IT Security/Privacy Risk Manager - Florida State University
The IT Security/Privacy Risk Manager provides specialized technical expertise and consultation with campus unit data owners and custodians to identify and implement robust risk management operating procedures and to assist managers in ongoing risk mitigation initiatives and procedures. Maintains a standard of excellence in the risk and privacy evaluation process through gap analysis, design assessment, and ongoing critique of information technology systems supporting the mission of the University with regard to IT security risk exposure. Supports University compliance with select legislated and contractual information technology compliance requirements.
Manages the remediation of audit findings and control weaknesses in targeted cybersecurity areas through analysis of campus unit risk assessments to build a mitigation strategy. Assists with development of collaborative approaches and partnerships with campus unit information security and privacy resources to resolve found control gaps. Capable of engaging internal and internal subject matter experts to assist in remediation process.
Responsible for developing review procedures to confirm campus units have deployed privacy and security controls that are operating effectively. Collaborates with campus units to develop and execute test procedures to substantiate controls and identify any discovered gaps in analyzed controls. Assist unit personnel in meeting University or unit core values and missions through compliance with information security and privacy best practices.
Assess campus units to ensure they are meeting all university policy, domestic and international data privacy and security regulations, standards, contractual obligations, and legal requirements. Assist campus units in building a continuous monitoring program to ensure all requirements and controls are active and auditable.
Assists in review of campus IT contracts/agreements that may include sharing of information classified as protected and private with outside entities. Other duties as assigned.
Performs other duties in compliance with ISPO and ITS policies, guidelines, and processes pertaining to support requests, work orders, project management, change management, and incident management. Appropriately utilizes associated tools in accordance with ITS standards.
Bachelor's degree in Computer Science, MIS or other appropriate degree and four years of experience or a combination of appropriate post high school education and experience equal to eight years.
Ability to communicate effectively verbally and in writing.
Ability to convey technical information to technical and non-technical users.
Ability to deal with crises and manage sensitive information.
Ability to develop and implement policies, procedures, goals, and objectives.
Ability to establish and maintain effective working relationships.
Ability to evaluate process effectiveness and develop change or alternatives.
Ability to perform assigned responsibilities with minimal to moderate supervision.
Knowledge of information technology security measures.
Ability to identify complex problems and review related information to develop and evaluate options and implement solutions.
Ability to perform accurately in a detail oriented environment.
Ability to prioritize, organize and perform multiple work assignments simultaneously.
Experience in an academic environment
For a complete list of requirements and to apply please visit jobs.fsu.edu, Position00053409.
If qualified and interested in this Job ID 47175 vacancy, apply to Florida State University at https://jobs.fsu.edu. Application Deadline is 05/12/2020.
Applicants are required to complete the online application with all applicable information. Applications must include work history and all education details (if applicable) even if attaching a resume.