Job description
Department
BSD ISO - Information Security Office
About the Department
The Biological Sciences Division (BSD) Information Security Office is committed to supporting the principles of academic freedom and the free exchange of ideas; the BSD’s information security initiatives are intended to support those principles while maintaining an appropriate level of security, managing organizational risk, and ensuring privacy. The Information Security Office provides information security services and expert security guidance to BSD leadership and all members of the BSD research and academic enterprise. This includes 6000 Endpoints\Mobile Devices, 700 Servers, (HPC) High Performance Computing and various informatics research platforms. The department efficiently ensures confidentiality, integrity, and availability of its information assets and data, in accordance with organizational security policies and applicable state and federal laws.
Job Summary
The Blue Team is responsible for establishing security measures around the BSD’s key assets. They conduct a risk assessment by identifying threats and weaknesses exploited after obtaining data and documenting what needs to be protected. They identify critical assets, determine what impact their absence will have on the business, and document the importance of these assets.
Responsibilities
-
Incident Detection and Response.
-
Deployment and engineering.
-
Architecture and design.
-
Uses a deep understanding of IT expertise to develop and implement security and compliance policies, guidelines, and safe practices for university-wide computing and networking systems.
-
Leads teams to conduct in-depth information technology risk assessments; makes recommendations and designs improvements to IT security procedures.
-
Guides communications with users to understand their security needs and supports the implementation of procedures to accommodate them. Ensures that user community understands and adheres to necessary procedures to maintain security.
-
Performs other related work as needed.
Minimum Qualifications
Education:
-
Work Experience:
Minimum requirements include knowledge and skills developed through 5-7 years of work experience in a related job discipline.
Work Experience:
-
Certifications:
Certifications:
-
Preferred Qualifications
Education:
-
Bachelor of Science in a related field such as Computer Science, Information Science and Security.
Experience:
-
Experience in Information Technology with a focus on cyber security.
-
Limited experience of one or more of the following technologies: (GRC) LockPath, Vun Scanning (Qualys, Siem (QRadar), Next Gen EDR (CS).
-
Experience completing risk assessments and responding to cyber threats.
Licenses and Certifications:
-
GCIH, GIAC, CISSP, CISA, CISM.
Preferred Competencies
-
Understanding of server and application administration.
-
Understanding of data communication concepts and network/software configuration management.
-
Ability to prioritize multiple projects.
-
Ability to communicate technical information to a non-technical audience in a clear and coherent manner. Direct experience providing customer service.
-
Ability to respond to changing priorities and operate effectively in a dynamic demand-based environment, requiring extreme flexibility and responsiveness.
-
Ability to weigh business needs against security concern.
-
Ability to conceptualize a course of action and to organize for the successful completion of that action is critical, often under tight deadlines.
-
Ability to present information in a consistent and concise manner.
-
Ability to communicate in a personally effective and socially appropriate manner.
-
A strong, complete, and working understanding of architecture-level information security and appropriate use enforcement technology solutions including advanced malware detection/prevention, mobile device virtualization/MDM, cloud security management, structured and unstructured database encryption.
-
A strong working understanding of contemporary security theory and application (including vulnerabilities, exploitation techniques and attack vectors).
-
Strong understanding of systems development lifecycle to lead multifunctional projects or initiatives.
-
Knowledge of laws, regulations, and standards relevant to the US Healthcare industry.
-
Excellent written and verbal communication skills (including technical writing, documentation development, process mapping, and visualization).
-
Must be able to effectively communicate technical concepts to a non-technical audience.
Application Documents
-
Resume (required)
-
Cover Letter (preferred)
When applying, the document(s) MUST be uploaded via the My Experience page, in the section titled Application Documents of the application.
Job Family
Information Technology
Role Impact
Individual Contributor
FLSA Status
Exempt
Pay Frequency
Monthly
Scheduled Weekly Hours
40
Benefits Eligible
Yes
Drug Test Required
No
Health Screen Required
No
Motor Vehicle Record Inquiry Required
No
Posting Statement
Employees must comply with the University’s COVID-19 vaccination requirements. More information about the requirements can be found on the
University of Chicago Vaccination GoForward
.
The University of Chicago is an
Affirmative Action/
Equal Opportunity/Disabled/Veterans Employer
and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national or ethnic origin, age, status as an individual with a disability, protected veteran status, genetic information, or other protected classes under the law. For additional information please see the
University's Notice of Nondiscrimination.
Staff Job seekers in need of a reasonable accommodation to complete the application process should call 773-702-5800 or submit a request via
Applicant Inquiry Form.
We seek a diverse pool of applicants who wish to join an academic community that places the highest value on rigorous inquiry and encourages a diversity of perspectives, experiences, groups of individuals, and ideas to inform and stimulate intellectual challenge, engagement, and exchange.
All offers of employment are contingent upon a background check that includes a review of conviction history. A conviction does not automatically preclude University employment. Rather, the University considers conviction information on a case-by-case basis and assesses the nature of the offense, the circumstances surrounding it, the proximity in time of the conviction, and its relevance to the position.
The University of Chicago's Annual Security & Fire Safety Report (Report) provides information about University offices and programs that provide safety support, crime and fire statistics, emergency response and communications plans, and other policies and information. The Report can be accessed online at:
http://securityreport.uchicago.edu
. Paper copies of the Report are available, upon request, from the University of Chicago Police Department, 850 E. 61st Street, Chicago, IL 60637.
johnandkristie.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, johnandkristie.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, johnandkristie.com is the ideal place to find your next job.