Senior Information Security Engineer (FT), CFRE43224IT Senior Information Security Engineer (FT), CFRE43224IT The College of DuPage is a comprehensive community college located 27 miles west of downtown Chicago, vitally connected to our local area for over 50 years. We prepare students for a lifelong passion for learning on our 273-acre campus which is home to nine associate degrees and a wide variety of professional and technical certificates. Many of these credentials prepare students to seamlessly articulate into the baccalaureate programs of our higher education partner institutions. College of DuPage is committed to student success and values an inclusive and welcoming community environment. We are an equal opportunity employer committed to diversity in the workforce. Our connection to the larger metropolitan area is essential to our success and provides a wealth of diverse cultural and recreational opportunities. Primary Duties and Responsibilities: The Senior Information Security Engineer at College of DuPage, reporting to the Senior Manager, IT Security, will play a critical role in maintaining and improving the institution's cybersecurity framework. This position is responsible for designing, and implementing security measures to protect the college's systems, networks, and data from security breaches. This position will collaborate with IT, academic, and administrative staff to ensure the highest standards of cybersecurity while supporting the educational mission of the institution. Proactively monitor network traffic and systems vulnerabilities to detect security incidents and breaches. Respond to security incidents, performing root cause analysis and developing mitigation strategies. Maintain and test incident response plans to ensure rapid recovery in the event of security breaches or failures. Work with Managed Security Service Provider to implement security operation solutions and act as point of contact for cybersecurity escalations. Lead the operation of security tools and platforms, such as Security Information and Event Management (SIEM) systems, and endpoint protection. Design, implement, and maintain security architectures and technologies such as encryption protocols, identity and access management (IAM), and secure network infrastructure. Maintain the encryption and protection of sensitive data, including personally identifiable information (PII), financial data, and intellectual property. Implement and manage data loss prevention (DLP) solutions. Lead vulnerability scans and penetration tests to identify and prioritize potential threats. Implement risk mitigation tasks. Develop and update information security policies, standards, and guidelines in accordance with industry best practices, regulations (e.g., FERPA, HIPAA), and compliance frameworks (e.g., NIST, ISO 27001). Support security awareness programs for students, faculty, and staff to ensure the campus community understands security risks and best practices. Work closely with academic and administrative departments to ensure the institution's technology and security needs are met. Evaluate the security posture of third-party vendors, partners, and cloud service providers. Ensure that appropriate security controls are in place when integrating external systems. (Vendor & Third-Party Risk Assessment) Stay up to date with the latest cybersecurity trends, tools, and threats, and assess their impact on the college's infrastructure and systems. Performs other duties as assigned. Qualifications: Education Bachelor's degree in computer science, information technology, cybersecurity, or a related field required. Experience Minimum of 5-7 years of experience in information security, with at least 3 years in a senior or lead role required. Industry-recognized certifications such as CISSP, CISM, or similar certifications are strongly preferred. Familiarity with cloud security (AWS, Azure, Google Cloud) and securing hybrid on-prem/cloud environments. Knowledge of data privacy regulations and best practices for securing research data in an academic setting. Familiarity with security frameworks, compliance standards (FERPA, HIPAA, PCI-DSS), and regulatory requirements for higher education institutions required. Experience with security operations centers (SOCs) and incident response teams required. Experience with Implementing and managing data loss prevention (DLP) solutions required. Experience with Vendor & Third-Party Risk Assessment required. Experience in higher education environments is preferred. Working Conditions: In-depth understanding of cybersecurity technologies including firewalls, SIEM, encryption, DLP, and IAM solutions. Strong expertise in vulnerability management, penetration test, incident response, and security operations. Ability to communicate complex security concepts to both technical and non-technical audiences. Demonstrated ability to work independently and as part of a cross-functional team. Strong leadership, analytical, and problem-solving skills. Strong project management and communication skills This position requires a background check and drug screen. Hybrid Remote Eligible: Hiring Range: Classified 15 Salary/101,000.00 - 107,000.00 Competitive starting pay is dependent on education and experience. College of DuPage also offers a generous benefits plan which includes paid time off, tuition discounts for employees and dependents, medical, dental, vision effective the first day of employment, and retirement benefits in a collaborative and friendly environment. College of DuPage is an equal opportunity employer. We are committed to diversity and creating an inclusive environment for all employees. College of DuPage does not discriminate against individuals in employment opportunities, programs and/or activities on the basis of race, color, religion, gender, sexual orientation, age, national origin, ancestry, veterans' status, marital status, disability, military status, unfavorable discharge from military service, or on any other basis protected by law. To apply, visit https://cod.csod.com/ux/ats/careersite/4/home/requisition/2168?c=cod Copyright 2024 Jobelephant.com Inc. All rights reserved. Posted by the FREE value-added recruitment advertising agency jeid-f2e22746dc6eb84c8d5fe9ef0f88c2f4