Vacancy caducado!
- Participates in incident response activities, including readiness activities and table-top exercises.
- Monitors for and coordinates response to vulnerabilities in the agency’s on-premise and cloud environments.
- Responsible for developing and implementation a comprehensive information security program and prioritized roadmap
- Conducts or coordinates periodic vulnerability scan and penetration tests
- Manages institution-wide information security governance processes
- Execute on incident response plans, identify root cause, and drive mitigations to prevent future occurrences
- Champion projects that improve our security and incident response capabilities
- Responsible for security event monitoring, management, and response utilizing SEIM toolsets
- Works horizontally across the organization to provide highly reliable, secure, and cost-effective network security services
- Leads the implementation of security controls, practices, and policies through collaboration with other WVNET technical staff
- Assists in risk assessments and gap analysis for compliance to various policies and regulations, including, but not limited to FERPA, HIPAA, PCI, and internal policies
- Regularly reviews and recommends updates to internal information security policy and procedures
- Directs the development and delivery of a security awareness training program for employees
- Develops training related to cybersecurity standards, penetration testing, vulnerability assessments, and accreditation and certification.
- Engages and educates customers on information security threats and best practices to manage risk
- Provides regular presentations on information security topics
- Maintains a current understanding of the IT threat landscape for the industry
- Keeps current with new or evolving information technology
- Required: Bachelor’s degree in computer science, information system, information assurance, cyber security, or a technology-related field.
- Preferred: Master’s degree in the same fields of study.
- 5 years - Experience working as an IT technical specialist in networking, systems operations, or similar department of a large IT organization.
- 2 years - Experience working in an information security role or department.
- Preferred: Experience working in higher education.
- Preferred: Professional security certification (e.g., CISSP, CISM/A).
- Strong technical and operational knowledge of general security concepts and methods (vulnerability assessments, privacy assessments, intrusion detection, incident response)
- A strong understanding of information security regulatory requirements and compliance issues.
- In-depth understanding of networking protocols, security-related technologies, and end user security issues.
- Experience with vulnerability scanning and security management platforms
- Experience with common security and privacy legislation and regulations (e.g. PCIDSS, FERPA, HIPAA, etc.)
- Familiarity with security standards (NIST, ISO, COBIT)
- Excellent analytical, troubleshooting and interpersonal skills.
- Excellent verbal and written communication skills.
- Organization and attention to detail.
Vacancy caducado!