Administrator, IT Security

Location
Baltimore, Maryland
Posted
Mar 16, 2017
Institution Type
Community College

Provide oversight of security matters which span multiple functional areas within the Information Technology Department.
  MINIMUM REQUIREMENTS: Bachelor's Degree in an Information Technology related field. Five years of experience in Information Technology. Two of those years directly involved with securing information systems. Security+, CEH, CISM, or CISSP preferred. Must have a valid driver's license in good standing with violation points less than five (5).
  For best consideration please apply by March 30, 2017. CLASS SPECIFIC ESSENTIAL DUTIES:

  1. Provide planning and implementation of additions, deletions and major modifications to the college-wide information security infrastructure.
  2. Perform complex security analysis to secure the business processes of the institution while meet faculty, student, and administrative user needs.
  3. Implement a comprehensive communication plan to provide the college community the tools and knowledge required to perform business processes in a secure and efficient manner.
  4. Coordinate the development and enforcement of college wide information security polices, standards, procedures and guidelines.
  5. Collaborate with designated staff from each business area of the college in oversight and enforcement of security violations.
  6. Maintain currency with industry compliance standards.
  7. Assist the College community in identifying and remediating college security policy violations.

Essential Job Duties are intended to be examples of duties and are not intended to be all inclusive. There will be other duties as assigned.
  POSITION SPECIFIC ESSENTIAL DUTIES:

  1. Monitor and assess the College's Personally Identifiable Information (PII) exposure risk footprint.  Work with the College community to review and remediate violations of the College's PII policies.  Communicate with key stakeholders concerning new PII policies and employee remediation processes.  (The college currently employs the Identity Finder product for PII remediation.)
  2. Plan and implement security measures to protect the College's computer systems, networks and data.  (The College currently primarily employs the Cisco platform for networking, Windows and Red Hat platforms for Intel Servers and AIX on PowerPC for the production Oracle database.)
  3. Perform periodic internal and third party risk assessments and testing of data processing systems that identify current and future security vulnerabilities, determine what level of risk is acceptable to management and identifies the best ways to reduce information security risks to the acceptable level.
  4. Perform forensic investigations and provide post mortem analysis of information security breaches violations, malicious activity and incidents to all levels of management.
  5. Install, configure and maintain Access Control Lists (ACLs), firewalls, data encryption and other security measures.  (The College currently employs the Cisco and Juniper security platforms.)
  6. Review and recommend new security enhancements and purchases to protect, monitor and report on the College's business processes and distance learning environments.
  7. Communicate with and provide training for the College community on current network and information security processes and procedures.
  8. Create, test and implement disaster recovery plans.

Essential Job Duties are intended to be examples of duties and are not intended to be all inclusive. There will be other duties as assigned.