and expertise about security issues to agency and executive management; is the agency subject matter expert on information security matters.

• The position will work with agencies and MaineIT divisions to identify, assess, prevent, protect, and mitigate information security risks, threats, and vulnerabilities to safeguard business operations.

• This individual will serve as a central point of contact on security related matters for agencies to assist in their strategic planning, operational needs, incident response operations, and regulatory compliance efforts.

Key Responsibilities:

• Collaborate with agencies and MaineIT to strengthen the state's security posture through continuous assessment, proactive security measures, and alignment of security initiatives with business goals.• Exercise independent judgment on critical security matters, including risk assessments, resource allocation, and policy implementation, ensuring the agency’s operations and inter-agency relationships are secure and compliant with state and federal regulations.• Work closely with sections of the Information Security Office to implement and support the State of Maine Information Security Program Plan, fostering cross-functional collaboration to address emerging threats and vulnerabilities.• Engage with stakeholders across agencies to integrate security strategies into business objectives, ensuring that security operations and initiatives directly support the agency’s missions, goals, and regulatory compliance needs.• Serve as the primary point of contact for the escalation of cybersecurity issues, ensuring that concerns are promptly addressed and resolved in a timely, coordinated, and efficient manner to minimize risk and maintain business continuity.• Advise on Security Policies & Standards – Develop, review, and enforce security policies, standards, and best practices to ensure agency compliance with state and federal regulations.• Risk Assessment & Management – Conduct security risk assessments, analyze findings, and recommend remediation strategies to mitigate threats and vulnerabilities.• Incident Management & Response – Assist with security incident investigations, coordinate response efforts, and provide guidance on incident containment, remediation, and reporting.• Third-Party Risk Management – Evaluate vendor and third-party security controls to ensure compliance with state security requirements and industry standards.• Audit & Compliance Support – Support internal and external security audits by providing necessary documentation and guidance to ensure adherence to regulatory requirements.• Emerging Threat & Technology Assessment – Stay informed on evolving cybersecurity threats, technologies, and best practices, and provide recommendations for improving agency defenses.• Business Continuity & Disaster Recovery – Collaborate with agencies to develop and test business continuity and disaster recovery plans to ensure resilience in the event of a security incident or disruption.

Qualifications

Agency Information Security Officer Required Skills:

• Minimum of 5 to 7 years of experience in a leadership role, information security, relationship management, and cross-functional goal achievement• Regulatory compliance & policy implementation• Incident response & threat mitigation

• Bachelor’s degree in information technology or related field. (Four years of direct experience with information security consultancy may be used in lieu of a degree)• Expertise working with Security and Privacy Controls for Information Systems and Organizations as established by the National Institute of Standards and Technology (NIST)• While not mandatory, experience with support functions—such as consolidated data centers, shared print facilities, and disaster recovery sites—as they relate to the regulatory compliance requirements for federally protected data types is preferred.

We are an Equal Opportunity Employer. We do not discriminate on the basis of race, religion, color, sex, age, national origin or disability.

INDIT

ISDPD

Average salary estimate

$115000 / YEARLY (est.)

min

max

$100000K

$130000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Agency Information Security Officer, Knowledge Services

Knowledge Services is excited to invite applications for the role of Agency Information Security Officer in beautiful Augusta, Maine! This is an incredible opportunity to join a dynamic team at the State of Maine Office of Technology, where you’ll be entrusted with safeguarding vital information and ensuring compliance with security standards. In this role, you’ll leverage your expertise to advise agency and executive management on critical security issues while collaborating with MaineIT divisions to pinpoint and mitigate potential risks. Enjoy a flexible hybrid work schedule, with up to 90% remote work generally allowed upon management approval. Your primary duties will include performing risk assessments, developing security policies, and coordinating incident response efforts, all aimed at enhancing our state's security posture. You’ll also play a pivotal role in third-party risk management and the execution of disaster recovery plans. If you’re passionate about information security and want to make a tangible impact in government operations, this position at Knowledge Services is the perfect fit for you. Join us and help protect the essential data that shapes the future of Maine!

Frequently Asked Questions (FAQs) for Agency Information Security Officer Role at Knowledge Services

What are the main responsibilities of an Agency Information Security Officer at Knowledge Services?

The Agency Information Security Officer at Knowledge Services is pivotal in ensuring the security of information systems within the State of Maine Office of Technology. Key responsibilities include consulting agency management on security issues, assessing and mitigating information security risks, and serving as a central point of contact for security-related matters. You'll be collaborating with various agencies to enhance the state's overall security posture, developing and enforcing security policies, and providing incident response support.