Information Security Analyst - Governance, Risk, Compliance (S04496P) Job at University of Texas at Arlington
Posting Details
Position Information
Posting Number
S04496P
Position Title
Information Security Analyst - Governance, Risk, Compliance (S04496P)
Department
Information & Security Office
Location
Arlington
Job Family
Information Technology
Position Status
Full-time
Work Hours
Standard
Work Schedule
Monday-Friday; 8:00am-5:00pm.
Open to
External and Internal
FLSA
Salary
Salary is commensurate based on qualifications and relevant experience.
Duration
Funding expected to continue
Pay Basis
Monthly
Benefits Eligible
Yes
Job Summary
the Information Security Analyst, GRC is responsible for supporting day-to-day information security governance risk and compliance activities and assigned projects. Major functions include information security risk management, security policy development and enforcement, 3rd party vendor management and incident response assistance. Assist with the development and delivery of risk assessments. Assist with the development, monitoring, and enforcement of policy and standards. Provide support for information security projects.
Essential Duties and Responsibilities
- Support the mission of the UTA Information Security Office as a part of the Governance, Risk, and Compliance team.
- Assess University compliance with regulatory requirements including, but not limited to, FERPA, PCI-DSS, HIPAA, and NIST 800-171.
- Develop and maintain information security policies, standards, and procedures relating to organization-wide information security domains.
- Assist with risk assessments, tracking risk mitigations and verification of security controls.
- Assist in the generation of metrics and reports used to convey the status of the information security program to University leadership, UT System, and Texas Department of Information Resources.
- Provide support for information security related customer questions and help requests.
- Work closely with OIT, Internal Audit, and other University units to understand, assess, and develop plans for mitigating information security risk ·
- Support the development, implementation, and delivery of security awareness training programs.
- Assist with the management of the Incident Response Plan.
- Assist with security training exercises, incidents and investigations as needed.
- Other duties as assigned
Required Qualifications
- Bachelor’s degree or relevant experience
Preferred Qualifications
- Certifications related to the duties and responsibilities specified, including but not limited to: Security +, SSCP, CISSP, CISM, CRISC, and/or CISA.
- Experience in Information Security Risk Management and the implementation of GRC strategies.
- Knowledge regarding risk management practices and GRC concepts and automation tools.
- Scripting and coding experience a plus.
- Knowledge and practical experience with security frameworks, e.g. NIST 800 series, NIST CSF, ISO 20001, CIS Top 20, CMMC.
- Technical knowledge of operating systems, defense-in-depth concepts, networks, security related technologies, and security configurations.
- Knowledgeable of current advances in areas of information technology concerning vulnerabilities, security breaches or malicious attacks. Experience in Nessus and Splunk a plus
- Experience in higher education and/or Experience in Texas State government.
Working Conditions
Special Conditions for Eligibility
Working Title
EEO Statement
UTA is an Equal Opportunity/Affirmative Action institution. Minorities, women, veterans and persons with disabilities are encouraged to apply. Additionally, the University prohibits discrimination in employment on the basis of sexual orientation. A criminal background check will be conducted on finalists. The UTA is a tobacco free campus.
Posting Detail Information
Number of Vacancies
1
Desired Start Date
04/12/2023
Open Date
04/12/2023
Review Start Date
04/12/2023
Open Until Filled
Yes
Minimum Number of References Required
3
Maximum Number of References Accepted
Special Instructions to Applicants
Applicants must include in their online resume the following information: 1) Employment history: name of company, period employed (from month/year to month/year), job title, summary of job duties and 2) Education: school name, degree type, and major.
Requirement Questions
Required fields are indicated with an asterisk (*).
- * What is the highest degree you have attained? (Please specify in your resume)
- Associate's degree
- Bachelor's degree
- Master's degree or higher
- None of the above
- * How many years of experience do you have with information security policies, standards, operations and risk management?
- None/less than 3 years
- 3 to 4 years
- 5 to 6 years
- 7 years or more
Documents Needed To Apply
Required Documents
Optional Documents
- Resume or CV
- Cover/Interest Letter
Please Note :
chrismaxcer.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, chrismaxcer.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, Site.com is the ideal place to find your next job.