Southern Oregon University is a welcoming community committed to inclusive excellence and the celebration of diversity. Without diversity, our educational process is diminished. Working together in support of our commitment to diversity, we strengthen and enrich our role as learners, educators and members of a tightly connected global community. We encourage those who share in our commitment to diversity, to join our community and we expect all our employees to demonstrate an ability and desire to create an inclusive campus community.
Department: Information Technology Management
Salary/Rate: $62,207 - $71,502 @ 1.0 FTE (Salary commensurate with licenses/certifications presented at the start of appointment)
Effective 9/2/21, extension to the priority consideration date. See below for details.
Reporting the SOU's Chief Information Officer, the Information Security Manager (ISM) will be the primary resource responsible for performing all tactical cybersecurity work at SOU. This position will be required to work independently with little supervision, requiring initiative and the ability to formulate its own work plans. This position will be given the authority to make tactical decisions surrounding cybersecurity initiatives at SOU. Thus, this position will be given the necessary visibility into all areas to examine and document any existing or upcoming threats. In addition, the ISM will make recommendations to the CIO and SOU's administration that will address cybersecurity threats.
Incident Response The ISM will participate in all cybersecurity incident response activities, and depending on the scope of the incident, the ISM may be the key person managing incident response. In addition, the ISM will be responsible for documenting all incidents and formalizing and maturing the cybersecurity incident response processes at SOU.
Compliance The ISM will also be involved in SOU's compliance needs where they intersect with information systems and information technology. The incumbent will participate in audits of SOU's compliance and make recommendations for how to address any findings.
Threat Hunting The ISM will proactively scan and monitor SOU's information technology ecosystem to identify existing, new or potential threats to SOU. The ISM will participate in active threat intelligence efforts to ensure that SOU is aware of changes to the threat landscape. Moreover, the ISM will make recommendations for how to mitigate these threats, and implement the mitigations when approved.
Training The ISM will be a primary resource for providing a variety of cybersecurity trainings using different delivery methods to SOU's employee base.
Investigations As part of incident response, this position will be involved in confidential investigations that could include sensitive information relating to employees and/or students. This position will therefore at times be included in discussions surrounding the employment status of SOU employees. Therefore, confidentiality is paramount to be successful in this position.
Minimum Classification Qualifications:
· Minimum of Bachelor's degree required
· Minimum of four years working in information technology
· Experience working with multiple operating systems
· Experience working with Active Directory
Licenses/Certificates · Must hold or be able to obtain at least one cybersecurity certification within the first six months of employment (CISSP, CISM, CEH, CompTIA Security+, etc.)
· Must hold or be able to obtain CISSP certification within the first 18 months
SOU provides career-focused, comprehensive educational experiences to over 6,200 students. Along with an emphasis on student success and intellectual growth, SOU is committed to diversity, inclusion and sustainability. Theoretical and experiential learning programs provide quality, innovative experiences for students. At SOU, students build strong community connections through internships, mentorships, field studies, capstone projects, volunteer opportunities and civic engagement.