To improve the security posture of Carleton and St. Olaf Colleges through design and implementation of aligned information security infrastructures including: pro-active technical analysis and monitoring, leading security incident responses, guiding shared policy and educational programs, and providing subject matter expertise to each institution in IT and collegiate and administrative units.
This position will either be at the Specialist, Senior Specialist, or Officer level, dependent upon the hired candidate's amount of direct experience.
Please upload an example of your information security work, for example a policy statement or a process you have developed, or a script other programming work you have written.
ESSENTIAL JOB FUNCTIONS:
Information Security Infrastructures and Practices - 30% of time
Optimize and synchronize security policies, practices and procedures on both campuses.
Review and assess the security posture at each institution and develop a long-range strategy to align the security infrastructures and environments at both campuses.
Recommend information security tool sets appropriate for both campuses.
Assess network vulnerability risks and opportunities and develop common strategies to mitigate.
Pro-Active Analysis and Monitoring - 30% of time
Actively monitor latest security issues (CERT, SANS Internet Storm Center, etc.); coordinate remediation (patches, updates, etc.) as required.
Review IDS/IPS logs, other logs, and traffic flows to proactively detect suspicious activity and abnormalities.
Identify security threats and coordinate the response to and reporting of these threats in a timely manner.
Perform application vulnerability assessment scans; coordinate remediation of findings.
Lead IT security audit efforts; coordinate remediation of findings.
Monitor and coordinate IT compliance with security policies and applicable law (PCI, HIPAA, etc.).
Advise and assist IT staff with security remediation and mitigation practices.
Policy Expertise and Community Education - 30% of time
In consultation with the IT/ITS staff and the Information Security Councils, lead the design of security policies and procedures, education programs and training, and security awareness activities.
Participate and serve as the chief expert on the Information Security Councils on each campus and coordinate bi-campus meetings of the groups.
Participate in the higher education security community, including serving as the primary REN-ISAC representative for both institutions.
Maintain expertise through on-going professional development, certification, and training.
General Office Responsibilities - 10% of time
Participate in staff and team meetings and assignments.
Prepare monthly activity reports.
Inform supervisors of potential technology opportunities for and challenges to collaborative efforts.
Perform other duties as requested by supervisors.
KNOWLEDGE, SKILLS, ABILITIES:
Skill in or ability to learn computing and information security including network penetration testing, application vulnerability assessments, risk analysis, and compliance testing
Knowledge of UNIX, Linux, Active Directory, Group Policy, Cisco ACLs, SSL certificates, PGP, IDS, VPN, IPSec, TCP/IP, DNS, Firewalls, identity and access control and syslog
Skill in or ability to learn a wide range of information security tools such as Wireshark, ArcSight, Bro, Cloudlock, Splunk, Metasploit, Snort, Nessus, Nikto, Nmap, WMIC, AppLocker, McAfee ePO, Symantec ESM, etc.
Skill in identifying complex problems and reviewing related information to develop and evaluate options and implement solutions
Skill in completing tasks accurately and with attention to detail
Ability to maintain effective interpersonal relationships
Ability to communicate effectively in both written and oral form
Ability to stay organized while changing priorities and remaining busy
Ability to problem solve by exercising proper judgement and timely decision-making skills
Knowledge of information security standards (e.g., ISO 17799/27002, NIST800-171, etc.) and federal and state regulations (FERPA, HIPAA, etc.)
Ability to use logic and reasoning to identify the strengths and weaknesses of IT systems
Ability to work independently or as part of a team
Ability to manage multiple projects
Ability to be responsive and efficient
Ability to maintain confidentiality
Ability to commit to rewarding and challenging work, creating strong professional relationships, and a desire to promote a respectful, inclusive, and collaborative climate
Ability and willingness to support, respect and commit to embracing diverse backgrounds, values and points of view to build a strong and inclusive community including faculty, staff, students and constituents.
REQUIRED QUALIFICATIONS: Education: Bachelors degree; maintain a valid drivers license and meet St. Olaf College driver authorization criteria with a satisfactory driving record Experience: Information Security Specialist: 2+ years of information,
Education: Bachelor's degree; maintain a valid driver's license and meet St. Olaf College driver authorization criteria with a satisfactory driving record
Information Security Specialist: 2+ years of information security experience in one or more of the following areas: network security, security engineering, vulnerability management, or security operations
Information Security Senior Specialist: 5+ years of information security experience in one or more of the following areas: network security, security engineering, vulnerability management, or security operations
Information Security Officer: 10+ years of information security experience in one or more of the following areas: network security, security engineering, vulnerability management, or security operations
Education: Bachelor's degree in Computer Science, Management Information Systems, or related field; Master's Degree in Information or Cybersecurity and Certification such as CISSP, SSCP, GSEC or other information security related certification
Experience: Higher education experience; experience in security policy development and security education
One of the nation?s leading four-year residential colleges, St. Olaf offers an academically rigorous education with a vibrant faith tradition. Founded in 1874, St. Olaf is a liberal arts college of the church in the Lutheran tradition (ELCA). Committed to the liberal arts and incorporating a global perspective, St. Olaf fosters the development of the whole person in mind, body, and spirit.Academic... excellence informs St. Olaf College's identity and characterizes its history. Through its curriculum, campus life, and off-campus programs, St. Olaf hones students' critical thinking and nurtures their moral formation. The college encourages and challenges its students to be seekers of truth, to lead lives of unselfish service to others, and to be responsible and knowledgeable citizens of the world.Widely known for its world-class programs in mathematics and music, St. Olaf is also recognized for its innovative approaches to undergraduate science education and its commitment to environmental sustainability as evidenced in such initiatives as the adoption of green chemistry principles across the science curriculum. For nearly half a century, St. Olaf has been at the forefront of global education and a pioneer in study abroad. Today, with 110 distinct international and off-campus programs in 46 countries, St. Olaf students enjoy a world of opportunities when pursuing their studies.St. Olaf is an inclusive community that welcomes people of differing backgrounds and beliefs, a community that embraces spirituality and cultivates compassion. Conversations about faith are part of campus life and numerous opportunities are provided for students to grow in their faith and discover how they are called upon to serve others. St. Olaf takes pride in its record of academic excellence. A leader among undergraduate colleges in producing prestigious Rhodes Scholars, Fulbright Fellows, and Peace Corps volunteers, St. Olaf ranks 11th overall among the nation's baccalaureate colleges in the number of graduates who go on to earn doctoral degrees, with top ten rankings in the fields of mathematics/statistics, religion/theology, arts and music, medical sciences, education and the social service professions, chemistry and the physical sciences, life sciences, and foreign languages.