Search for University Jobs in Staff & Non-Managerial Professionals

Job ID: 117620

Information Security Compliance Analyst
University at Buffalo, The State University of New York

Date Posted Dec. 21, 2018
Title Information Security Compliance Analyst
University University at Buffalo, The State University of New York
Buffalo, NY, United States
Department Security
Application Deadline Open until filled
Position Start Date Available immediately
  • Professional Staff
  • Information Technology

Works with distributed research community to achieve security compliance in accordance with standards as prescribed by the granting/contracting agency

- Meets with researchers and IT staff to explore and meet compliance requirements
- Acts as project manager for implementation of compliance and security controls
- Researches, tunes and updates security controls as requirements and capabilities change
- Participates in all information security office incident responses
- Develops policies and procedures relevant to information security and research compliance
- Serves on appropriate review and governance committees
, Reviews logs and events related to covered research systems and investigates any anomalies

- Performs risk and vulnerability assessments and testing
- Configures and monitors relevant security controls, including network and host firewalls, SIEM console(s), logging and alerting servers, IDS/IPS tools, and more
- Daily security operational responsibilities in reviewing and responding to Information security reports and alerts
- Works closely with Central and Distributed IT nodes in security technologies and compliance
, Maintains proper documentation for the compliance program
Reports incidents via incident handling process and files incident reports with outside agencies as appropriate and per contract requirements

- Assist researchers in developing security plans, assessments, and milestones and plans of action
- Prepare and report corrective actions and incident response activities when needed
- Maintain inventory and contact information, including breach alerting requirements
- Administer and manage, or develop and automate information security reporting tools
, Educates researchers/faculty about the proper way to handle possible compromised systems
Works collaboratively with stakeholders on campus to improve research information security compliance
Reports metrics on program effectiveness to management

- Deliver relevant information security awareness training
- Monitor and participate in higher education and industry information security information sharing resources
- Maintain currency in information security tools and processes
, Stays abreast of developments in the Information Technology industry specifically as they relate to research Information Security requirements from state and federal agencies

Please reference in your cover letter when
applying for or inquiring about this job announcement.

Contact Information

Please see the job description for contact details
pertaining to this university job announcement.


Refer this job to a friend or colleague!

New Search | Previous

Looking for a higher education job?