Info Security Engineer III
In this role the practitioner will be responsible for securing and monitoring all data accessed, transmitted and stored throughout the business and third parties. The analyst is involved throughout the entire data lifecycle, from inception through disposal, ensuring access to data is managed and maintained following rigorous security, engineering and governance principles. The analyst works closely with business units and stakeholders to help with data access, ownership and enforcement of policies, rules and safeguards. The analyst works closely with IT team members, cybersecurity operations/responders and third parties, and must be technically proficient with data protection technologies, including data loss prevention (DLP), cloud access security broker (CASB), data classification, privacy, behavior analytics, encryption and GRC.
Support and maintain a wide range of data protection technologies, including but not limited to DLP, CASB, behavioral analytics, insider threat, data classification, data governance and encryption.
Stay abreast of new technology and all growing aspects of Data Security and Data Loss Prevention.
Contribute to the design, testing, implementation, and support of data security controls that align with corporate and regulatory compliance.
Secure and monitor data on-premises, in cloud infrastructure and within applications required to support a dispersed remote workforce.
Proactively recognize potential data security and compliance issues through reviews and analyses.
Work closely with security leadership, teammates and stakeholders to evaluate and implement data protection controls that align with organizational risk posture and compliance requirements.
Demonstrate the ability to translate business needs into solution requirements.
Perform periodic data discovery scans across network assets for sensitive data and work with data owners to identify gaps and propose solutions.
Provide ongoing insight into data privacy risks including analysis of key metrics and reporting of risk data.
Prepare, organize and maintain necessary documentation for internal use, IT support and end users, to ensure conformance to departmental and corporate standards and procedures and confirm actions and next steps to handle new Incidents in accordance with documented standard operating procedures (SOPs).
Demonstrate the ability to communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.
Other duties as assigned
Bachelor's degree in related discipline such as Computer Science, Business, Mathematics, Statistics, Science or Engineering required
3 years of related experience required
or equivalent combination of education and experience required
2 years in a supervisory capacity preferred
Experience in higher education or Healthcare IT field preferred
Participation in an on-call rotation required
Knowledge of the basic operation of computers, server and client operating systems and systems administration concepts required
Knowledge of operating system command-line tools required
Skill in diagnosing connectivity problems required
Skill in conducting research for troubleshooting novel client-level problems and correcting physical and technical problems that impact system/server performance required
Skill in conducting system/server planning, management, and maintenance required
Strong analytical mindset, ability to breakdown a problem and determine the root cause required
Demonstrated ability to re-prioritize projects as unplanned events occur to ensure immediate tasks are completed and larger department goals are ultimately met. Ability to function effectively in a dynamic, fast-paced environment
Ability to collaborate effectively with others and ensure customer satisfaction and appropriate follow-through in all interactions required
Excellent verbal and written communication skills required
The University of Rochester is committed to fostering, cultivating, and preserving a culture of equity, diversity, and inclusion to advance the University’s mission to Learn, Discover, Heal, Create – and Make the World Ever Better. In support of our values and those of our society, the University is committed to not discriminating on the basis of age, color, disability, ethnicity, gender identity or expression, genetic information, marital status, military/veteran status, national origin, race, religion/creed, sex, sexual orientation, citizenship status, or any other status protected by law. This commitment extends to the administration of our policies, admissions, employment, access, and recruitment of candidates from underrepresented populations, veterans, and persons with disabilities consistent with these values and government contractor Affirmative Action obligations.
How To Apply
All applicants must apply online.
EOE Minorities/Females/Protected Veterans/Disabled
Pay Range: $ 84,700 - $127,100 Annually
The referenced pay range represents the minimum and maximum compensation for this job. Individual annual salaries/hourly rates will be set within the job’s compensation range, and will be determined by considering factors including, but not limited to, market data, education, experience, qualifications, expertise of the individual, and internal equity considerations.
Location: Central Administration
Full/Part Time: Full-Time
Opening: Full Time 40 hours Grade 055 University IT/IS
Schedule: 8 AM-5 PM