To provide Compliance/Audit, Risk Management, Controls mapping and operational information security support, and to support the ODU IT Security Program to advance in principle, policy and practice. To provide awareness and training to ITS and departmental stakeholders who have responsibilities for systems and applications.

Type of Recruitment

Knowledge, skills and abilities
Working knowledge of information technology data center and cloud environments. Strong analytical, organizational, and problem solving skills.
Proven written and oral communications skills. Familiarity with analysis of assets, vulnerabilities, threats, and corresponding controls as part of the risk analysis process.
Familiarity with IT security and privacy frameworks, standards and regulations, including ISO27001, NIST , HIPAA \ HITRUST , PCI - DSS , GLBA , DMCA , and export control laws. Demonstrated skill and ability to utilize personal computers and related software. Demonstrated effective communication skills. Demonstrated ability to interact with technical staff, computer vendors and University community.
Understanding of policy and procedure, and the ability to implement that understanding across a wide range of information security and compliance support scenarios.

Special licenses, registration or certification
None

Education or training
None

Level and type of experience
Considerable experience with information security, risk analysis, audit, privacy, compliance or related fields. Considerable experience with security architecture and implementation of technical controls.
Some experience with security architecture and technical controls.

Preferred knowledge, skills, abilities, education, experience, licensure, certification
Familiarity with IT Continuity of Operations and Disaster Recovery planning.
Demonstrated project management skills.
Some experience with IT risk assessment and risk management processes such as OCTAVE , Binary Risk Management, or NIST Special Publication 800-30, Risk Management Guide for Information Technology Systems.
Familiarity with security analysis tasks such as network security monitoring, incident investigation and handling, vulnerability scanning, penetration testing, and forensics.
Familiarity with Intrusion Detection techniques and packet analysis. Familiarity with scripting and programming languages such as C, C++, Python, and others.
Bachelor's degree in related field, or equivalent combination of education and experience. Security or Assurance certification such as CISSP , CRISC , CGEIT , CCSK . Project Management ( PMP ) and\or Service Management ( ITIL ) certification(s).
Some experience working in a University information security, compliance or audit office.

Conditions of Employment
40 hour work week Monday-Friday; Some evenings and weekends.
This position is designated as sensitive. A fingerprint-based criminal history check will be required of the final candidate.
This is an open until filled recruitment. This recruitment may close after the five-day required posting period when a suitable pool of applicants has been generated.

Annual Salary/Hourly Rate
Salary range between $ - 57,342 - $75,000


To apply please click here!