Assistant Director, Information Security Manager This is an Exempt position which falls within the APA Union. General Statement of Duties: The Information Security Manager is responsible for the design, oversight, and ongoing management of the information security program at Bridgewater State University. Supervision Received: Works under the direct supervision of the Assistant Vice President of Infrastructure Services. Supervision Exercised: Supervises professional personnel as assigned. The Information Security Manager may exercise supervision over graduate students and student employees assigned to the area. Core Duties: 1. Responsible for developing, documenting and maintaining all information security policies, procedures and controls including a written Comprehensive Information Security Program (CISP). Ensures each are regularly reviewed, tested and updated. 2. Responsible for leading information security initiatives, programs, and working groups. This includes but is not limited to the Information Security Team, Security Incident Response Team, and the University's Be Security Conscious initiative. 3. Conducts routine information security assessments of information systems, including university applications, databases, technology infrastructure, and user access. 4. Conducts internal reviews to monitor compliance with university security policies, procedures, and controls. 5. Ensures the university is in compliance with local, state, and federal security regulations. Responsibilities include working with various business units on security compliance initiatives and providing written documentation on all non-compliance issues. 6. Responsible for security incident response leadership, planning, execution, awareness, reporting, and training. 7. Defines, identifies, and classifies critical information assets and facilities, assesses threats and vulnerabilities to those assets, and is responsible for documenting safeguarding recommendations. 8. Performs security risk assessment on all new technology related projects and services. 9. Research, evaluate, and recommend new technologies and tools within the information security field that may be suitable for deployment. 10. Institute information security education and communication programs to increase security awareness throughout the University. 11. Maintains and increases professional knowledge in information security best practices, computer hardware and software, network infrastructure and institutional applications. 12. Job duties may require work to be performed off-hours or on weekends. 13. Additional responsibilities as directed by the supervisor consistent with rank and position.
Required Minimum Qualifications
1. Bachelor's Degree required. Bachelor's Degree in MIS or Computer Science desired. 2. Minimum 2 years' experience as an information security analyst or similar role; or minimum of 5 years' experience in networking/systems and/or application development role supporting a large enterprise with demonstrated information security work experience. 3. Professional information security or compliance certification required. Examples include CISSP, CISM, CISA, GIAC certifications. 4. Demonstrated experience with Windows Server and client family of operating systems and experience with Linux required.
1. Master's Degree. 2. Network or System certifications, examples include MCSA, MCSE, CCNA. 3. Demonstrated experience using various security tools including monitoring software, vulnerability scanners, and intrusion detection systems. 4. Demonstrated ability to analyze logs from firewalls, sniffers, systems and other infrastructure components. 5. Demonstrated experience with enterprise resource planning and relational database management systems ? examples include Banner/PeopleSoft and Oracle/SQL Server. 6. Demonstrated ability to work effectively and collegially with colleagues required. 7. Excellent analytical, organizational, and communication skills required. 8. Ability to work independently on multiple assignments and to work collaboratively within a team required. 9. Experience working in a higher education environment.
Special Instructions to Applicants Items other than resume or letter of interest that applicants must submit
All (Internal and External candidates)
Pay Rate (Applicant View)
Commensurate with qualifications and experience
Job Open Date
Job Close Date
Open Until Filled
Application Types Accepted