IT PROFESSIONAL 4 - INFORMATION SECURITY AND CYBER DEFENSE

This non-supervisory position is located in Carson City or Las Vegas within the Governor's Office of Technology, Office of Information Security and Cyber Defense. The State is seeking an intellectually curious and highly skilled Penetration Tester to join its information security team. In this role, the incumbent will perform authorized, ethical hacking to identify and exploit vulnerabilities across the State's digital infrastructure, including web applications, cloud environments, and internal networks. The goal is to proactively uncover weaknesses and provide actionable remediation strategies to strengthen the State's overall security posture. The incumbent will plan, design, and execute penetration tests to evaluate the effectiveness of existing security controls. This position ensures all testing activities align with industry standards such as OWASP, PTES, and NIST, while also supporting compliance with regulatory frameworks including CIS, CJIS, PCI-DSS, and HIPAA. Responsibilities include preparing clear and comprehensive security briefings and reports, documenting findings, and presenting recommendations to both management and technical teams. The incumbent will collaborate closely with IT and development teams to guide the remediation or mitigation of identified vulnerabilities. Additionally, this role involves developing custom scripts or tools to enhance testing capabilities and automate workflows.Information Technology (IT) Professionals analyze, develop, implement, maintain, and modify computer operations, systems, networks, databases, applications, and/or information security. Incumbents may perform duties in one or more IT specialization areas depending on the needs of the agency.

Do you have experience in Policy & process development?, Do you have a Bachelor's degree?, Bachelor's degree from an accredited college or university in computer science, management information systems, or closely related field and five years of professional IT experience relevant to the duties of the position which may include systems administration, network administration, database administration, applications analysis and development, and/or information security, two years of which were at the advanced journey level or in a supervisory or project management capacity; OR Bachelor's degree from an accredited college or university in computer science, management information systems, or closely related field and five years of professional IT experience which may include systems administration, network administration, database administration, applications analysis and development, and/or information security, relevant to the duties of the position, two years of which were at the journey level in information security; OR two years of relevant experience as an IT Professional III in Nevada State service; OR an equivalent combination of education and experience as described above.