Primary Purpose of the Organizational Unit: The mission of Information Technology and Telecommunication Services is to explore, implement, maintain and support the uses of technology to effectively and efficiently achieve the Universitys academic and administrative objectives as stated in Universitys strategic plan.
Primary Purpose of the Position: The IT Security Professional provides technical implementations and daily monitoring of the university's complex IT environment in accordance with best practices and standards such as NIST 800-171, NIST 800-53, PCI DSS (Payment Card Industry Data Security Standards), DMCA, FERPA, GLBA, HIPAA, etc. Responsibilities include security reviews, risk assessments, risk management, policy standards and guidelines, security awareness and training, audit coordination and project management.
Specifically, the Security Professional reviews, coordinates and monitors information technology security controls that protect confidentiality, integrity and availability of the organization's controlled secure research data in accordance with legal, regulatory and institutional requirements. The Security Professional is responsible for ensuring that users with access to secure research data receive appropriate training. The Security Professional consults with faculty, college/unit IT staff, applicable ITS staff, Office of Sponsored Research Staff, and other subject matter experts to ensure technology solutions and compliance standards are in line with contract requirements. Master's degree and three years of experience; or Bachelor's degree in Computer Science, Computer Engineering or an Information Security degree or closely related field from an appropriately accredited institution plus four years of experience in IT Security or closely related area; or Bachelor's degree from an appropriately accredited institution and six years of experience in IT Security or closely related area; or an Associate's degree in Information Systems Security from an appropriately accredited institution and eight years of experience in IT Security or closely related area; or an equivalent combination of education and experience.
The University Of North Carolina