Join a diverse and growing team creating an exciting new direction in risk management and safety technology.
Under general direction of the Security & Privacy Officer, manage the security and data protection infrastructure to protect the confidentiality, integrity, and availability of information resources at Risk and Safety Solutions (RSS).
Provide vulnerability management expertise. Configure vulnerability scanning tools, monitors, and dashboards to continually improve the RSS security infrastructure. Monitor vulnerability scanning tools for new vulnerabilities. Manage and assign ServiceNow tickets for mitigating or remediating vulnerabilities. Follow up on progress to mitigate or remediate the vulnerabilities. Report to the Security & Privacy Officer when policies are not followed or deadlines are not met. Identify weaknesses and potential threats to RSS information resources. Monitor the risk assessment activities in RSS and the risk registry. Follow up on risk treatment plans. Participate in team meetings and provide guidance on security issues.
Engage in research and development activities. Research and evaluate new security tools. Stay current with emerging system and web application vulnerabilities. Provide recommendations for new security tools. Coordinate with the Security Lead and DevOps teams for adoption of new tools.
With the guidance of and in collaboration with the Security & Privacy Officer, produce documentation for security policies, standards, and procedures. Ensure that documentation is compliant with University policies.