Description: Under general direction of a manager, performs security risk analysis and assessments associated with information resources, risk management policy development and product assessments. Assists day-to-day responsibility for security issues involving university information assets. 1. Assists with security investigations and develops and implements appropriate procedures, policies and processes to prevent reoccurrence. 2. Performs security risk analysis, intrusion detection and vulnerability assessments associated with information resources, risk management, policy development and product assessments. 3. Researches, evaluates, recommends and administers information security software and computer systems to monitor, assist and improve the information security management and compliance of university network and computer systems. 4. Responsible for collecting data for IT security metrics and assisting with state required information security reporting. 5. Participates on projects and initiatives to provide technical guidance in all areas as it relates to information security risk management and information security project management. 6. Performs other job-related duties as assigned. MQ: Requires a thorough understanding of both theoretical and practical aspects of an analytical, technical or professional discipline; or the basic knowledge of more than one professional discipline. Knowledge of the discipline is normally obtained through a formal, directly job-related 4 year degree from a college or university or an equivalent in-depth specialized training program that is directly related to the type of work being performed. Requires a minimum of three (3) years of directly job-related experience. |