Back to Jobs
O

Governance, Risk, & Compliance Business Associate (BPA 1)

Ohio Department of Administrative ServicesPosted 2 months ago
Full TimeMid
LocationOhio, United States
Work ArrangementOn-Site
Salary Range$33 – $33 / year
Experience2-5 years

Job Description

Office of Information Services

The Office of Information Services (OIS) works to support the business functions and the delivery of health, human, and employment services through the application of information technology. OIS supports the delivery of programs to millions of recipients through the development and round-the-clock operation of automated information systems. Due to the number of end-users and technologies supported, OIS is one of the largest and most complex IT organizations within Ohio state government. Learn more about the Office by visiting the ODJFS OIS webpage.

What You Will Do

The Governance, Risk, and Compliance (GRC) pillar within OIS is responsible for managing cyber-security risk, regulatory compliance, and audit readiness across the Agency and its associated County partners. The GRC Business Associate supports cyber-security assessments, IT risk evaluations, and audit activities to ensure compliance with federal, state, and contractual requirements. This role contributes to protecting sensitive public data, strengthening security controls, and improving the overall risk posture of County and Agency systems.

Duties include but are not limited to:

  • Assist and support maintenance of the Agency’s IT GRC policies, procedures, and related tools and services.
  • Perform IT risk assessments using established methodologies and procedures.
  • Apply cyber security frameworks to scope assessments, evaluate controls, document findings, and communicate results.
  • Support assessments of County agencies, including the County Department of Job and Family Services (CDJFS), County Child Support Enforcement Agencies (CSEA), and County Public Children Services Agencies (PCSA).
  • Support third-party risk assessments based on data sharing agreements and contractual security requirements.
  • Assist with review of System Security Plans (SSPs), Security Impact Analyses, IT Risk Profile Assessments, and Privacy Impact Assessments (PIAs).
  • Assist with internal and external audits and remediation tracking.
     

Schedule: Full-time

Hours: Standard workdays are Monday through Friday. Hours are between 7:00 a.m. and 6:00 p.m.

Location: This position will be headquartered in an ODJFS Facility in one of the following cities - Columbus, Akron, or Dayton. This determination will take into account the proximity to the applicant's home address.

Rhodes State Officer Tower - 30E Broad Street, Columbus, OH 43215
Akron - 172 S. Broadway Street, Akron, OH 44308
Dayton - 6680 Poe Avenue, Dayton, OH 45414

Travel: Travel is expected in state to counties and third party locations for Risk Assessments and Audits (approximately one week a month). State vehicle will be available for use during these trips. No overnight trips.

PN(s): 2003362, 20039934



The ideal candidate, at minimum, must have the following: 

Option 1:

  • 36 months work experience in any combination of the following:  creating and coordinating technical and business requirements for processes, projects and procedures, working with business users and technical staff to develop strategies and leading modification or creation of new systems for implementation of information technology solutions.

     

Option 2:

  • 18 months work experience in any combination of the following:  creating and coordinating technical and business requirements for processes, projects and procedures, working with business users and technical staff to develop strategies and leading modification or creation of new systems for implementation of information technology solutions.

     

  • Completion of Associate's core program in Computer Science or Information Systems

Option 3:

  • 12 months work experience in any combination of the following:  creating and coordinating technical and business requirements for processes, projects and procedures, working with business users and technical staff to develop strategies and leading modification or creation of new systems for implementation of information technology solutions.

     

  • Completion of undergraduate core program in Computer Science or Information Systems

Option 4:

  • Equivalent of minimum class qualifications for employment noted above.

Tips For Your Application

When completing the different sections of this application, be sure to clearly describe how you meet the minimum qualifications outlined in this job posting. We cannot give you credit for your Work Experience and Education & Certifications if you do not provide that information in your online application. Information in attached resumes or cover letters must be entered into your application in the appropriate Work Experience or Education & Certification sections to be considered.

Pay Information

This position is in the State of Ohio’s OCSEA Pay Schedule, Pay Range 33. Unless required by legislation or union contract, starting salary will be the minimum salary of that pay range (step 1, currently $33.52 per hour). These ranges provide a standardized pathway for pay increases. With continued employment, new hires move to the next step in the range after 6 months and annually thereafter. Cost of Living Adjustments increase wages in these ranges each fiscal year. The current step progression wages are in the table below.

Pay Range 33

Step 1

Step 2

Step 3

Step 4

Step 5

Step 6 

Step 7 

Step 8  

Step 9  

Hourly

$33.52

$35.15

$36.90

$38.70

$40.59

$42.62

$44.66

$46.87

$49.18

Annual

$69,722

$73,112

$76,752

$80,496

$84,427

$88,650

$92,893

$97,490

$102,294

Months of Employment

At Hire

6 Months

18 Months

30 Months

42 Months

54 Months 

66 Months 

78 Months 

90 Months 

 

About the Company
O
Ohio Department of Administrative Services
1 open position
View all jobs →
Similar Jobs