Information Security Officer

Job description

Instructions to applicants:

Submit letter of interest, resume, contact information for three references, and completed Sul Ross Application at .

Job Title:

Information Security Officer




Office of Informational Technology

Posting Date:


Until Filled:



$110,000 to $125,000


Associate’s degree or an equivalent technical degree. Experience as a security or technology administrator in a complex technology environment


Bachelor’s Degree with documented level of security training or a certification. Must have demonstrable experience in an information security position or role, prior experience as a network, server, database, or application administrator and experience with UNIX and UNIX shell scripting. Must have knowledge of authoritative standards, guidelines, and best practices relative to information security

Primary Responsibilities:

Essential duties include developing, recommending and maintaining an institution-wide information security plan as required by §2054.133, Texas Government Code; developing, recommending and maintaining information security policies and procedures that address the requirements of TAC 202 and the institution’s information security risks; working with the business and technical resources to ensure that controls are utilized to address all applicable requirements of TAC 202 and the institution’s information security risks; providing guidance and assistance to senior institution of higher education officials, information owners, information custodians, and end users concerning their responsibilities under TAC 202; ensuring that annual information security risk assessments are performed and documented by information-owners; reviewing the institution’s inventory of information systems and related ownership and responsibilities; developing and recommending policies and establishing procedures and practices, in cooperation with the institution Information Resources Manager (IRM), information-owners and custodians, necessary to ensure the security of information and information resources against unauthorized or accidental modification, destruction, or disclosure; coordinating the review of the data security requirements, specifications, and, if applicable, third-party risk assessment of any new computer applications or services that receive, maintain, and/or share confidential data; verifying that security requirements are identified and risk mitigation plans are developed and contractually agreed and obligated prior to the purchase of information technology hardware, software, and systems development services for any new high impact computer applications or computer applications that receive, maintain, and/or share confidential data; reporting, at least annually, to the state institution of higher education head the status and effectiveness of security controls; informing head of the state institution or the !RM in the event of noncompliance with TAC 202 and/or with the institution’s information security policies; promoting and implementing a variety of educational programs and resources to enhance the security awareness, knowledge and consciousness of all user constituencies; overseeing an ongoing risk assessment program that assures periodic evaluation of information resources (both centrally and departmentally managed) with respect to current and emerging security threats; developing and implementing appropriate protocols for managing, escalating, and documenting security incidents; collaborating in the development and maintenance of appropriate disaster recovery and business continuity plans to assure acceptable information availability and protection; developing, analyzing and maintaining metrics, reports and records associated with security policy violations, breaches, and similar incidents; pro-actively participating in security and technology groups and associations, both internal and external to the university, and pursuing other professional development activities as necessary to enhance professional knowledge and competencies; using elevated access privileges in an ethical and professional manner with appropriate regard for privacy and confidentiality; and, showing responsibility for personal safety and the safety of others; must exercise due caution and practice safe work habits at all times.

Performs additional job-related duties and responsibilities as requested.

Other Information:

Office conditions, exempt from overtime provisions. Position is Security Sensitive.

Texas Law requires a 60 day waiting period before new state employees are eligible to enroll in health insurance.

It is the policy of Sul Ross State University to provide equal employment opportunity for all persons in accordance with their individual, job related qualifications and without consideration of race, creed, color, sex, religion, age, national origin, disability, sexual orientation, gender identity, veteran status and ancestry. Equal employment opportunities shall be afforded in all personnel actions or decisions including, but not necessarily limited to, recruitment, hiring, training, upgrading, promotion, demotion, termination and salary. Retaliation is prohibited against a person who opposes a discriminatory practice, files a charge, testifies, assists or participates in an investigative proceeding or hearing.

About SRSU:

Sul Ross State University, located in Alpine, Texas (, is in the Scenic Davis Mountains of West Texas, is a member of the Texas State University System, is accredited by the Commission on Colleges of the Southern Association of Colleges and Schools to award Bachelor’s, and Master’s degrees, and has an enrollment of approximately 2,000 students on campus in Alpine, Texas. At an elevation of 4,480 feet, and on the periphery of the Chihuahuan Desert, Alpine enjoys mild winters and cool summers. Davis Mountain State Park, Fort Davis National Historic Site, Big Bend National Park, and Guadalupe National Park are all within one to three hours driving distance from Alpine. More information is available regarding Sul Ross State University and position openings through our website (




Diversity Profile: University



View more

Learn more on Inside Higher Ed's College Page for University

Arrow pointing right
Job No:
Posted: 3/6/2021
Application Due: 6/4/2021
Work Type: Full Time