The position is responsible for implementation, monitoring, and reporting of information security controls to maintain compliance with University information security policies and programs. The ideal candidate has a strong networking background and experience developing and administering firewall rules and policies. The incumbent will keep current on information security threats and risks and lead the implementation and configuration of corresponding preventative measures including: next-generation firewalls, anti-virus software, Security Information and Event Management (SIEM), Intrusion Detection and Prevention (IDS/IPS), Web Application Firewall (WAF), Identity Services, etc.
Monitor the University's network traffic, information systems, and security logs for security incidents. Configure integrations between security tools, network infrastructure, on-site and cloud based applications to automate security incident alerting, logging, risk-assessment, and resolution.
Participate in change control processes and implement firewall changes as approved by the Committee. Recommend changes to the Committee to tighten firewall security.
Evaluate security tools and processes in conjunction with the Director Information Security and the IT team. Recommend improvements to security tools, configurations, processes and policies. Responsible for the hiring, coaching and development of student workers.
Participate in business continuity, disaster recovery, and cyber incident emergency drills.
All other duties as assigned. Must be available to be on-call occasionally during weekend hours. Must be available by phone and email after typical business hours.
Bachelor’s Degree (in Computer Science, Information Systems or related field) or equivalent work experience required.
Must have 2-3 years of related work experience as a Security Analyst, Firewall Administrator, or equivalent work experience.
Practical experience in a technical area such as security architecture, security operations, incident management, networking, server administration, technical customer support, etc. is required.
Excellent verbal and written communication skills
Excellent analytical and technical skills.
Ability to work in a collaborative environment with a small Information Technology Staff.
Ability to complete tasks on time and handle multiple priorities.
Strong understanding of NIST Cybersecurity Framework and operational implementation of controls.
CISSP (Certified Information Security Systems Professional), GIAC (Global Information Assurance Certification), or other industry certification preferred.
Commitment to Diversity:
Robert Morris University is committed to increasing diversity in our community and actively pursues individuals from all backgrounds. Additionally, RMU complies with all applicable federal, state and local laws and provides equal opportunity in all educational programs and activities, admission of students and conditions of employment for all qualified individuals regardless of race, color, sex, religion, age, disability, sexual orientation, or national origin.