ABOUT RESIDENTIAL & DINING ENTERPRISES: Residential & Dining Enterprises, the largest auxiliary organization at Stanford University, supports the academic mission of the University by providing the highest quality services to students and other members of the university community. R&DE has an annual operating budget of over $270 million, oversees a 5 million sq. ft. physical plant across the campus, provides housing for over 12,000 students, serves over 18,000 daily meals at 30 dining and retail locations and over 500,000 meals at Athletic Concessions events, and hosts 20,000 conference guests annually. R&DE comprises 1100+ staff in the following divisions: the Office of the Senior Associate Vice Provost (SAVP), Student Housing Operations, Stanford Dining, Stanford Hospitality & Auxiliaries, Stanford Conferences, and a team of R&DE strategic business partners: Finance & Administration, Human Resources, Information Technology, Maintenance Operations and Capital Projects, and Strategic Communications. ABOUT INFORMATION TECHNOLOGY: R&DE Information Technology consists of 26 full and part-time staff. The department is organized into six teams: CIO office, Portfolio and Project Management Office, Applications Development, Support Services, Security, and Systems Administration. R&DE IT supports over 65 applications and integrations, 2,200 technology assets, and 900+ users. The Information Security team within R&DE Information Technology is responsible for managing, guiding, and/or executing the implementation of security initiatives and improvements to information security policies and procedures that protect R&DE business processes and technology resources. The team also functions as an internal consultant providing technical expertise related to information security and risk management and is responsible for assessing information risk and facilitating remediation of identified vulnerabilities in the systems and applications across the organization. This position of Senior Lead Information Security Analyst provides technical expertise and is responsible for assessing information risk and facilitating remediation of identified vulnerabilities in the systems and applications. Additional duties may involve developing and maintaining the security of data and systems as the primary responsibility of the position. In addition to providing excellence in everything we do, R&DE IT is dedicated to the mission and core values of Residential & Dining Enterprises. Students (Customers) First is the mantra of R&DE and our strategic goals reflect our commitment to delivering quality and excellence to our constituents every day. In R&DE, Excellence is defined by aligning our strategic goals and performance with our vision.JOB PURPOSE: Under general direction of R&DE's Chief Information Security Officer (CISO), develop and implement enterprise information security architecture and solutions. Serve as an IT security subject matter expert. CORE DUTIES*:
Lead and develop plans to safeguard computer configurations against accidental or unauthorized modification, destruction or disclosure and to meet emergency data processing needs. Assist in the design of secure system and network architectures.
Participate in and lead internal audits, in cooperation with the R&DE CISO; develop appropriate criteria needed to assess the level of new/existing applications and/or technology infrastructure elements for compliance with enterprise security standards.
Perform security risk assessment and mitigation. Inspect system and network data for computer and network usage policy compliance, system integrity and incident response. Perform system security reviews and tests and write formal reports and follow up advisory memos.
Develop and deliver educational information to system administrators and users. Lead the development and documentation of information security standards, best practices and guidelines.
Develop, implement and manage policies and procedures related to IT security and operational support systems in collaboration with the R&DE CISO.
Develop and implement ongoing test plans to ensure compliance with standards and processes (selecting sample, verifying documentation and other requirements).
Research, design and advocate new technologies, architectures and security products. Interface with user community to understand security needs, conduct accurate evaluation of level of security required and implement procedures to accommodate.
Mentor and train team members and peers on cyber security solutions and actively participate on system and application improvement project teams.
Maintain a state-of-the-art awareness of information security issues, incidents, problems, utilities, legal requirements and solutions for all major information system platforms in use at Stanford.
Participate in the annual cycle of recruitment, hiring and training; shares responsibility for developing, managing, and sustaining a strong student leadership/employment program.
* - Other duties may also be assignedMINIMUM REQUIREMENTS:Education & Experience: Bachelor's degree plus five years relevant experience, or a combination of education and relevant experience. Master's degree in related area and/or equivalent experience/training is preferred. Knowledge, Skills and Abilities:
Minimum of five years of direct full-time security work experience in two or more security fields in a Higher Education environment.
Must have knowledge relating to the design of security programs across a campus, including but not limited to federal, state, and industry requirements for protected and sensitive data (e.g. FERPA, PCI DSS,HIPAA, DMCA, HEOA).
Strong knowledge and understanding of industry standard information security practices.
In-depth knowledge of authentication protocols, encryption and other fundamental security technologies.
Extensive experience with debugging, troubleshooting, forensics, and security utilities.
In-depth knowledge and understanding of IT industry trends and emerging technologies and an ability to relate them to Stanford and its objectives.
Advanced knowledge and understanding of networking protocols, principles and devices.
In-depth architecture and configuration knowledge.
Excellent communication skills and the ability to explain complex technical ideas to non-technical audience and work with individuals at all levels.
Demonstrated experience in leading/mentoring team members and providing technical guidance to customers and stakeholders.
High level of integrity and excellent judgment concerning proprietary and privacy issues.
Certifications and Licenses:
CISSP or another security certification/accreditation preferred
ITIL V3 Foundations training and certification preferred
Constantly perform desk-based computer tasks.
Frequently sit, grasp lightly/fine manipulation.
Occasionally stand/walk, use a telephone, occasionally lift/carry/push/pull objects that weigh 21-40 pounds
Rarely writing by hand, lift/carry/push/pull objects that weigh up to 20 pounds and lift/carry/push/pull objects that weigh >40 pounds.
* - Consistent with its obligations under the law, the University will provide reasonable accommodation to any employee with a disability who requires accommodation to perform the essential functions of the job.WORKING CONDITIONS:
Occasional exposure to high voltage electricity.
Occasional extended and weekend hours.
Interpersonal Skills: Demonstrates the ability to work well with Stanford colleagues and clients and with external organizations.
Promote Culture of Safety: Demonstrates commitment to personal responsibility and value for safety; communicates safety concerns; uses and promotes safe behaviors based on training and lessons learned. Subject to and expected to comply with all applicable University policies and procedures, including but not limited to the personnel policies and other policies found in the University's Administrative Guide, http://adminguide.stanford.edu
Location: Residential & Dining Enterprises, California, United States Schedule: Classification Level:
Stanford is an equal opportunity employer and all qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other characteristic protected by law.
Copyright 2017 Jobelephant.com Inc. All rights reserved.
Located between San Francisco and San Jose in the heart of Silicon Valley, Stanford University is recognized as one of the world's leading research and teaching institutions. Leland and Jane Stanford founded the University to "promote the public welfare by exercising an influence on behalf of humanity and civilization." Stanford opened its doors in 1891, and more than a century later, it remains dedicated to finding solutions to the great challenges of the day and to preparing students for leadership in a complex world. The University's thriving diverse community is comprised of nearly 7000 undergraduate students, 9000 graduate students, 2000 faculty members, 1900 postdoctoral scholars, and over 11,000 academic and administrative staff in seven schools including several interdisciplinary research centers and institutes. The campus spreads over 8000 contiguous acres and nearly all undergraduates live on campus. Stanford offers bachelor's and master's degrees in addition to doctoral degrees (PhD, MD, DMA and JD) plus a number of professional and continuing education programs and certifications. More at http://facts.stanford.edu and http://www.stanford.edu.Stanford University is an eq...ual opportunity employer and is committed to increasing the diversity of its faculty. It welcomes nominations of and applications from women, members of minority groups, protected veterans and individuals with disabilities, as well as from others who would bring additional dimensions to the university’s research, teaching and clinical missions.