Security Investigator Manager - Technical Information Security Officer - Exempt, Rec 3319
This is a full-time management (MPP) position. MPP employees serve at the pleasure of the campus President. MPPs do not serve a probationary period and never receive permanent status.
This position is a "designated position" in the California State University's Conflict of Interest Code. The successful candidate accepting this position is required to file Conflict of Interest forms subject to the regulations of the Fair Political Practices Commission.
Special Working Conditions: The incumbent is required to maintain contact with the campus outside of normal working hours on a regular basis except during authorized vacation periods. Remote contact shall include telephone/cellphone, wireless data access devices, remotely logging into necessary systems, and/or electronic mail.
Salary Range and Max Salary
Review of applications will begin 06/25/2018, and the position will remain open until filled.
Salary is commensurate with experience.
Conditions of Employment Possession of a valid Driver's License is required. Employees in this position will be enrolled in the Department of Motor Vehicles (DMV) Government Employer Pull Notice Program which confirms possession of a valid driver's license and reflects driving record.
Satisfactory completion of a background check (including a criminal records check) is required for employment. CSU will make a conditional offer of employment, which may be rescinded if the background check reveals disqualifying information, and/or it is discovered that the candidate knowingly withheld or falsified information. Failure to satisfactorily complete the background check may affect the continued employment of a current CSU employee who was conditionally offered the position.
Campus Marketing Statement
California State University, Dominguez Hills, was established in 1960 and is one of the 23 campuses that comprise The California State University system. CSU Dominguez Hills is an urban, comprehensive public university that serves a culturally rich, diverse student body of over 12,500 students at the undergraduate and graduate levels. Located on a 346-acre site in the South Bay portion of the greater Los Angeles metropolitan area, CSU Dominguez Hills has a highly pluralistic student body, which includes a significant number of non-traditional, working adult students as well as approximately 2,000 students enrolled in distance learning programs statewide. The University, with its five Academic Colleges, has more than 300 full-time faculty members and is situated in an area characterized by an extraordinary heterogeneity of people, and an extensive array of high technology industries and professional services.
Department Marketing Statement
Department: Information Technology - Information Security
The Division of Information Technology is responsible for providing leadership and support in information technology for the entire CSU Dominguez Hills community. The Division promotes IT solutions that improve the teaching, learning, research, and administrative environment of the University. The Vice President / CIO provides overall management of the Division of IT. The Division of Information Technology is comprised of eight operational units: Service & Financial Mgmt, User Services, Academic Technology, Infrastructure & Production Services, Information Security, Development & Digital Convergence, Innovation Incubator, and Operational Effectiveness, Planning, & Analytics.
Under the general direction of the Vice President, Chief Information Officer for Information Technology and collaboration with Information Technology department heads, the Security Investigation Manager serves in a management capacity for campus forensic, copyright, litigation processes, Information Security services, and CSU system-wide policy and standards efforts. The position is required to ensure compliance with all federal, state, and CSU information security regulations and policies. Develops, provides, integrates, and oversees information security processes to technology-based solutions and systems. Serves as the campus Technical Information Security Officer and as a member of the system-wide Information Security Advisory Committee. Represents the campus on various system-wide Information Security Advisory Committee subgroups as a subject area expert. Provides management technical support to campus personnel in support of ongoing assessment of campus security posture and protection of electronically and physically stored information assets across campus systems. Utilizes advanced communication and listening skills while working with campus Risk Management and legal counsel. Oversees activities for confidential processes and practices.
Required Education: Bachelor¿s degree from an accredited four-year college or university in Computer Science or a related field.
Required Experience: A minimum of five years¿ experience with network and system security, forensics and litigation systems and process, and loss prevention technologies
Preferred: At least five (5) years of progressively responsible activities supporting network and system security, use of certified tools for network vulnerability, forensics, and email examination. At least three (3) years of experience supporting endpoint security software and network based security appliances, encryption frameworks, and cloud based backup solutions such as Code42; advanced threat configuration, monitoring, and reporting using Dell Secureworks or Qualys; distributed log management using LogRythm, forensic handling processes using Guidance Software-EnCase, web application scanning (WAS) using Accunitx, and data loss prevention technologies using Identity Finder. Certified Forensic Examiner is preferred.
