Cyber Security Engineer and Backup ISO

Radford University

Radford, VA

ID: 7287779
Posted: 2 months ago
Application Deadline: Open Until Filled

Job Description

Education/experience
Advanced degree in Information Security, Cyber Security, Computer Science, Information Systems or related field and multiple years of relevant work experience, or an equivalent combination of education and experience highly desirable. Experience in a higher education environment is highly desirable.
Job Summary
Designated Backup Information Security Officer
Supports the Chief Information Security Officer (CISO) in the development and management of the Information Security Program
Implements and executes the cyber security program under the supervision of the CISO for all information technology systems and networks supporting Radford University’s day to day operations.
Manages the Network Security Program
Monitors Intrusion Prevention Systems for malicious activity and implements changes and alerts with the Network team
Manages the Endpoint Security Program
Acts as the Application Administrator for the Extended Detection and Response (EDR) system
Manages the Third Party/Vendor Risk Management Program
Manages the Student SOC
Required Qualifications
Security certifications such as CISSP, CISM, CRISC, or Security+.
Knowledge of Security Assessment processes.
Knowledge of multi-platform environments and security considerations for each platform.
Knowledge of Vendor Risk Management Processes.
Knowledge of protecting and securing server environments.
Knowledge of web, application, and database tiers and security considerations for each layer.
Ability to organize, plan and coordinate activities designed to mitigate unauthorized activity; skills to resolve complex problems and carry out follow-up procedures.
An understanding of the security issues involved in maintaining and safeguarding institutional data.
Preferred Qualifications
Knowledge of SSO, and MFA systems and best practices.
Experience with SIEM and EDR desired.
Experience creating process diagrams and technical documentation.
Experience with system integration, system administration, and computer security.
Familiar with Security frameworks such as ISO 27001 and ISO 27002., NIST 800-171, NIST 800-53, and the NIST CSF.
Familiar with Center for Internet Security (CIS)/Security Technical Implementation Guide (STIG) Benchmarks.
Experience with scripting desired.