Manager, Information Security

Unleash YOUR Potential With Us

As a next-generation public research institute, we are an inclusive community of thinkers, doers, creators, innovators, healers, and leaders striving to shape the future and solve the world's most challenging problems. No matter what your role is, when you join Knight Nation, you will play an integral role in pushing us forward to become among the most impactful universities in the country. You'll be met with opportunities to connect and collaborate with uniquely talented faculty, staff, and students across 13 colleges and multiple campuses and regional locations. That means greater challenges to tackle, more meaningful opportunities to grow, and rewarding experiences that go beyond a paycheck. We're seeking qualified, motivated individuals who will help UCF fulfill its mission in unleashing the potential of every individual, enriching the human experience through inclusion, discovery, and innovation; and propelling broad-based prosperity for the many communities we serve.

UCF InfoSec

Founded in 1963 to fuel the region's talent pipeline and support the growing U.S. space program, UCF is built to make a better future for our students and society. It's one of the reasons U.S. News & World Report ranks UCF among the nation's top 20 most innovative colleges, while Forbes, Kiplinger, and The Princeton Review rank us a best-value university. The Information Security Office (InfoSec) promotes best practices through security awareness, online resources, targeted workshops, regular security awareness programs, as well as by publishing policies, standards, and guidelines. Furthermore, ISO enforces security elements within application, infrastructure, data architectures, and development methodologies, and is responsible for developing university policies, strategies, and standards, in addition to protection, disaster recovery, and business continuance procedures. While it is the responsibility of the information resource owners, custodians, and users to comply with GDPR, FERPA, GLBA, PCI DSS, HIPAA, and other federal and state requirements, the Information Security Office is available to provide counsel and guidance to assist in the assurance of the confidentially, integrity and availability of information resources.

The Opportunity

Reporting to the Deputy Chief Information Security Officer, under general supervision, Information Security Manager is responsible for the development and delivery of security operations center policies and procedures, threat analysis, threat reporting, and threat prevention processes through monitoring and management of network security systems, devices, and applications. Through leadership and management, Information Security Manager will support systems, such as Security Information and Event Management Systems (SIEM) and will collaborate with stakeholders to maintain appropriate visibility and data from relevant security technologies to include Intrusion Prevention Systems (IPS), Firewall systems, Virtual Private Network (VPN) systems, and other related security systems for the protection of networks, systems, and applications. Recommend Information security standards, best practices, architecture, and systems to ensure information system security across the enterprise and for the purpose of mitigating security incidents. Implement processes and methods for auditing and addressing non-compliance to information security standards.

Responsibilities:

• Manage and lead the Security Operations Center (SOC) who will be responsible for and will utilize monitoring security systems, such as the SIEM, to protect university data and systems from malicious activities that threaten system and data confidentiality, integrity, and availability.

• Enhance monitoring response capabilities via development of playbooks and runbooks

• Develop controls that provide staff and leadership with the ability to assess, prioritize, and address risks.

• Develop policies and procedures to analyze security threats, establish best practices and enforce compliance.

• Investigate system and network level intrusions and other cybersecurity breaches to determine the cause and extent of the breach and provide appropriate levels of response and support.

• Participate in special projects and performs other duties as assigned.

• Develop frameworks, supporting processes and act as a consultant for InfoSec policies, standards, metrics, and project/vendor risk assessments. Assist with performing analysis of operational security needs and contribute to the proposal, development, design, integration, and installation of security systems and applications.

• Partner with leadership and relevant responsible departments to build cohesive security and compliance programs that effectively address state and federal statutory and regulatory requirements. Interact effectively with technical and non-technical audiences via both verbal and written communications (e.g., technical writing, requirements analysis.)

• Maintain knowledge of the changing cyber security landscape especially as it relates to higher education

• Create a culture that increases cyber security vigilance with a focus on risk identification and reduction/mitigation.

Minimum Qualifications:

Bachelor's degree and 4 years of relevant experience; or High School Diploma (or equivalent) and 8 years of relevant work experience in lieu of degree

Preferred Qualifications:

• Solid IT knowledge in the areas of systems, applications, and network devices

• Experience working in cybersecurity or information assurance, ideally as part of a Security Operations Center (SOC) lead or manager

• Experience with managing a team

• Experience working at a higher Education

• Experience with automation and/or Security Orchestration, Automation, and Response (SOAR) solutions and technologies

• Experience creating security dashboards and KPIs

Are Benefits Important to You?

Working at UCF has its perks! In addition to helping drive change and having a positive impact by supporting our students, staff, and faculty, UCF offers:

• Benefit packages, including Medical, Dental, Vision, Life Insurance, Flexible Spending, and Employee Assistance Program

• Paid time off, including annual and sick leave and paid holidays.

• Retirement savings options

• Employee discounts, including tickets to many Orlando attractions.

• Education assistance

• Flexible work environment

• And more…For more benefits information, go to UCF Employee Benefits Guide (12-14-21)

Who Are We?

Founded in 1963 to fuel the region's talent pipeline and support the growing U.S. space program, UCF is built to make a better future for our students and society. It's one of the reasons U.S. News & World Report ranks UCF among the nation's top 20 most innovative colleges, while Forbes, Kiplinger, and The Princeton Review rank us a best-value university. UCF is one of 14 universities nationwide designated as both a Hispanic-Serving Institution and a Research 1 university. With 13 colleges, including a fully accredited College of Medicine, UCF offers more than 220-degree programs between its main campus, downtown campus, hospitality campus, academic health sciences campus, and 11 UCF Connect centers located throughout the region. In addition, UCF extends its reach to communities in and beyond Central Florida by offering complete, online programs leading to bachelor's degrees, master's degrees, Ph.D.'s., certificates, and more.

Unless explicitly stated on the job posting, it is UCF's expectation that an employee of UCF will reside in Florida as of the date the employment begins.

Department

Work Schedule

Type of Appointment

Expected Salary

Equal Employment Opportunity Statement:

As an equal opportunity/affirmative action employer, UCF encourages all qualified applicants to apply, including women, veterans, individuals with disabilities, and members of traditionally underrepresented populations. UCF's Equal Opportunity Statement can be viewed at http://www.oie.ucf.edu/documents/PresidentsStatement.pdf.

As a Florida public university, UCF makes all application materials and selection procedures available to the public upon request.

The University of Central Florida is proud to be a smoke-free campus and an E-Verify employer.