CORP-Information Security Specialist presso Bryan University

Summary:

The Information Security Specialist is responsible for providing leadership in securing university data and

systems. They will assist in developing policies and training programs to guide user activities; work

closely with the ITS Management team to develop recommendations for system controls and

monitoring to ensure the integrity and safety of university systems and data; and they will perform

regular audits to ensure alignment with departmental standards and university policies.

The Information Security Specialist works as a member of the Information Security Services OR

Infrastructure Services team and is charged to understand the goals/objectives of the university and ITS

division, and to provide collaborative leadership to university users to ensure that all members of the

user community understand their roles/responsibilities and are positioned for success in securing

institutional and student data.

Core Values:

Deliver Delight Every Time - We keep learner success at the center of every interaction to provide

exceptional service and a delightful student experience.

● Value each student and employee interaction.

● Provide the best service externally to students and internally to one another.

● Make decisions that reflect a commitment to students’ welfare and success.

Continuously Improve - As lifelong learners, we intentionally find opportunities to grow and improve,

both as individuals and as an organization.

● Take time to develop and practice relevant skills and behaviors.

● Dig deeper into systems, data, and processes to understand problems and create impactful

solutions.

● Welcome challenges and feedback.

Win Together - We act with integrity, empathy, and transparency while assuming positive intent in each

other’s communications and decisions.

● Seek understanding from one another first, over-responding.

● Recognize how words and actions impact our students, employees, and the organization as a

whole.

● Provide constructive feedback and avoid gossip.

Trust and Be Trusted - We take ownership of our responsibilities and actions to students and colleagues.

● Keep commitments and deliver results on time to teams.

● Comply with policies and procedures.

● Proactively find solutions to issues.

Own it - We navigate challenges and celebrate successes together as a diverse community.

● Collaborate to solve issues and build solutions in the best interest of the organization and our

stakeholders.

● Recognize roadblocks and celebrate achievements.

● Utilize a diversity of perspectives through sharing knowledge and resources.

Responsibilities:

Leadership

Provide cross-functional team leadership across all ITS teams in information security policies, standards,

and procedures.

Establish and conduct information security/data integrity training for all stakeholders of the university

community.

Demonstrate a positive attitude and set an example for direct reports and colleagues.

Information Security

Research and provide recommendations for the design, development, testing, implementation, and

management of security protocols, procedures, system measures, and audits to ensure physical and

logical security of network, data center, cloud and enterprise system architectures.

Document, distribute, and maintain security policies and procedures.

Monitor and analyze system security information to provide actionable data to ITS Leadership team.

Document and maintain incident response plans.

Document and maintain Disaster Recovery and Business Continuity plans.

Document and maintain Change Management policies, standards, and procedures and monitor

system/infrastructure management to ensure compliance.

Coordinate with the Infrastructure Services Team to monitor, analyze, and provide recommendations

for shaping network traffic.

Develop and maintain information security documentation in accordance with defined ITS standards

within 3 business days of any approved changes.

Monitor emerging information security threats and collaborate with ITS Leadership team to deploy

appropriate security measures in accordance with ITS Change Management process.

Monitor system access procedures to ensure alignment with defined system governance standards that

protect the integrity and security of all university data.

Perform regular (at least quarterly) system access audits for all enterprise systems.

Consultancy

Work with ITS teams, project teams, and institutional leadership teams in problem analysis, solution

identification, implementation, and delivery activities.

Work closely with ITS teams and campus customers to understand project requirements and

recommend sustainable solutions that meet defined business and academic needs while accounting for

information security.

Serve as technical contact for information security analysis.

Respond to assigned user support requests within 1 business day.

Diagnose and resolve at least 90% of assigned Help Desk tickets within 3 business days.

Planning and Organizing

Coordinate with the Infrastructure Services team to develop network, data center, cloud and systems

design specs and diagrams to plan and illustrate sustainable technical solutions that account for

appropriate physical and logical security.

Work with ITS Leadership and teams to establish appropriate project timelines to deliver sustainable

solutions within approved time and budget parameters.

Independently manage assigned tasks and project components.

Plan and account for physical and logical security/integrity in all projects.

Demonstrate attention to detail.

Information Processing & Decision Making

Prioritize allocation of time and resources in accordance with defined university and departmental

priorities.

Actively look to maximize existing university investments and leverage existing systems to solve

identified business problems.

Work with ITS teams and customers to identify and understand functional requirements of network,

data center, and enterprise applications.

Actively look to automate repetitive manual processes.

Identify potential impacts of new systems/processes or changes to existing systems/processes and

provide technical expertise to ensure operational reliability and information security.

Coordinate with other ITS staff, functional users, and appropriate vendors to account for security

(physical and logical), sustainability, disaster recovery, and business continuity measures in all solutions.

Work with ITS teams, project teams, and institutional leadership teams in problem analysis, solution

identification, implementation, and delivery activities.

Work closely with ITS teams and campus customers to understand project requirements and

recommend sustainable solutions that meet defined business and academic needs.

Communication

Interpret meaning and importance of information. Determine appropriate need and method for

keeping team members, customers/stakeholders, and management informed.

Utilize plain language in all verbal and written communication.

Keep policy, project, communication, testing, and training documentation updated using defined

standards within 3 business days of approved changes.

Document systems and processes in accordance with defined standards within 3 business days of

approved changes.

Work with ITS Management and teams to develop polices and standards and ensure compliance.

Be engaged and participate in individual discussions, project and team meetings.

Problem Solving

Establish working partnerships with ITS teams and external partners to coordinate problem resolution

for operational issues, and analyze root cause issues to address underlying problems.

Work with the ITS User Support Services team to identify common issues and develop appropriate

documentation, training, and/or tip sheets for campus users.

Develop “as is” and “to be” diagrams to visually represent challenges, risks, and opportunities for

information security improvements.

*Other special projects, duties, and responsibilities as assigned.

Requirements:

Experience

& Skills

3-5 years of progressive experience with network and/or data center security.

3-5 years of progressive experience in systems deployment and associated security

measures.

1-3 years of progressive experience in FERPA, HIPAA, PCI and/or similar industry

security standards.

Education Bachelor’s degree in computer science, or equivalent combination of education and

experience.

Advanced degree highly preferred.

IT Security certifications (CISA, CISM, CISSP, etc.) highly preferred.

Interpersonal

Skills

Excellent verbal and written communication skills

Excellent critical thinking and problem solving skills.

Positive attitude and solutions oriented thinking.

Ability to communicate technical concepts to both technical and non-technical

audiences.

Other Skills MS Word

MS Excel

Project management tools

Workflow diagramming tools

Physical Demands/Work Environment:

● Ability to work in a virtual environment using software technology including but not limited to

virtual meeting tools, such as Zoom, Instant Messaging, Canvas Learning Management System

(LMS).

● The ability to efficiently operate a computer and its peripheral equipment (keyboard, mouse,

etc.).

● Ability to sit or stand for six to eight hours.

● Ability to work at least 40 hours a week.

EEO and Accessibility Statement:

Bryan University is an equal-opportunity employer committed to providing a welcoming and inclusive

work environment for all. We do not discriminate based on race, color, religion, sex, national origin, age,

disability, or any other legally protected status. We are committed to building and developing a diverse

environment where a variety of ideas, cultures and perspectives can thrive. We provide reasonable

accommodations to individuals with disabilities and strive to ensure accessibility in our facilities,

products, and services.