IT Security Professional I

Employer
East Carolina University
Location
Greenville

View more

Administrative Jobs
Institutional & Business Affairs, Safety & Security
Employment Type
Full Time
Institution Type
Four-Year Institution

Job Details

Job Title:

IT Security Professional I

Position Number :

500039

Vacancy Open to :

All Candidates

Department :

AFH IT Information Security

Department Homepage :

https://itcs.ecu.edu/

Advertising Department :

ITCS SECURITY

Division :

Administration & Finance

Classification Title :

IT Security Professional I

Working Title :

IT Security Professional I

Number of Vacancies :

1

Full Time Equivalent (FTE) :

1.00

Full Time or Part Time :

Full Time

Recruitment Range:

$62,926 - $74,452

Position Location (City) :

Greenville

Position Type:

Non-Faculty

Job Category :

Non-Faculty Information Technology

Organizational Unit Overview:

Information Technology and Computing Services (ITCS) is the central agency that supports enterprise-wide computing at East Carolina University. ITCS, through innovative information technology initiatives and service, provides opportunities for the ECU community to excel in teaching, research, and service using state-of-the-market technology and collaborative environments. ITCS is first and foremost committed to providing excellent information technology support for faculty, staff, and students. ITCS partners with campus departments, other universities, and industry to make strategic investments in information technology infrastructure that will help maintain a competitive advantage in administrative applications, faculty research, and outreach to the state and nation. We will achieve this through increasing the core functions and deploying appropriate technology throughout the university.

The Information Security Office within ITCS provides leadership on information security vision, strategy, and policy, advising the CIO and other university colleagues on information security and IT risk management functions that support ECU in fulfilling our mission, business obligations, and compliance requirements. The Office manages the University Information Security Program, which is composed of policies, standards, processes, and guidance that collectively form an information security governance framework for the University. The Information Security unit includes the Cyber Security Operations Center (CSOC) team responsible for detecting, analyzing, and facilitating the university’s response to cyber threats. The work of CSOC is focused on security incident response efforts, vulnerability management, sensitive data verification, cyber threat management, security information and event management (SIEM), and digital forensics.

Job Duties :

Information Security Specialist

Reporting to the Chief Information Security Officer (CISO), the Information Security Specialist reviews, develops, and maintains information security policies, standards, best practices, and employee awareness content in accordance with university business needs, stakeholder expectations, regulatory and legal requirements, contractual obligations, and applicable industry standards. The person in this position assists in analyzing complex information security issues, conducting risk assessments, and advising clients and risk owners on practical solutions. The Information Security Specialist develops, manages, and implements project plans as needed to achieve information security strategies and goals, and is able to manage and juggle multiple responsibilities simultaneously and meet deadlines. This employee communicates effectively with clients at all organizational levels to provide the information needed for informed decision making. The person in this position advises on security incident management and reporting activities.

Security awareness and training

Regularly examine university information security awareness content and the methods by which the content is delivered to the ECU community and proactively address opportunities for improvement. Work with various university resource areas to develop new content, update existing content, and find new and improved ways of raising campus awareness of information security responsibilities and current best practices. Develop or revise online training, present security awareness content to committees and stakeholder groups, and report on training effectiveness to senior administrators and impacted stakeholders.

Policy and standards development

Assist with the development and maintenance of information security policies, standards, and best practices in collaboration with relevant functional areas and stakeholders. Assess policies, standards, and best practices for alignment with university business needs, regulatory and legal requirements, contractual obligations, industry standards, and the university risk environment. Proactively identify and act on opportunities to develop and/or improve information security policies, standards, and best practices in order to meet the needs and obligations of the University. Establish and lead development teams and review groups to ensure University and stakeholder needs are addressed.

Information security and risk management

Collaboratively perform security assessments and risk assessments in accordance with ISO 27002, ISO 27005 and other relevant frameworks. Consult asset owners, risk owners, and functional area representatives to identify and assess risks to university information and related information assets. Advise functional area administrators and department directors on incorporating information risks into their risk management processes and on the treatment of risks within their respective areas of management responsibility.

Project planning and management

Assist with, develop and/or manage information security projects and strategic initiatives in accordance with defined information security strategies and goals. This includes, but is not limited to collaboratively developing strategic plans; formally defining and documenting project scopes, objectives, tasks, deliverables, success criteria and timelines; establishing and leading work groups; directing, coordinating and tracking plan and project activities; and reporting on progress, successes and issues to relevant management areas and impacted stakeholders.

Client communication and support

Consult with other functional area teams and stakeholders on an on-going basis to develop security solution sets and strategies, and build client support for information security projects and initiatives. Promote information security as an essential business responsibility of every management area by way of formal management reports, committee presentations, and collaborative discussions with stakeholders and decision-makers.

