Info Security Specialist

Info Security Specialist

Apply for the Info Security Specialist role at the Tennessee Board of Regents (T ).

Employee Classification: Other Professionals

Institution: System Office

Department: Information Technology

Campus

Location:

Tennessee Board of Regents System Office

The Information Security Specialist provides security-focused support to users and leads key security initiatives for the T  Central Office and T  institutions, operating under the direct guidance of the Chief Information Security Officer (CISO). The role manages incident monitoring, metrics collection, detailed security reports, and security-related audits. Responsibilities include incident management, risk assessment, implementation of security controls, awareness training, policy development, and maintaining IT security architecture, policies, and standards.

Remote work within Tennessee is possible with periodic visits to the T  System Office (Nashville, TN) at the employee’s expense and potential travel to Tennessee T  colleges may be necessary.

• Oversees security operations, security engineering, and compliance of information systems and services across the enterprise; develops, delivers and manages IT Security standards, best practices and architecture information that supports IT Security operations, engineering, and compliance across the enterprise; conducts studies within and outside the organization to ensure compliance with standards and conformity with industry security norms.
• Maintains the Information Systems Security Program (ISP) for the T  Central Office and works with T  institutions on related security issues with regard to the ISSP; promotes reliability and accessibility while protecting against unauthorized access to systems, networks, and data.
• Develops and maintains an IT Security Architecture for T ; leads and coordinates the development and maintenance of information systems security policies, procedures, standards, and guidelines, ensuring compliance with federal and state laws and regulations.
• Maintains the campus Cyber Incident Response Plan (CIRP) and fosters security- and audit-related regular communications with campus Security Incident Response Teams (SIRT); oversees appropriate corrective actions and informs the campus community of needed changes based on new security technologies or threats.
• Develops security awareness training programs; penetration testing timelines; security standards metrics and other security-related tools for distribution and implementation across the T  community; promotes professional development of IT Security Awareness; ensures adherence to IT security best practices and standards across the organization.
• Contributes to the overall team environment by performing other tasks as assigned.

• A bachelor's degree in information technology or a similar area with minimum of 2 years relevant work experience, or an associate degree in a related field along with three years of relevant work experience.
• Candidates who do not possess a degree, but have at least four years of direct, relevant experience will also be considered for this position.
• Applicants must possess at least one relevant security certification such as CompTIA Security+, ISC2 certified in cybersecurity (others may be considered).
• Must have an appreciation for and an understanding of a two-year college mission.
• Relevant work experience should come from at least two of the following domains:
  Security and Risk Management, Asset Security, Security Architecture and Engineering, Communication and Network Security, Identity and Access Management, Security Assessment and Testing, Security Operations, and Software Development Security.
• Experience with service catalogs and service level agreements.
• Experience working in both technical support and end-user support environments.
• Demonstrated technical writing & documentation ability necessary.

• Experience in cloud security configurations.
• Excellent time management skills.
• Excellent critical thinking and problem-solving skills.
• Eager to expand skills and expertise.
• Demonstrated ability to analyze problems from multiple points of view, lead consensus building within groups with differing views, translate consensus into planned action.
• Candidate should have demonstrated experience in higher education.

• A self-starter who can work with a minimum amount of supervision.
• Demonstrated organizational skills.
• Demonstrated ability to understand customer needs and commitment to provide quality service.
• Demonstrated willingness to work flexible hours and troubleshoot when necessary.
• Excellent interpersonal and oral/written communication skills.
• A willingness and passion to learn new hardware/software security-related systems that are consistent with duties.

• Mid-Senior level

• Full-time

• Other, Information Technology, and Management

• Higher Education

Location:

Nashville, TN
Salary:…