College IT Security Specialist
- Company: Eastern Maine Community College
- Contact Name:
- Contact Email:
- Career Website: https://www.emcc.edu/discover-emcc/emcc/employment/work-at-emcc/
- Contact Phone: (207) 974-4633
Responsibilities: The College IT Security Specialist is responsible for the overall integrity and the security of information, both confidential and personal, for all employees, students, and programs throughout the college. The position will develop processes to monitor all security events to ensure compliance with college information security policies and procedures. This positon will also perform systems vulnerability scanning, penetration testing and develop and evaluate remedial actions. This position will assess security risks and advise management on appropriate mitigation strategies and monitor security performance and controls. Perform college security audits, provide security incident investigation support, and support and advise College management in relation to IT security architecture. This position reports directly to the College President.
Minimum Qualifications: Bachelor's Degree with focus in Computer Science or Information Systems or four or more years of experience in Information Technology. Equivalent experience may be substituted for education on a year for year basis.
Desired Qualifications: CISSP, CISA, CISM, SSCP, or Security+ certification preferred. Four more years of progressive experience in vulnerability assessments, penetration testing, intrusion detection/prevention, and security monitoring.
Preferred Knowledge, Skills and Abilities:
An understanding of information security management systems and standards.
Internal IT security auditing experience.
An aptitude to research and identify emerging standards, products, and security issues, and recommend new products through evaluation.
Analytical with an aptitude for finding significant patterns of large amounts of data; attention to detail.
A solid understanding of IT systems administration and/or network engineering.
Ability to prioritize effectively and execute tasks.
Ability to communicate clearly and concisely, both orally and in writing.
Ability to maintain the confidentiality of security operations and related information.
Knowledge and understanding of the current and developing information technology security practices, procedures and
policies, and ability to stay abreast of new security sector developments.
Knowledge of all eight security domains.