- Provide direction, develop standards, and initiate processes related to Information Security.- Update and review security policies.- Maintaining, optimizing and monitoring internal security systems (SIEM, CASB, DLP, IDS/IPS, and endpoint) to ensure we are looking at relevant alert information.- Report, investigate, and resolve security incidents.- Administer authentication and access controls, including oversight of provisioning, changes and de-provisioning of user and system accounts, security/access roles and access permissions to information assets.- Develop and maintain documentation for security systems and procedures.- Research security trends, new methods, and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach.- Perform risk and compliance self-assessments; and engage and coordinate third-party risk and compliance assessments.- Review, assess, and mitigate penetration tests and vulnerability assessments on information systems and infrastructure.- Third party technology service provider oversight and security compliance.- Develop and administer information security training for IT personnel and CU staff.- Oversight and management of all system software patching, ensuring that all workstations, servers, and appliances are up to date and patched regularly.- Act as main point of contact for computer security issues and concerns.
4-7 years
- Familiarity with securing Windows and Linux servers and clients- Strict adherence to the CIA triad- Familiarity with firewall rule configurations- Excellent communication, customer service and documentation skills required.- Strong attention to detail.- Excellent organizational and follow-through skills.- Ability to communicate effectively and clearly with non-technical staff by phone and email.- Ability to follow oral and written instructions.- Ability to handle and prioritize multiple issues in a fast-paced work environment and handle on call issues and to perform after hour maintenance
- High school diploma- Has at least two-year degree in Computer Science or related field (Or 4+ years relevant work experience)- Has worked in Information Security for 2+ years OR has worked as an Information Technology (IT) team member for 4+ years- A current security certification including or similar to CISSP, Security+, OSCP or equivalent required.- Experience in Windows and Active Directory Security and system hardening- Knowledge of best practices for securing data centers, networks and server components.
High School
We are here to help you with your questions.