*Job Description:*
_*Essential Job Functions*_
· Identifies, assesses, and documents potential security risks and threats, including collaboration with different departments to conduct regular security risk assessments.
· Develops and implements strategies to mitigate identified risks.
· Ensures the organization's security practices comply with relevant local, state, and federal laws.
· Monitors compliance with information security policies and procedures.
· Assists in coordinating and completing information security operations documentation, including the review, development, and updating of information security policies, procedures, and standards.
· Reviews IT projects for potential risks and suggests risk mitigation strategies.
· Assists in developing and implementing incident response plans.
· Performs gap analyses and generates reports on risk and compliance efforts.
· Builds and maintains a risk register.
· Conducts or facilitates internal audits and penetration tests to validate that security controls operate effectively.
· Coordinates with IT, business, and academic teams to ensure that security controls integrate into the design and implementation of technology projects.
· Participates in third-party audits and vendor risk assessments.
· Develops key performance indicators (KPIs) and metrics to measure the effectiveness of the organization's information security program.
· Supports incident response activities as required.
· Provides guidance, training, and direction on best practices for the protection of information.
· Stays up to date with regulatory changes and provides guidance to the organization on incorporating these changes into existing processes.
· Leads or participates in special projects related to information security and risk management.
· Maintains up-to-date knowledge of industry best practices, standards, and security and technology developments.
· Advocates for Information Security in all processes at the college, whether technical, administrative, or academic.
· Performs other duties as assigned.
_*Minimum Requirements*_
· Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field; Or four (4) years of experience in Information Security or IT; Or an equivalent combination of education and experience.
· At least 1 year of direct experience in the field of Information Security or in IT with a strong interest in transitioning to Information Security and a willingness to learn and grow in this field.
· Ability to successfully complete a criminal background check with fingerprinting.
· Verbal, mathematical, and analytical abilities sufficient to solve problems and communicate outcomes.
· Excellent communication skills in order to work effectively with clients and others; English usage, spelling, grammar and punctuation, particularly in the creation, maintenance, and curation of academic, legal, regulatory, and technical documentation.
· Detail-oriented, organized and able to work independently and within a team.
· Ability to work with diverse populations.
· Excellent customer service and negotiation skills.
· Ability to read, interpret, and update documentation of both a technical and non-technical nature.
· Demonstrated ability to learn new technologies, procedures, and methodologies as change occurs.
· Ability to plan, execute, and manage projects.
· Desire and ability to learn and grow within the Information Security profession
· Strong work ethic and sense of accountability
· Ability to work under pressure and respond to deadlines while maintaining positive stakeholder relationships.
Job Types: Full-time, Contract
Salary: $60,000.
00 - $65,000.
00 per year
Benefits:
* 401(k)
* Dental insurance
* Health insurance
* Vision insurance
Application Question(s):
* Can you go for Hybrid - Onsite at Champaign, Illinois ?
Education:
* Bachelor's (Required)
Experience:
* Information security: 4 years (Required)
Work Location: In person