Class Description
Valid as of: July 1, 2024
This class series uses six levels in the Information Technology Occupational Group and describes the development and/or execution of cyber security policy, risk, and compliance. Positions in these classes monitor, evaluate, and maintain systems and procedures to safeguard internal information systems, network, databases, and Web-based security. Work involves conducting vulnerability assessments and monitoring systems, network, databases and Web for potential system breaches; responding to alerts from information security tools; and, reporting, investigating and resolving security incidents. Work may include educating and communicating security requirements and procedures to users/employees; and, recommending and implementing changes to enhance systems security and prevent unauthorized access.
CYBER SECURITY I T1B1XX
Concept of Class
Cyber Security I describes the entry level. Entry level positions perform tasks that are structured and designed to provide training and experience. Tasks are performed under direct supervision and detailed instruction and guidance is received. Employees in this class learn to apply theories and principles of the field. Positions used for training purposes do not remain at this level indefinitely.
Factors
Allocation must be based on meeting all of the three factors as described below.
Decision Making --Defined. There is a choice in selecting alternatives that affect the manner and speed of a decision, but there is typically only one correct way to carry out the operation.
Complexity --Patterned. Studies and utilizes information to determine its meaning and identify practical solutions. Although guidelines exist for most situations, this level typically involves multiple choice situations where the guidelines are not as clear.
Line/Staff Authority --Individual Contributor. The direct field of influence the work of a position has on the organization is as an individual contributor. Positions may explain work processes and train others, serve as a resource or guide by advising others on how to use processes within a system, or serve as a member of a collaborative problem-solving team.
CYBER SECURITY II T1B2XX
Concept of Class
Cyber Security II describes the intermediate level. Intermediate positions operate independently in performing assignments that are limited to phases of a fully operational assignment or which may be designed to provide continued training and experience. Work requires determining solutions to practical problems using specified standards and established criteria. Judgment is used to select and apply existing guidelines to solve problems and accomplish the assignment. This class differs from Cyber Security I by the Decision Making factor.
Factors
Allocation must be based on meeting all of the three factors as described below.
Decision Making --Operational. In carrying out the process, there is a choice as to what and how operations will be completed. Although limits are set by the specific process, work requires reasoning to produce practical courses of action that are within the guidelines of the process. Decisions are made without prior approval however the focus is still on practical solutions.
Complexity --Patterned. Studies and utilizes information to determine its meaning and identify practical solutions. Although guidelines exist for most situations, this level typically involves multiple choice situations where the guidelines are not as clear.
Line/Staff Authority --Individual Contributor. The direct field of influence the work of a position has on the organization is as an individual contributor. Positions may explain work processes and train others, serve as a resource or guide by advising others on how to use processes within a system, or serve as a member of a collaborative problem-solving team.
CYBER SECURITY III T1B3XX
Concept of Class
Cyber Security III describes the fully operational. Fully operational positions operate independently in performing the full range of tasks. Work requires the use of discretion within the limits of theory and principles of the profession, management’s objectives, laws and regulations, and general systems and guidelines. This class differs from Cyber Security II by the Decision Making and Complexity factors.
Factors
Allocation must be based on meeting all of the three factors as described below.
Decision Making --Process. There is a choice in determining the process to accomplish the work. This choice includes designing the set of operations. Limits are set by professional standards, program objectives, and policies established by higher management. Process level decisions are more theoretical in the sense that positions must evaluate and apply theories and models as part of the assignment.
Complexity --Formulative. Evaluates the relevance and importance of theories, concepts and principles, and tailors them to develop a different approach or tactical plan to fit specific circumstances. Guidelines typically exist but are inadequate. Judgment and resourcefulness are needed because guidelines are relevant only through approximations or analogies to fit particular circumstances.
Line/Staff Authority --Individual Contributor. The direct field of influence the work of a position has on the organization is as an individual contributor. Positions may explain work processes and train others, serve as a resource or guide by advising others on how to use processes within a system, or serve as a member of a collaborative problem-solving team.
