Information Security Engineer

Information Security Engineer - Risk and Compliance - ITS5 Join to apply for the Information Security Engineer - Risk and Compliance - ITS5 role at Minnesota IT Services At the State of Minnesota, employees play a critical role in developing policies, providing essential services, and working to improve the well‑being and quality of life for all Minnesotans. The State of Minnesota is committed to equity and inclusion, and invests in employees by providing benefits, support resources, and training and development opportunities. Join the 2,800+ professionals of Minnesota IT Services (MNIT) who connect Minnesotans to services that will improve their lives. This position will be part of the Enterprise Security team, which embeds security protection statewide. Join our team as a principal information security engineer and take the lead in protecting the state’s most important information and systems. In this key role, you will help shape and strengthen our Information Security Program to keep our data secure from today’s threats and ready for future challenges. Your main focus will be on Governance, Risk, and Compliance (GRC)—helping to build a strong, compliant, and proactive security culture throughout the organization. Key Responsibilities Design and implement security controls that meet state and federal standards. Coordinate and support audits, both internal and external; help develop corrective action plans and track progress. Lead security assessments from planning through completion, including defining scope, assigning tasks, monitoring progress, and ensuring timely delivery. Prepare and maintain security documentation, such as System Security Plans (SSPs), Plans of Action and Milestones (POAMs), and other required documentation. Monitor and report on compliance with security policies and regulatory requirements. Act as a primary liaison with federal agency partners to support compliance efforts, security assessments, and audit engagements. Collaborate with IT and business teams to integrate security into projects and daily operations; provide subject matter expertise as needed. Mentor and train team members to build skills, share knowledge, and promote best practices. Represent the security team in meetings, audits, and planning sessions as an expert in information security governance, risk, and compliance. Promote a culture of security awareness, encouraging proactive identification and mitigation of risks. Minimum Qualifications Position requires a minimum of five (5) years of IT related experience in information security engineer or related information security role. Experience with security governance, risk assessment, and compliance management. Comfortable working with Unix, Linux, and Windows operating systems, and familiar with the tools used to manage them. Able to create or review technical documentation and make sure it’s clear and accurate. Using risk management tools, coordinating audits, developing policies, or reporting on security metrics. A good understanding of security regulations and standards like NIST, IRS 1075, HIPAA, PCI, and MARSE (or similar frameworks). Ability to deliver effective verbal or written messages that facilitate a mutual understanding on both parties. Customer service skills that include active listening, empathy, and problem‑solving. A master’s degree in Information Technology or an IT related field substitutes for three (3) years of experience, OR an IT related bachelor’s degree substitutes for two (2) years, OR an IT related associate’s degree substitutes for one (1) year. Preferred Qualifications Experience serving in the role of Team Lead, Principal or Architect level position. GRC experience leading federal regulatory reviews and compliance activities. Strong Azure experience, specifically within the IAM, architecture, compliance and security areas. Certified Information Systems Security Professional (CISSP) or the ability to certify within one (1) year of hire. Other technologies or certifications: CISA, CISM, Security+, MS Azure or other relevant information security certification. Experience implementing security frameworks and systems security plan development. Additional Requirements Policy: Must pass all legally required background checks before employment. Background checks: SEMA4 Records Check (for current and past state employees), Criminal History Check, Reference Check, Social Security and Address Verification, Education Verification, CJIS Background Check. How To Apply Select “Apply for Job” at the top of this page. If you have questions about applying for jobs, contact the Careers Help Desk at 651‑259‑3637 or email careers@state.mn.us. For additional information about the application process, go to http://www.mn.gov/careers. Contact If you have questions about this position, contact Kellie Schoppe at kellie.schoppe@state.mn.us. Connect 700 Program To receive consideration as a Connect 700 Program applicant, apply online, email the Job ID# 90114, the Working Title and your valid Proof of Eligibility Certificate by the closing date to kellie.schoppe@state.mn.us. Veterans To be considered for any Veteran's Status, you must indicate this on your application. Recently Separated Veterans (RSV) and Certain Disabled Veterans programs are described above. Current State Employees Bidders: This vacancy is open for bids and all qualified applicants simultaneously. Current employees of Minnesota IT Services who are currently in an Information Technology Specialist 5 / Information Security position and who are eligible to bid and apply within the seven (7) day bidding period will be considered prior to filling the position via other means. Current State Employees: Please note that employment provisions vary among the three branches of Minnesota State government. About Minnesota IT Services Minnesota IT Services is the information technology agency for the State of Minnesota. MNIT partners with agencies, boards, councils, and commissions to deliver secure, reliable technology solutions as we set IT strategy, direction, policies, and standards statewide. Work for MNIT and be part of a nation‑leading IT organization that helps to create an innovative government that works for everyone. Benefits Paid vacation and sick leave 12 paid holidays each year Low‑cost medical, dental, vision, and prescription drug plans Fertility care, including IVF Diabetes care Dental and orthodontic care for adults and children 6 weeks paid leave for parents of newborn or newly adopted children Pension plan that provides income when you retire (after working at least three years) Employer paid life insurance to provide support for your family in the event of death Short‑term and long‑term disability insurance that can provide income if you are unable to work due to illness or injury Tax‑free expense accounts for health, dental, and dependent care Resources that provide support and promote physical, emotional, social, and financial well‑being Training and Professional Development Training, classes, and professional development Tuition reimbursement Federal Public Service Loan Forgiveness Program (Some positions may qualify for the Public Service Loan Forgiveness Program. For more information, visit the Federal Student Aid website at studentaid.gov) Employee Assistance Program (EAP) A voluntary confidential program that helps employees and their families with life challenges that may impact overall health, personal well‑being, or job performance Common sources of stress can be addressed through the EAP: mental health, relationship challenges, grief and loss, finances, and legal issues Daily Living/Convenience Services: chore services, home repair, trip planning, child/elder care Equal Opportunity Employer Minnesota state agencies are equal opportunity, affirmative action, and veteran‑friendly employers. State agencies are committed to creating a workforce that reflects the diversity of the state and strongly encourage persons of color and Indigenous communities, members of the LGBTQIA2S+ community, individuals with disabilities, women, and veterans to apply. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, national origin, sex, gender identity, marital status, familial status, age, sexual orientation, disability, veteran status, or activity in a local Human Rights Commission or any other characteristic protected by law. Applicants with Disabilities: Minnesota state agencies make reasonable accommodations to their employees and applicants with disabilities. #J-18808-Ljbffr