Lead Policy Governance Specialist
Department of Transportation
Job Description and Duties
Caltrans is seeking a seasoned Security Governance, Risk, and Compliance (GRC) Lead with experience in security policy development, risk management, and compliance oversight. We are searching for an individual eager to be part of a growing team of motivated, hardworking professionals. If you’d like to join a collaborative, friendly, and passionate technical team where you will find endless opportunities to stretch and grow, we would love to meet you. The ideal candidate will possess a high degree of experience and knowledge in the practices, principles, and techniques of Cyber security governance, risk management, and compliance. The individual will also demonstrate the ability to perform risk assessments, develop and implement effective compliance strategies, and work seamlessly with a team of multi-disciplinary professionals.
Under the general direction of an Information Technology Manager I (ITM I), within Information Technology (IT) Security Services Division, the Information Technology Specialist II (ITS II), serves as a lead in cyber policy and is responsible for the maturation of the policy and governance unit including, but not limited, to the development and establishment of processes, procedures, and creation of key performance indicators (KPI) for the management and oversight as an Information Security Governance, Risk, and Compliance subject matter expert (SME), security governance/compliance project manager for FI$CAL and other statewide projects.
DOMAIN:
Information Security Engineering
PARF#20-6-106 / JC-500532
Eligibility for hire may be determined by your score on the Information Technology Specialist II exam. For those who do not have current eligibility (e.g., transfer, permissive reinstatement, or voluntary demotions) and/or who will be new to state civil services employment, you must be on the state examination list to be eligible for these positions. To apply for the exam, please click here and search by typing in the classification title.
Please take this 1-minute Caltrans Recruitment survey to tell us how you found out about this job.
https://forms.office.com/g/RyK102ty4G
https://youtu.be/oC9wIp8QalI
Apply today to join our team! We especially encourage applicants to check out Caltrans Career Compass tool! The Caltrans Career Compass is a tool to assist and help candidates understand and succeed in applying to Caltrans positions.
You will find additional information about the job in the Duty Statement.
Working Conditions
Position located at 1120 N Street Sacramento, CA 95814. Sacramento County. Multiple positions may be filled from this recruitment. This position may be eligible for telework. The amount of telework is at the discretion of the Department and based on Caltrans’s evolving telework policy. Caltrans supports telework, recognizing that in-person attendance may be required based on operational needs. Employees are expected to be able to report to their worksites with minimum notification if an urgent need arises. The selected candidate will be required to commute to the headquartered location as needed to meet operational needs. Business travel may be required, and reimbursement considers an employee’s designated headquartered location, primary residence, and may be subject to CalHR regulations or applicable bargaining unit contract provisions. All commute expenses to the headquartered location will be the responsibility of the selected candidate.
Minimum Requirements
You will find the Minimum Requirements in the Class Specification.
Position Details
Job Code #: JC-500532
Position #s: 900-170-1414-924
Working Title: Lead Policy Governance Specialist
Classification: INFORMATION TECHNOLOGY SPECIALIST II
# of Positions: Multiple
Work Location: Sacramento County
Telework: Hybrid
Job Type: Permanent, Full Time
Special Requirements
- Resume is required.
- Possession of a valid driver’s license is required when operating a State owned or leased vehicle.
- Statement of Qualifications (SOQ) is required.
The Statement of Qualifications (SOQ) must be no more than two (2) pages, 10pt font, 1” margins, include “Statement of Qualifications”, name, and job control number centered in the header and have the page number on the upper right hand corner of the second page only, if applicable and must be submitted along with your State Applications (STD 678). Resumes, cover letters and other documents do not replace the SOQ. Applicants who fail to submit the required SOQ as outlined may be disqualified from the selection process.
- Please describe how your experience and/or education makes you the best candidate for this position.
- Describe your experience and role in the areas of: communication with all stakeholders, data acquisition, processing, analysis, reporting, State Information Management Manual (SIMM 5300) and the State Administrative Manual (SAM).
- What is the role of the GRC function in an organization's cyber security strategy?
Application Instructions
Completed applications and all required documents must be received or postmarked by the Final Filing Date in order to be considered. Dates printed on Mobile Bar Codes, such as the Quick Response (QR) Codes available at the USPS, are not considered Postmark dates for the purpose of determining timely filing of an application.
Final Filing Date: 12/24/2025
Who May Apply
Individuals who are currently in the classification, eligible for lateral transfer, eligible for reinstatement, have list or LEAP eligibility, are in the process of obtaining list eligibility, or have SROA and/or Surplus eligibility (please attach your letter, if available). SROA and Surplus candidates are given priority; therefore, individuals with other eligibility may be considered in the event no SROA or Surplus candidates apply. Individuals who are eligible for a Training and Development assignment may also be considered for this position(s). Applications will be screened and only the most qualified applicants will be selected to move forward in the selection process.
How To Apply
Complete Application Packages (including your Examination/Employment Application (STD 678) and applicable or required documents) must be submitted to apply for this Job Posting. Application Packages may be submitted electronically through your CalCareer Account at www.CalCareers.ca.gov. When submitting your application in hard copy, a completed copy of the Application Package listing must be included. If you choose to not apply electronically, a hard copy application package may be submitted through an alternative method listed below.
Desirable Qualifications
- Security Certifications: One of the following CISSP, CISM, CRISC
- Deep Understanding of the NIST 800-53 Framework
- Working knowledge of security operations, identity & access management, data protection, and cloud security
- Strong analytical and problem-solving abilities
- Excellent verbal and written communication
- Attention to detail and organizational skills
- Collaborative, with a proactive and flexible attitude
Benefits
Click HERE to view the Benefits Summary for Civil Service Employees in the State of California.
Contact Information
Human Resources Contact: Dina Coloma, (279) 234-2328, dina.coloma@dot.ca.gov
Hiring Unit Contact: IT Admin HR Contact, (916) 224-2023, IT.Admin.HR@dot.ca.gov
EEO Contact: Caltrans EEO Office, (844) 368-3367, Ask.eeo@dot.ca.gov
California Relay Service: 1-800-735-2929 (TTY), 1-800-735-2922 (Voice)
Equal Opportunity Employer
The State of California is an equal opportunity employer to all, regardless of age, ancestry, color, disability (mental and physical), exercising the right to family care and medical leave, gender, gender expression, gender identity, genetic information, marital status, medical condition, military or veteran status, national origin, political affiliation, race, religious creed, sex (includes pregnancy, childbirth, breastfeeding and related medical conditions), and sexual orientation.
It is an objective of the State of California to achieve a drug-free work place. Any applicant for state employment will be expected to behave in accordance with this objective because the use of illegal drugs is inconsistent with the law of the State, the rules governing Civil Service, and the special trust placed in public servants.
