Staff Job Composite
Information Security Architect
Job Summary: Under administrative direction, provides architectural, policy and procedural guidance in the design of network, system and application architectures for information technology (IT) projects and initiatives within the University; ensures overall IT infrastructure provides secure and high-performance IT services.
CHARACTERISTIC JOB TASKS AND RESPONSIBILITIES
May include any and/or all of the following:
- Provides protection to the IT systems of the University, investigating and recommending different systems and technologies available to support overall security initiatives; collaborates with IT management and external business units to understand their infrastructure and business requirements for the purpose; assists in the design of effective and proactive defense strategies; implements security event monitoring based on infrastructure and compliance needs.
- Ensures that the security infrastructure is in line with the next generation developments; makes recommendations to keep the security related functions of all networks and systems up to date.
- Collaborates with various areas of IT operation and planning to ensure monitoring and audit functions are commensurate with the overall risk and security plan; ensures the organization is prepared to respond to security risks, deploying the appropriate tools and procedures.
- Implements and oversees forensic functions of the unit including litigation holds and preservation of computer images for investigations.
- Analyzes ways in which the University systems can be subjected to intrusion, performing regular threat and vulnerability assessments; performs special projects and other duties as assigned.
KNOWLEDGE, SKILLS, ABILITIES AND PERSONAL CHARACTERISTICS
- Extensive knowledge of information security systems
- Extensive knowledge of computer, network, and internet technologies and protocols
- Strong problem-solving and analytical skills
- Strong leadership and communication skills
- Ability to communicate technical and security-related concepts into a non-technical language
- Ability to think like a hacker or potential intruder
- Ability to work and prioritize in a highly dynamic, project-oriented work environment
- Ability to maintain high level of confidentiality
Education and experience equivalent to:
Bachelor's degree; supplemented with six (6) years of related work experience. Certified Information Systems Security Professional or other related information security certification is required.