CYBER SECURITY IV T1B4XX
Concept of Class
Cyber Security IV describes the Work Leader or Staff Authority. These class concepts are described below under the Line/Staff Authority.
What differs this class from Cyber Security III is the Line/Staff Authority factor.
Factors
Allocation must be based on meeting all of the three factors as described below.
Decision Making --Process. There is a choice in determining the process to accomplish the work. This choice includes designing the set of operations. Limits are set by professional standards, program objectives, and policies established by higher management. Process level decisions are more theoretical in the sense that positions must evaluate and apply theories and models as part of the assignment.
Complexity --Formulative. Evaluates the relevance and importance of theories, concepts and principles, and tailors them to develop a different approach or tactical plan to fit specific circumstances. Guidelines typically exist but are inadequate. Judgment and resourcefulness are needed because guidelines are relevant only through approximations or analogies to fit particular circumstances.
Line/Staff Authority --Work Leader. Partially accountable for the work product of at least two subordinate FTEs. This includes assigning tasks, monitoring workflow, and scheduling work. Work Leaders provide input into supervisory decisions but do not have direct authority for hiring, terminations, or performance management.
OR;
Staff Authority. Staff Authorities are experts on the application of a program or system in a state agency or to its clients. Positions possess a unique level of knowledge and expertise in a field that is critical to the success of an agency’s objectives.
CYBER SECURITY V T1B5XX
Concept of Class
Cyber Security V describes the Unit Supervisor or Senior Authority. These class concepts are described below under the Line/Staff Authority factor.
This class differs from Cyber Security IV from the Line/Staff Authority factor.
Factors
Allocation must be based on meeting all of the three factors as described below.
Decision Making --Process. There is a choice in determining the process to accomplish the work. This choice includes designing the set of operations. Limits are set by professional standards, program objectives, and policies established by higher management. Process level decisions are more theoretical in the sense that positions must evaluate and apply theories and models as part of the assignment.
Complexity --Formulative. Evaluates the relevance and importance of theories, concepts and principles, and tailors them to develop a different approach or tactical plan to fit specific circumstances. Guidelines typically exist but are inadequate. Judgment and resourcefulness are needed because guidelines are relevant only through approximations or analogies to fit particular circumstances.
Line/Staff Authority --Unit Supervisor. Positions are accountable, including signature authority, for actions and decisions impacting the pay, status, and tenure of at least three subordinate FTEs. Positions must include providing documentation to support corrective and disciplinary actions, signing performance plans and appraisals, and resolving informal grievances. Positions at this level start the hiring process, interview applicants, and recommend hire, promotion, or transfer.
OR;
Senior Authority. Senior authorities possess a unique level of knowledge and expertise in a field that is critical to the agency’s overall mission. Agency management routinely relies on the essential consultation of the authority before deciding broad, critical program and policy direction.
CYBER SECURITY VI T1B6XX
Concept of Class
Cyber Security VI describes the Manger or Leading Authority.These class concepts are described below under the Line/Staff Authority factor.
What differs this class from Cyber Security V is the Decision making, Complexity, and Line/Staff authority factors.
Factors
Allocation must be based on meeting all of the three factors as described below.
Decision Making --Interpretive. There is a choice in determining the tactical plans to achieve the objectives established by a higher management level. This degree of decision making establishes what is to be done in similar circumstances in the future which includes inventing and changing systems or designing processes, policies and guidelines.
Complexity --Strategic. Develops guidelines to implement programs that achieve the agency’s mission. Guidelines do not exist in many or most situations. Judgment and resourcefulness are needed to interpret circumstances in a variety of situations and establish guidelines that direct how agency programs will be implemented.
Line/Staff Authority --Manager. Accountable for multiple units through the direct supervision of at least two subordinate Unit Supervisors. Positions must include providing documentation to support corrective and disciplinary actions, signing performance plans and appraisals, and resolving informal grievances. Positions at this level start the hiring process, interview applicants, and recommend hire, promotion, or transfer.
