Responsible for Governance, Risk and Compliance (GRC) function within the Information Security Office and reporting directly to the Director and Chief Information Security Officer (CISO), the Information Security Manager for GRC will be responsible for the design and implementation, management of UT Arlington's GRC program. Plan and develop enterprise-wide information risk assessments. Collaborate, on behalf of the CISO, with key business and IT leaders to ensure information security compliance, develop security policies, procedures, standards, best practices and action plans. Act as an advocate for information security and business continuity best practices. In co-ordination with the CISO, consult senior IT and business leaders regarding their information security risks and responsibility in accepting or to control those risks. Must maintain reliable, up- to-date, information from the federal and local government and across the industry regarding identification of new threats and vulnerabilities. Develop metrics and produce status reports as required by regulation or the CISO.
1) Governance, Risk and Compliance (GRC) – Lead initiatives to create and effectively manage GRC associated risk management strategies that utilize well-established frameworks such as those developed by NIST. Develop processes, standards and training related to information security risk assessment and management across the UT Arlington. Ensure that institutional risk assessments are completed; coordinate efforts to adopt common definitions, naming conventions, and other practices to ensure effective interpretation of risk assessment results. Develop standardized risk assessment reports that include risk mitigation strategies that can be easily understood by executive management. Lead due-diligence risk reviews of third parties. Implement or make effective use of GRC software. Lead in managing regulatory compliance requirements. Example: PCI, GLBA, DMCA, FERPA, TAC 202, NIST 800-171, etc. Establish a reporting process to ensure that management is kept appraised of the effectiveness of information technology security and problem resolution. Prepare periodic reports for the President, Executive Management, UT System and Texas DIR.
2) Information Security Awareness Training and Communication: Assist with the development and presentation of information security awareness and security training within the various academic and administrative departments, and to the campus at large. Ensure that timely information security related alerts are disseminated in a timely manner. Provide leadership and coordination of the Information Security Administrator Program. Collaborate with centralized and decentralized IT stakeholders to promote improved information security practices and compliance. Ensure that information security related alerts are disseminated in a timely manner.
3) Other duties as assigned
Bachelor of Science in related field such as Computer Science, Management Information Systems, Information Science and Security, or related field. Bachelor degree in an unrelated field is acceptable with demonstrated information security knowledge and experience.
A minimum of 3 years of progressively responsible and demonstrated information technology or information security work experience, including experience in designing, implementing, auditing and/or managing information resources, information security, or risk management projects, operations, and/or programs. Demonstrated experience with developing and maintaining information security policies. Extensive knowledge of and experience in information security and risk management.
Practical experience with implementing risk frameworks, e.g. NIST 800 series, ISO 20001 , CIS Top 20
Must have excellent interpersonal, verbal and written communication skills. Successful experience working, collaborating and establishing credibility and relationships with senior leadership, colleagues and customers. Ability to translate technical language to common language for non-technical users. Technical experience in network administration, system administration, application development, database administration, and/or data center operations.
Master’s degree in information technology or related field.
Advanced information security certificates in one or more of the following: CISSP, GIAC/GSEC, CISA, CISM, GRISC, CGEIT, etc.
Experience in the implementation of GRC strategies. Solid knowledge regarding risk management practices and GRC concepts and automation tools.
Knowledgeable about information security risk management practices.
Experience in higher education. Experience in Texas State government.
Ability to devise strategies, organize work, coordinate work of collaborative groups, and oversee technical projects and staffs to achieve effective cost efficient solutions.
Demonstrated experience with developing and providing an information security awareness and training program.
Experience in assessing, managing as well as in negotiating vendor contracts and agreements with end users, service providers and regulatory agencies.
Ability to deal efficiently and effectively with a wide range of vendors.
Applicants must include in their online resume the following information: 1)Employment history: name of company, period employed (from month/year to month/year), job title, summary of job duties and 2) Education: school name, degree type, major.
UTA is an Equal Opportunity/Affirmative Action institution. Minorities, women, veterans and persons with disabilities are encouraged to apply. Additionally, the University prohibits discrimination in employment on the basis of sexual orientation. A criminal background check will be conducted on finalists. The UTA is a tobacco free campus.
The University of Texas at Arlington sets the standard for educational excellence in the thriving Dallas-Fort Worth metropolitan area and is one of the nation’s fastest-growing public research universities. With an enrollment of 38,000 on-campus students and an additional 15,000 online degree-seeking students, UTA is the second-largest institution in The University of Texas System. The University ...offers more than 180 bachelor’s, master’s, and doctoral degrees through 10 colleges and schools and is rising in stature through its commitment to transforming the lives of students, pushing the boundaries of knowledge, and serving a growing and diverse community.
UTA has developed a strategic plan, “Bold Solutions, Global Impact” (http://www.uta.edu/strategicplan). Taking advantage of our unique location at the center of the fastest growing urban region in the U.S. and adjacency to the Dallas-Fort Worth International Airport, our vision is to be ‘The Model 21st Century Urban Research University’. To support this vision, our strategic plan focuses on four over-arching themes across the University: Health and the Human Condition, Sustainable Urban Communities, Global Environmental Impact, Data Driven Discovery and Knowledge Management. The College of Engineering is playing a critical role in the advancement of each of these themes.
Our highly ranked academic programs attract the best and brightest scholars from around the world, and our faculty and students consistently receive national and international recognition for their accomplishments. U.S. News & World Report ranks UT Arlington fifth among national universities for undergraduate diversity, we are a designated Hispanic Serving Institution, and the Military Times recently named UTA as the best 4-year College for veterans in the state of Texas. The Chronicle of Higher Education ranks UT Arlington among the 20 fastest-growing public research universities in the United States over the last 10 years.
With a population of 7 million, the Dallas-Fort Worth Metroplex is the fourth-largest urban area in the United States. It covers an area larger than the states of Rhode Island and Connecticut combined. The Metroplex is the economic and cultural hub of North Texas and has the 10th-largest gross metropolitan product in the world. Not only is it an exciting place to live and work, the Metroplex offers UT Arlington a host of unparalleled scholarly, research, and economic activity.
UTA has been a catalyst for redevelopment and revitalization in the central business district of Arlington, establishing a true college town environment in downtown Arlington. UTA’s 20-acre, mixed-use College Park District provides new special events and student living space, restaurants, and parking as part of its broad-based initiative to generate and support economic activity at the city’s urban center. In addition, the University is expanding its footprint in both Fort Worth and Dallas and has plans to increase its global presence building on active partnerships led by the College of Business and the College of Nursing and Health Innovation in Central and South America, South East Asia and the Middle East.
For more information on University of Texas at Arlington, visit: www.uta.edu