Identify, define, and document system security requirements and recommend solutions to management.
Identify weaknesses in current information security solutions.
With input and consultation with the Chief Information Security Officer, understand University security standards and apply it to systems under area of responsibility.
Configure, troubleshoot, and maintain security infrastructure software and hardware.
Install software that monitors systems and networks for security breaches and intrusions.
Identifying current and emerging technology issues including security trends, vulnerabilities, and threats.
Monitor systems for irregular behavior and set up preventive measures.
Plan, develop, implement and update NSU’s information security strategy.
Educate and train staff on information system security best practices.
Develop, execute, and track the performance of security measures to protect information and network infrastructure and computer systems.
Automate security responses where determined reasonable.
Develop, execute, and track the performance of security measures to protect information and network infrastructure and computer systems.
Minimum Qualifications:
Expertise across a variety of security products including firewalls, URL filtering, information security and virus protection.
Strong understanding of networking concepts and protocols, such as TCP/IP, VLANs, VPNs, and routing/switching.
General understanding of industry standards and requirements for information security management, state and federal statutes, and third-party security assessments.
Demonstrated experience in Internet and network security products and platforms, including intrusion detection, intrusion prevention, incident response, vulnerability assessments, and penetration testing.
Proven ability to work under pressure in emergencies and communicate security-related concepts to technical and non-technical staff.
Strong analytical, project management, and team-oriented interpersonal skills.
Preferred Qualifications:
Bachelor’s degree in computer science, Information Technology, or related field.
Relevant professional certifications, such as CISSP, CISM, CEH, or other security certifications.
Minimum of 3-5 years of experience in system security engineering, network security, or a related field.
Knowledge of common authentication technologies including OAuth, SAML, CAs, Radius, OTP/TOTP.
Excellent analytical, problem-solving, and troubleshooting skills.
Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
Experience with Cloud Application Platforms, Microsoft 365, or other similar platforms.
Outstanding communication skills that go beyond “tech talk” – the ability to translate complex IT matters to those without an IT background.
One or more years of experience in higher education.