Security Administrator​/Information Security Specialist

Title: Security Administrator/Information Security Specialist

Position Numbers: 97556T, pending position clearance

Hiring Unit: Information Technology Services, Office of the VP for Information and Chief Information Officer

Location: UH System Offices, Manoa Campus

Date Posted: December 4, 2025

Closing Date: January 11, 2026

Band: B

Salary: salary schedules and placement information

Full Time/Part Time: Full Time

Temporary/Permanent: Temporary

• As a member of the UH Information Security team, oversees, manages and maintains the UH information security data protection and compliance programs.
• Provides general and technical advice, problem-solving assistance, and answers to questions regarding the information security program, information security issues, compliance programs, policies, standards and procedures.
• Manages Security Information and Event Management (SIEM) system to collect, correlate, and analyze security logs and alerts from critical information systems and analyzes the information to detect, investigate, and respond to suspicious or malicious activity
• Develops and maintains an effective security awareness training program as necessary for UH employees and conducts regular ongoing training.
• Actively promotes and communicates security awareness and changes in policies, procedures or training to faculty, staff and students, and provides guidance to affected groups.
• Assists the UH Information Security team with ensuring compliance with external regulations, laws and standards such as but not limited to the DOD Cybersecurity Maturity Model Certification program, GDPR, PCI-DSS, HIPAA, FERPA, NIST 800-171, HRS 487N, HRS 92F & UH policies/procedures across the UH system.
• Performs information security risk assessments. Provides reports and/or recommendations on a regular basis to University officials, senior leadership, higher level personnel and functional groups on the operation and progress of efforts.
• Identifies potential compliance vulnerabilities and risk; develops and implements corrective action plans for resolution of issues.
• Consults and collaborates with other departments, external vendors, service providers and/or external institutions to correct security related vulnerabilities and events when detected.
• Continuously monitors security threats, security trends, technological developments and emerging practices in the information technology, information security and higher education industries.
• Manages and monitors various security hardware, tools, systems/networks and applications in cooperation with Information Technology Services (ITS) staff.
• Performs capacity planning, evaluation, management and implementation of new products and technologies associated with information security in cooperation with other personnel as needed to address new security deficiencies and threats.
• Leads security incident responses, investigations and emergency situations, including those involving policy and regulatory violations. Handles legal requests and provides remediation support as necessary.
• Performs analyses and investigations of reports of inappropriate use of technology or institutional/personal information, including any alleged computer or network security compromises, and assists with the reporting and resolution of such incidents.
• Implements, maintains and performs the appropriate processes for proper reporting of violations or potential violations to duly authorized reporting authorities and/or enforcement agencies as appropriate and/or required.
• Reviews the work of and provides input and guidance on laws, rules, regulations and policy to other security team members; monitors, reviews and directs subordinates and student assistants as necessary.
• Perform other related duties as directed by the Chief Information Security Officer, VP IT & CIO, General Counsel and/or other UH Officers or UH senior administrators.
• Other duties as assigned.

• Possession of a pertinent baccalaureate educational degree in Computer Sciences, Information Security or related field and 5 years of progressively responsible professional information technology experience with responsibilities for information security of which 2 years of the experience must have been comparable in scope and complexity to the next lower payband in the University of Hawai'i broadband system; or any equivalent combination of education and/or professional work experience which provides the required education, knowledge, skills and abilities as indicated.
• Considerable working knowledge of information security as demonstrated by the broad knowledge and understanding of the full range of pertinent standard and evolving information technology concepts, principles and methodologies.
• Considerable working knowledge and understanding of the broad technology, systems, hardware and software associated with information security.
• Demonstrated ability to recognize a wide range of intricate problems, use reasoning and logic to determine accurate…