| Department: IT Security - 55300 Brief Summary of Work for this position: The IT Security Assurance Specialist is primarily responsible for the information security risk program, the security assurance & compliance program, portions of the security awareness program, and have consultation influence into security operations and security infrastructure. This position assures that the many aspects of our security program are aligned to the diverse regulatory and compliance requirements in our environment as well as assuring that the controls are documented, effective, and auditable. While assuring we meet these minimum requirements, the position is also responsible for the day to day operation of our security risk program that ensures our controls are mitigating the risk in our environment to a level that is acceptable to the University. Minimum Education and Experience Requirements: Graduation from a two year technical college with a major in computer science, information technology or related area and one year in the information technology field related to the position's role; or graduation from a four year college or university and one year experience in the information technology field related to the position's role; or graduation from a four year college or university with a major in computer science or information technology or related degree. Related information technology experience may be substituted year for year for the required education.
- Excellent organizational, interpersonal, time management, and project management
- Excellent verbal and written communications skills, including presentation skills
- Demonstrated ability to maintain successful working relationships within a team environment
- Demonstrated understanding of security and controls
- Demonstrated knowledge of risk measure and maintenance
Preferred Education, Knowledge, Skills & Experience : - Associated Certifications (Ability to work towards during employment):
- Certified in Risk and Information Systems Control (CRISC)
- Certified Information Systems Auditor (CISA)
Required Certifications or Licensure: At least one of the following:
- CompTIA Security+
- GIAC Security Essentials (GSEC)
- Equivalent Education Cyber Security Course completion (or comparable work experience)
Primary Purpose of Organizational Unit: IT Security is charged with safeguarding the confidentiality, integrity and availability of all information processed, stored or transmitted using university electronic resources by:
- Providing comprehensive information security awareness and training.
- Ensuring compliance with all federal, state and local legislation relative to information security.
- Developing, promoting and reviewing UNCW information security policies.
- Conducting frequent information security inspections, audits and assessments.
- Taking proactive measures to counter threats, vulnerabilities and cyber-attacks.
- Reviewing Disaster Recovery/ Business Continuity plans and testing them via drills and exercises.
- Facilitating the ITS change management program.
- Conducting timely investigations and responses to computer security related incidents.
AA/EEO Statement: At the University of North Carolina at Wilmington (UNCW), our culture reflects our values of inclusion, diversity, globalization, ethics and integrity and innovation and we are committed to providing equality of educational and employment opportunity for all persons without regard to race, sex (such as gender, gender identity, marital status, childbirth, and pregnancy), age, color, national origin (including ethnicity), religion, disability, sexual orientation, political affiliation, veteran status, military service member status, genetic information, or relationship to other university constituents – except where sex, age, or ability represent bona fide educational or occupational qualifications or where marital status is a statutorily established eligibility criterion for State funded employee benefit programs. UNCW believes that embracing the unique contributions of our faculty, staff and students is critical to our success and paramount in being recognized for our global mindset. |
