The University of Vermont
The University of Vermont is especially interested in candidates who can contribute to the diversity and excellence of the institution. Applicants are encouraged to include in their cover letter information about how they will further this goal.
Serve in high-impact technical, educational, and leadership role focused on securing both the physical and virtual aspects of UVM’s information environment. Implement, manage, and integrate systems and software that support of the Information Security Office’s mission to identify and remediate threats to the confidentiality, integrity, and availability of information in the University of Vermont’s information ecosystem. Manage information security projects of significant institutional impact and importance; work closely with Director, senior analyst, and staff responsible for enterprise technology infrastructure operations; and serve as a subject-matter expert/consultant to constituent and leadership groups. Participate in UVM’s Cybersecurity Incident Response Team (CSIRT), provide functional supervision to one or more Information Security/Identity Management Analysts and student employees operating in supporting roles, and report to Director of Information Security.
Develop and leverage a deep understanding of UVM’s information ecosystem in order to identify intrusion, exfiltration, and other threats to information security using ethical, repeatable, defensible methods. Exercise discretion and judgment and maintain strict confidentiality, while utilizing high level of access to maintain the security of University information, protecting individuals’ privacy, and educating constituents.
Minimum Qualifications (or equivalent combination of education and experience)
Bachelor’s degree in a related field and five years’ experience as an information security professional to include experience in a professional systems administration or network administration role performing cybersecurity incident response, endpoint/network forensics and/or continuous security monitoring required. Expert proficiency in the technical concepts underpinning internet-connected enterprise services required.
Effective customer service, communication, and interpersonal skills are required. Effective written communications to produce both procedural documentation and activity/incident documentation in support of office self-assessment reporting required. Demonstrated ability to communicate information security concepts and concrete action steps to both technical and general populations through teaching, writing, presenting, and individual interactions required.
Effective interpersonal skills and demonstrated ability to work and manage projects in a collaborative, cross-departmental, team environment required. Problem-solving, analytical, and decision-making skills required. Demonstrated ability to evaluate risks, costs, and benefits of security measures required.
Successful criminal background check required.
Expertise programming in languages popular for orchestration/automation (e.g., Python, PowerShell, Go); experience implementing security measures across hybrid cloud/on-premises environments; experience applying machine learning techniques to information security problems; experience hardening servers, applications, and databases; basic forensic experience; network management experience with Cisco equipment; experience with implementation of operation of network access control (NAC), security information and event management (SIEM), firewalls, intrusion prevention and detection systems (IDS/IPS), managed encryption, and identity management (IdM); work experience in a higher education environment.
Occasional extended /weekend hours required