Information Security Administrator
Chicago, IL

Job Description

Position Details

Job Title SECURITY ADMINISTRATOR Position Number 8102285 Job Category University Staff Job Type Full-Time FLSA Status Exempt Campus Rogers Park-Lake Shore Campus Department Name ENTERPRISE SYSTEM SERVICES Location Code ENTERPRISE SYSTEMS SERVICES (07180A) Is this split and/or fully grant funded? No Duties and Responsibilities

The Security Administrator supports the Information Security Officer, primarily through monitoring and configuring security systems and devices on the Loyola network. These systems include intrusion prevention systems (IPS), Security Information and Event Management Systems (SIEM), Virtual Private Network (VPN) systems, network access control systems (NAC), network and vulnerability scanning systems, and other security systems. This position will work with other teams within the Information Technology Services (ITS) division, as well as with other divisions across the University.

* Monitors and configures security systems, including but not limited to IPS, VPN, SIEM and netflows, in order to protect the Loyola network from malicious activity and to identify compromised faculty, staff, and student machines.
* Maintains compliance with laws, regulations and contractual obligations including PCI, DMCA (Digital Music Copyright Act), FERPA, HIPAA, and others.
* Assists with network and vulnerability scanning to ensure that Loyola systems are appropriately protected.
* Supports departmental efforts to identify and manage personally identifiable information.
* Coordinates and/or assists with incident response and event handling needs. Will include being on-call and working outside of regular business hours as needed.
* Implements and tests new security hardware and software.
* Assists with annual information security tasks, such as key and badge access audits and security assessments by 3rd parties.
* Manages assigned projects and coordinates activities related to implementing security policies, processes and controls.
* Identifies needs and gaps in security policies, processes and controls and make recommendations and work with internal faculty, staff and vendors to remedy those items.
* Assists with creating and modifying information security policies, procedures, standards and guidelines.
* Maintains confidentiality of investigations.
* Assists in processing departmental reports.
* Performs related duties as required.

Minimum Education and/or Work Experience

Bachelor's degree required in Computer Science or related field and two years of related experience.

Qualifications

* Excellent client facing skills including exceptional oral and written communication skills.
* Core consulting skills such as business writing and presenting, and analytic comparisons.
* Ability to respond to common inquiries or complaints from customers.
* Ability to build strong, trustworthy partnerships and value-added relationships with technology and institutional stakeholders.
* Must be detail oriented, results focused, possess effective written and verbal communication skills, and be able to support change management initiatives.
* Synthesizes complex or diverse information; generates creative solutions; identifies and resolves problems in a timely manner; gathers and analyzes information skillfully; develops alternative solutions; works well in both group and individual problem solving situations. Looks for ways to improve and promote quality; responds promptly to customer needs; solicits customer feedback to improve service; responds to requests for service and assistance.
* Ability to show initiative and work independently and on teams.
* Excellent analytical skills and attention to detail.
* Excellent verbal and written communication skills.
* Experience in a higher education environment is preferred.
* Working knowledge of pertinent regulations (e.g., FERPA, HIPAA) is preferred.

- Competency in computer forensics, and electronic discovery is preferred.

* Great attitude and strong work ethic; ability to work independently and in team settings; focuses on solving conflict, not blaming; maintains confidentiality and follows ITS and other University policies regarding information security and protection; balances team and individual responsibilities; contributes to building a positive team spirit; effectively influences actions and opinions of others; strives to continuously build knowledge and skills; shares expertise with others; able to communicate technical ideas and concepts to non-technical audiences; excellent oral and written communication skills.
* Diversity - Shows respect and sensitivity for cultural differences; educates others on the value of diversity.
* Ethics - Treats people with respect; works ethically and with integrity; handles sensitive and confidential issues and materials appropriately.
* Supports organization's goals and values; develops strategies to achieve organizational goals; adapts strategy to changing conditions; includes appropriate people in decision-making process; strong administrative and organizational skills.

Certificates/Credentials/Licenses

None

Computer Skills

* A strong understanding of TCP/IP, network security, and workstation and server security.
* Knowledge of and familiarity with intrusion detection/prevention systems.
* Exposure to security audit and compliance processes and functions.
* Competency in computer forensics, and electronic discovery.
* Ability to read, analyze, and interpret network trace files and log files.

Supervisory Responsibilities No Required operation of university owned vehicles No Does this position require direct animal or patient contact? No Physical Demands None Working Conditions None Open Date 03/20/2019 Close Date Special Instructions to Applicants