OR;
Leading Authority. Leading authorities possess a unique level of knowledge and expertise in a field that is critical to the agency’s overall mission. This level of expertise is rare, and has a direct impact on the profession itself both within and outside state boundaries. State and Agency leaders rely on this authority when making strategic decisions regarding the long-term direction of policy, programs, and systems related to the authority’s field of expertise.
Entrance Requirements
Minimum entry requirements and general knowledge, skills, and abilities for classes in this
series are contained in the class minimum qualifications document.
For purposes of the Americans with Disabilities Act Amendments Act (ADAAA), the essential functions of specific positions are identified in the position description questionnaires and job analyses.
History of Changes Made to Class Description
The following is a summary of changes made to this class description.
- July 1, 2024 (Whole Document)
Effective 7/1/24: Cyber Security series created as a result of the IT Professional system maintenance study.
Summary of Factor Ratings
| Class Level | Decision Making | Complexity | Line/Staff Authority |
|---|---|---|---|
| Cyber Security I | Defined | Patterned | Individual Contributor |
| Cyber Security II | Defined | Prescribed | Individual Contributor |
| Cyber Security III | Process | Formulative | Individual Contributor |
| Cyber Security IV | Process | Formulative | Work Leader or Staff Authority |
| Cyber Security V | Process | Formulative | Unit Supervisor or Senior Authority |
| Cyber Security VI | Interpretive | Strategic | Manager or Leading Authority |
Minimum Qualifications
Valid as of: July 1, 2024
This document includes the following levels:
| Class Title | Class Code |
|---|---|
| Cyber Security I | T1B1XX |
| Cyber Security II | T1B2XX |
| Cyber Security III | T1B3XX |
| Cyber Security IV | T1B4XX |
| Cyber Security V | T1B5XX |
| Cyber Security VI | T1B6XX |
CYBER SECURITY I (T1B1XX)
Experience Only:
One (1) year of relevant experience in an occupation related to the work assigned to this position.
OR
Education and Experience:
A combination of related education, formalized apprenticeship program, certification, and/or relevant experience in an occupation related to the work assigned equal to one (1) year.
CYBER SECURITY II (T1B2XX)
Experience Only:
Two (2) years of relevant experience in an occupation related to the work assigned to this position.
OR
Education and Experience:
A combination of related education, formalized apprenticeship program, certification, and/or relevant experience in an occupation related to the work assigned equal to two (2) years.
CYBER SECURITY III (T1B3XX)
Experience Only:
Three (3) years of relevant experience in an occupation related to the work assigned to this position.
OR
Education and Experience:
A combination of related education, formalized apprenticeship program, certification, and/or relevant experience in an occupation related to the work assigned equal to three (3) years.
CYBER SECURITY IV (T1B4XX)
Experience Only:
Four (4) years of relevant experience in an occupation related to the work assigned to this position.
OR
Education and Experience:
A combination of related education, formalized apprenticeship program, certification, and/or relevant experience in an occupation related to the work assigned equal to four (4) years.
CYBER SECURITY V (T1B5XX)
Experience Only:
Six (6) years of relevant experience in an occupation related to the work assigned to this position, one (1) of which must have been at the level of a work leader, staff authority, unit supervisor, or equivalent.
OR
Education and Experience:
A combination of related education, formalized apprenticeship program, certification, and/or relevant experience in an occupation related to the work assigned equal to six (6) years, one (1) of which must have been at the level of a work leader, staff authority, unit supervisor, or equivalent.
CYBER SECURITY VI (T1B6XX)
Experience Only:
Eight (8) years of relevant experience in an occupation related to the work assigned to this position.
OR
Education and Experience:
A combination of related education and/or relevant experience in an occupation related to the work assigned equal to eight (8) years, two (2) of which must have been at the level of a work leader, staff authority, unit supervisor, or equivalent.
History of Changes Made to Minimum Qualification
The following is a summary of changes made to this minimum qualification.
- July 1, 2024 (Whole Document)
Class series was created per a 2023-24 system maintenance study