Information Security Business Analyst (Operations and Policy Analyst 3)

State of Oregon


Do you have experience with Business Analysis and Program/Project Management related to public policy and business project planning, execution, and reporting? Are you passionate about ensuring that things run smoothly? Do you enjoy consulting, coaching, and facilitating? Are you able to communicate detailed/technical information to diverse audiences? Do you possess knowledge of statistical analysis methods and tools? If you answered yes, please continue reading for more information.

The Enterprise Security Office (ESO) brings together enterprise security capabilities into a single organization. The ESO is responsible for enterprise security policy, security monitoring of the state network, enterprise incident response, and enterprise security architecture, as well as dissemination of security training, policy, and best practices across state government. ESO works collaboratively with Enterprise Technology Services and agencies to support information security functions and ensure the security of the state network and information technology infrastructure.

While all agencies are collectively responsible for information security, the work of ESO supports and increases the collective impact and resilience of state agencies.

What you will be doing!
You will conduct research and analysis in the area of information security; assist with fiscal activities such as grant research, application, tracking and reporting, contract development, etc.; and research and analyze legislation affecting department and state-level security programs.

This role fosters a culture of risk-based information security within the executive branch agencies, boards, and commissions. This is achieved by working closely with the assigned state agencies, Senior Information Technology Portfolio Managers (ITPM), and other stakeholders to help Executive branch agencies identify information security risks and advise on how to prioritize and manage the risks in alignment business objectives.

For a complete listing of the duties and responsibilities for this position please review the position description by clicking here (Download PDF reader).

What’s in it for you!
You will be part of a team of talented individuals charged with recommending, developing and implementing security policies, standards and program priorities in the area of information security technology that support statewide agency programs. You will have the opportunity to make a difference.

We offer full medical, vision, and dental with paid Sick Leave, Vacation, Personal leave and 10 paid holidays a year.

This is a full-time position that is not represented by a union.
This recruitment may be used to fill future vacancies.

Qualifications, Required & Requested Skills

To be considered for this position you must meet the following minimum qualifications (required skills):

A Bachelor’s Degree in Business or Public Administration, Behavioral or Social Sciences, Finance, Law, Political Science, Computer Science or Computer Technology with a focus on cyber security, or a related degree; AND four years professional-level evaluative, analytical and planning work.


Any combination of experience and education equivalent to seven years of professional-level evaluative, analytical and planning work.

Requested Skills
While these skills are not required, candidates who are the most competitive will have the following:

  • Skilled in Business Analysis and Program/Project Management related to public policy and business project planning, execution and reporting.
  • Skilled in business process redesign.
  • Knowledgeable of statistical analysis methods and tools.
  • Knowledgeable of project/initiative governance.
  • Skilled in research, consulting, coaching and facilitation methods.
  • Skilled in the use of MS Excel, Word, and PowerPoint.
  • Skilled in stakeholder outreach and governance structuring methods.
  • Skilled in communication strategy and planning and the ability to communicate detailed information to a diverse audience.
  • Ability to work in a team environment.
  • Experience analyzing business requirements, processes and policies.
  • Excellent written and verbal communication and presentation skills.
  • Have current Associate of ISC2, CISSP or CISM certification or have the ability to obtain Associate of ISC2, CISSP or CISM certification within one year of being hired is a plus and is highly desirable.

Additional Information

To Apply

  • Click the “Apply” button above and complete the online application.
  • Attach a resume.
  • Attach a cover letter.
  • Attach Veterans’ Preference documentation, if you are requesting veterans’ preference. Veterans’ preference information and appropriate documentation is outlined by the following website: Veterans Resources. You may also call the Oregon Department of Veterans’ Affairs at 1-800-692-9666.
  • Answer all the supplemental questions.

Candidates whose training and/or experience most closely match the requirements and needs of the position will be eligible for an interview.

Finalists will be subject to a computerized criminal history check.  Adverse background data may be grounds for immediate disqualification.  

Applicants must be authorized to work in the United States. Applicants who require VISA sponsorship will not be considered at this time.

Questions/Need Help?
Do you have questions about the recruitment and selection process (e.g., supplemental questions, clarification of job announcement information, etc.)? Contact Rebecca Wilson, Recruitment Analyst, at [email protected] or call (503) 373-7655. If you need an alternate format in order to complete the application process, please contact Rebecca and be prepared to describe the alternate format needed.

If you have computer related difficulties (such as login issues, attaching documents, web browser issues, get an error message during the application process, etc.), please call the NEOGOV help line for assistance at 1-855-524-5627 or e-mail NEOGOV at [email protected]. When submitting an applicant issue please include your name, if you have an applicant ID, a valid contact number, the issue, and if possible a time when you are available to be contacted.

Job Posting Reference Number: DAS18-1088


To apply for this job please visit