Required Knowledge, Skills, and Abilities:
- Principles and practices of computer programming
- Principals or public administration
- Principles or organization, administration, and management
- Knowledge of project implementation and project management
- Analyze problems and to make appropriate recommendations
- Software development lifecycle
- Work cooperatively with representatives of campus departments
- Relate problems solution requirements to computer programmers as well as faculty and staff
- Design report formats considering machine capabilities and limitations
- Effective communication both orally and written
- Effectively and efficiently manage, create, operate, maintain, and troubleshoot enterprise applications
- Monitor and optimize process performance
- Contact and communicate with CSU systemwide or manufacturer help desks for technical support
- Understand ICSUAM Security policies and procedures from the CSU Chancellor¿s Office perspective and how they impact the University
- Work effectively with individuals in the campus and CSU system
- Work independently, organize and plan work and projects, including handling multiple priorities in a project environment
- Meet stringent deadlines and complete assignments with general direction
- Read, analyze, interpret, troubleshoot, and communicate effectively and efficiently
- Use judgment to make decisions, interpret, test, and apply solutions
- Recognize and identify training needs and recommend appropriate method of delivery; and initiative and ingenuity to solve problems and to suggest improvements
- Communicate clearly and effectively with technical and non-technical individuals within a culturally diverse campus environment.
Certification: Valid drivers license
Specialized Materials: The position activities require the use of personal computers, peripherals, and communication equipment, such as UNIX/Windows-based workstations and mobile devices.
35% - Litigation Support:
- Manage the forensics and litigation tool sets and processes.
- Monitor all security incidents for endpoint security and network appliances.
- Collect campus system data as support for campus Legal counsel using cloud based backup solutions, such as Code42.
- Configure, monitor, and report advanced threats using Dell Secureworks, Acunetix and Qualys.
- Architect and develop the log management system.
35% - Security and Scanning:
- Participate in the CSU Systemwide security policies and standards development under the intergrated, CSU administrative manual section 8000 (ICSUAM 8000). Serve as a technical security resource for campus IT and CSU, consultants, and external vendors.
- Required to facilitate annual audit of sensitive data. This includes the responsibility for legal forensic processes using software tools similar to Guidance Software - EnCase and Paraben Email examiner for use in performing keyword searches.
- Manage the process for security identification application development platforms. Responsible for web application scanning (WAS) using Accunitx and developing and monitoring all campus Web development security standards.
-Define the overall security environment for campus deployed workstations and servers utilizing third party vulnerability management process.
- Test and validate the campus payment card industry annual certification for acceptance of credit cards.
20% - Loss Prevention:
- Oversee data loss prevention (DLP) technologies such as Cloudlock, BitGlass and Spirion (Identity Finder).
- Generate ad hoc reports using vendor supplied reporting mechanisms.
10% - Other Duties:
- Meet with division HR Liaisons and Academic Resource Managers to review document retention practices. Provide information security status reports.
- Participate in CSU Systemwide technologies committees
- Provides consultation to operational staff and campus end users regarding information and securities.
- Attend and participate in departmental and team meetings.
- May develop training materials and present regarding security awareness
- Perform other duties as assigned.
To Apply Please Visit: https://www.csudh.edu/hr/job-opportunities/
To apply for this posting (Non-CSUDH Employees):
Step 1: Select and read the qualifications for the position you are interested in
Step 2: Click 'Apply Now' at the bottom of the screen
Step 3: Login or Register (Create Username and Password)
Step 4: Select apply with or without resume
Step 5: Provide contact information and answer required questions
Step 6: Click 'Submit'
California State University, Dominguez Hills, is an equal employment opportunity employer, and is strongly committed to achieving excellence through a diverse workforce. The University actively encourages applications of all qualified individuals.
California State University Dominguez Hills is an Affirmative Action/Equal Opportunity Employer. We consider qualified applicants for employment without regard to race, religion, color, national origin, ancestry, age, sex, gender, gender identity, gender expression, sexual orientation, genetic information, medical condition, disability, marital status, or protected veteran status. For more information or definition of these terms please visit, http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf http://www.dol.gov/ofccp/regs/compliance/posters/pdf/Supplement_English.pdf
Individuals with disabilities requesting accommodations under the Americans with Disabilities Act (ADA) may call the Human Resources Office at (310) 243-3771 or the Academic Affairs Personnel Services Office at (310) 243-3766.
Clery Act crime statistics for CSUDH are available at http://www.csudh.edu/dhpd/dhpd.htm, or by calling University Police at (310) 243-3639.
Upon appointment all candidates must furnish proof of eligibility to work in the U.S.
The California State University is Smoke and Tobacco Free. Smoking, Vaping and other Tobacco use are Not Permitted anywhere on University property. Education Code 42356, CCR Title 5, Article 9