Under the guidance of the Lead Information Systems Security Officer/Engineer, develop, update, maintain, test, and coordinating activities for the following business critical plans: Disaster Recovery Plan (DRP), Continuity of Operation Plan and Business Continuity Plan (COOP/BCP), IT Risk Assessment (RA), Business Impact Analysis (BIA). Provide effective information security and awareness training to the University community. Help with the daily administration of information security products, and processes.
The employee is responsible for developing, updating, maintaining testing and coordinating activities for the following business critical plans: Disaster Recovery Plan (DRP), Continuity of Operation Plan and Business Continuity Plan (COOP/BCP), IT Risk Assessment (RA), Business Impact Analysis (BIA).
The employee is responsible for daily IT Security related activities directly supporting the IT Security, IT Networking, Server Team groups, while interfacing with other internal and external constituencies.
The employee will develop new IT training strategies for the NSU community, track progress and provide timely reports. Additionally the employee will plan and conduct IT security training activities for the October's cyber security awareness month.
The employee will compile reports and supporting documentation to be presented in OIT and upper management meetings. Additionally the employee will help collect and submit information relevant to internal and APA IT audits.
Bachelor's Degree in a computer-related field, (CIS/MIS, computer science, computer engineering), or equivalent technology education. Significant years of directly related information technology work experience may be substituted for the degree. Several years of work experience in information systems/infrastructure technical operations, significant years of experience directly related to security engineering and administration. Some prior higher education work experience is desirable. An advanced degree in the MIS/CIS/CS/CE can be substituted for one year of work experience. Some form of industry recognized recent or prior security-specific certification is required, i.e. CompTIA Security+, CISSP, SSCP, etc.
A criminal background check is required.