Security incident response and management

Assist other members of the Information Security team and Cyber Security Operations Center (CSOC) team with incident investigations, incident management, and reporting. Where incident investigations are not covered by ITCS incident response processes or other defined areas of responsibility, assist with incident investigations to ensure ECU information and compliance risks are appropriately addressed.

Other duties as assigned by the CISO.

Employees are required to adjust their standard work schedule to meet the requirements of their position, which includes and not limited to evening and weekend hours to perform scheduled and unscheduled workload requirements to maintain University operations.

Minimum Education/Experience :

Bachelor’s degree or equivalent combination of education and experience.

License or Certification Required by Statute or Regulation :

N/A

Preferred Experience, Skills, Training/Education :

Experience with supporting an information security program and providing assistance with integrating information security requirements into organizational processes. Experience in delivering employee security awareness and training, and providing assistance for complex information security related projects. Experience in assisting with the development and maintenance of information security policies and standards and assessing the level of compliance with them. Experience with information security risk assessment and risk management and supporting incident response teams and incident reporting processes.

Special Instructions to Applicant :

East Carolina University requires applicants to submit a candidate profile online in order to be considered for the position. Candidates must also submit a cover letter, resume, and a list of three references, including contact information, online.

Applicants must be currently authorized to work in the United States on a full-time basis.

Additional Instructions to Applicant:

In order to be considered for this position, applicants must complete a candidate profile online via the PeopleAdmin system and submit any requested documents. Additionally, applicants that possess the preferred education and experience must also possess the minimum education/experience, if applicable.

Job Open Date :

11/08/2021

Open Until Filled:

Yes

Initial Screening Begins :

11/22/2021

Quick Link for Direct Access to Posting :

https://ecu.peopleadmin.com/postings/46478

AA/EOE :

East Carolina University is an equal opportunity and affirmative action employer and seeks to create an environment that fosters the recruitment and retention of a more diverse student body, faculty, staff and administration. We encourage qualified applicants from women, minorities, veterans, individuals with a disability, and historically underrepresented groups. All qualified applicants will receive consideration for employment without regard to their race/ethnicity, color, genetic information, national origin, religion, sex, sexual orientation, gender identity, age, disability, political affiliation, or veteran status.

Individuals requesting accommodation under the Americans with Disabilities Act Amendments Act (ADAAA) should contact the Department of Human Resources at (252) 737-1018 (Voice/TTY) or [email protected].

Eligibility for Employment :

Final candidates are subject to criminal & sex offender background checks. Some vacancies also require credit or motor vehicle checks. ECU participates in E-Verify. Federal law requires all employers to verify the identity and employment eligibility of all persons hired to work in the United States.

Office of Human Resources Contact Information :

If you experience any problems accessing the system or have questions about the application process, please contact the Office of Human Resources at (252) 328-9847 or toll free at 1-866-489-1740 or send an email to [email protected] Our office is available to provide assistance Monday-Friday from 8:00-5:00 EST.

Organization

ECU offers a challenging academic environment and an energetic campus life. We are committed to excellence through a talented and diverse faculty and staff. One of the perks of working at ECU is that you can take up to 9 credit hours of classes per year at no cost to you. There is also a textbook loan program in place available to permanent ECU staff and faculty, or their eligible dependent children or spouse. ECU also offers excellent benefits, including health care and retirement plans, and generous leave time.

Scholarship. Discovery. Service. Leadership.

Here, those values are more than just buzzwords. They indicate the wealth of opportunity that ECU students experience while engaging in the rigorous pursuit of knowledge. They define the many ways in which students innovate and forge new paths. They encompass the life lessons our students learn while serving others and improving communities. They emphasize the encouragement our students receive to stand up and lead the way into a brighter tomorrow. http://www.ecu.edu/cs-acad/admissions/whyecu.cfm

To be a national model for student success, public service and regional transformation, East Carolina University:

  • Uses innovative learning strategies and delivery methods to maximize access;
  • Prepares students with the knowledge, skills and values to succeed in a global, multicultural society;
  • Develops tomorrow's leaders to serve and inspire positive change;
  • Discovers new knowledge and innovations to support a thriving future for eastern North Carolina and beyond;
  • Transforms health care, promotes wellness, and reduces health disparities; and
  • Improves quality of life through cultural enrichment, academics, the arts, and athletics.

http://www.ecu.edu/cs-admin/chancellor/mission-and-vision.cfm

Find Us
Location
United States

Get job alerts

Create a job alert and receive personalized job recommendations straight to your inbox.

Create alert