Job Posting: IT Security Analyst, Higher Ed, Midwest USA

["Dewhirst, Rob" <robdewhirst () gmail com>]

Full description and to apply:

https://jobs.ku.edu/applicants/Central?quickFind=101832

Position Overview

The IT Security Office (ITSO) is responsible for the overall
coordination, implementation, and assessment of information security
at the University of Kansas. The overall goal of ITSO is to achieve
the optimal level of confidentiality, integrity and availability of
KU's information assets and systems while providing a safe and secure
computing environment for research, teaching, learning, and the
everyday conduct of university business.

This unit is responsible for: Technical Security Control Planning and
Coordination, Daily Security Operations, SOC Operations, Security
Consulting, General & Technical Security Support, Monitoring &
Logging/Statistics, System/Application/Network Scanning, Digital
Forensics and Incident Response, and Overall Security Architecture and
Implementation. The incumbent will find themselves working on both
small and large scale projects while assisting teams within IT and
campus wide, achieve their goals. As information security is an
extremely fast paced field, ITSO team members are expected to research
new technologies and rapidly understand their uses and risks.

To be successful requires excellent oral and writing skills, project
management, strong people skills, and a results oriented attitude. In
all endeavors the incumbent must demonstrate the highest degree of
ethics and professionalism.

Required Qualifications

1. Bachelor's degree in an IT security-related field from an
accredited institution or five years hands-on experience with IT
systems in an enterprise-scale IT environment, or any combination
2. Two years enterprise-level experience managing the security
mechanisms for current versions of desktop and server operating
systems (Windows, Mac OS X, Linux, etc.)
3. Two years experience managing and/or implementing enterprise-scale
IT security services such as intrusion protection, vulnerability
scanners, or firewalls, OR working directly in a risk-management role
on an enterprise scale


Preferred Qualifications

1. Current ANSI/ISO/IEC 17024 certification in areas related to
information security or risk management (e.g., GIAC, CISSP).
2. Experience with digital forensics and incident response
3. Experience designing, implementing, and managing enterprise-grade IDS/IPS
4. Experience designing, implementing, and managing enterprise-grade
network firewalls or application gateways
5. Experience with enterprise-grade vulnerability scanners, network
monitoring, or penetration testing
6. Experience interpreting and enforcing information security policies
and procedures
7. Experience teaching or documenting IT security-related concepts to
both technical and non-technical people.
8. Experience performing quantitative and qualitative risk-based analysis
9. Strong familiarity with industry standards or security regulations
such as PCI DSS, ISO 27001/2, HIPAA, FERPA, GLB, etc.
10. Experience with Linux or Unix system administration
11. Experience with Mac OS X system administration
_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com