Job Description:

Manager, Information Security Operations

Office of Information Technology

The Manager, Information Security Operations is a senior member of the Information Security Group (ISG) within Brown's Office of Information Technology (OIT), reporting to the Chief Information Security Officer (CISO). ISG is responsible for technical systems, incident response, processes and policies, and compliance efforts for all matters involving information security at Brown University. 

Information security touches nearly every facet of Brownâ™s operations. The Manager, IT Security Operations serves as a bridge between ISG Analysts, the OIT department, the rest of the university, and external parties. They must be an effective and patient communicator while also being a strong advocate for ensuring the information security of Brownâ™s data and systems.

The Manager, Information Security Operations oversees a team within ISG that performs day-to-day management, monitoring, investigation, and response. As a member of the Information Security Incident Response Team (ISIRT), they lead initial investigation, classification, and escalation of security events. They ensure the group develops and maintains necessary ISIRT documentation.

They are expected to share on-call monitoring duties with the team and be available off-hours to coordinate incident response and system changes.

The job may require them to travel to the Brown campus on short notice, so they must live within a commutable distance of campus.

Qualifications:

Education and Experience

• BA/BS in Computer Science, Information Systems, Information Security or equivalent education and experience

• 5-8 years combined IT and IT security experience.

• Supervisory experience required.

• Experience with security monitoring tools and techniques, including technologies such as Firewalls, Security Information and Event Management (SIEM), Intrusion Prevention Systems (IPS), Digital Loss Prevention (DLP), Endpoint Detection and Response Software (EDR)

• Experience with security testing tools and techniques, including technologies such as vulnerability scanners and penetration testing tools.

Desired

• Cybersecurity Certifications â“ CISSP, CISM, CISA or related.

• Scripting and programming experience (e.g. python, powershell, bash).

• Familiarity with traditional and cloud environments, and DevSecOps workflows.

• Experience with vulnerability assessment and remediation.

• Forensics investigation experience.

• Functional familiarity with enterprise networking and systems, including virtualization and containers(e.g., IPv4 & IPv6, Hyper-V, Docker, etc.)

• Penetration testing of applications and infrastructure.

• Experience with social engineering techniques.

• Experience with Computer Incident Response Team (CIRT), Security Operations Center (SOC).

• Higher education experience.

Job Competencies

• An eagerness to constantly learn.

• Strong project management skills

• Strong ability to multitask and prioritize activities. 

• Ability to apply logical and technical concepts to identify and define problems, collect data, establish facts, and draw valid conclusions.

• Ability to engage with service owners to understand departmental business functions. Leverage that knowledge to help reduce the severity and frequency of security incidents.

• Ability to understand business unit needs and commitment to delivering high-quality, prompt, and efficient service to the diverse constituencies throughout the university.

• Ability to deal appropriately with problems involving several variables in complex situations under stress.

• Excellent report writing and communication. Ability to communicate technical issues to a wide variety of audiences.

• Possess a willingness and ability to support and promote a diverse and inclusive campus community.

Successful completion of a criminal background check and education verification is required. In addition candidates must complete a CJISS background check.

Recruiting Start Date:

Job Posting Title:

Department:

Grade:

Worker Type:

Worker Sub-Type:

Time Type:

Scheduled Weekly Hours:

Position Work Location:

Submission Guidelines:

Please note that in order to be considered an applicant for any staff position at Brown University you must submit an application form for each position for which you believe you are qualified. Applications are not kept on file for future positions. Please include a cover letter and resume with each position application.

Still Have Questions?

If you have any questions you may contact [email protected].

EEO Statement:

Brown University is an E-Verify Employer.

As an EEO/AA employer, Brown University provides equal opportunity and prohibits discrimination, harassment and retaliation based upon a personâ™s race, color, religion, sex, age, national or ethnic origin, disability, veteran status, sexual orientation, gender identity, gender expression, or any other characteristic protected under applicable law, and caste, which is protected by our University policies.

About Brown University

Located in historic Providence, Rhode Island and founded in 1764, Brown University is the seventh-oldest college in the United States. Brown is an independent, coeducational Ivy League institution comprising undergraduate and graduate programs, plus the Alpert Medical School, School of Engineering, Executive Master of Healthcare Leadership and the IE Brown Executive MBA.

Connections working at Brown University