The Information Security Specialist assists with the coordination of information security activities and collaborates among divisions within the University to ensure that information systems are implemented in accordance with a) the mission of UNC-Chapel Hill, b) information security best practices and c) University Policy and Federal and State laws and regulations. This position primarily focuses on incident handling and forensic analysis. Primary duties will include: â?¢ Managing incident response in keeping with existing policies, protocols and procedures â?¢ Conducting digital forensics examinations utilizing a variety of tools â?¢ Assessing and reporting on the nature and scope of compromises Additional duties will include: â?¢ Supporting information security compliance efforts â?¢ Processing security-related help tickets via the Remedy â??Request for Serviceâ?? application change control â?¢ Consuming, distributing and producing security research â?¢ Performing risk analysis â?¢ Performing vulnerability testing â?¢ Auditing â?¢ Conducting information security systems analysis â?¢ Functioning as a member of the information security team on security projects The position requires participation in the 24/7 on-call rotation and other team-shared duties such as business hours telephone coverage. This position calls for a high level of integrity, good judgment, knowledge concerning issues of privacy and confidentiality, excellent oral and written communication skills, ability to work as an independent, productive, responsible, self-motivated member of a team in high pressure situations while maintaining a calm, customer-friendly perspective.
Bachelor’s degree in Computer Science, Computer Engineering or an Information Security degree or closely related field from an appropriately accredited institution; or Bachelor’s degree from an appropriately accredited institution and one year of experience in IT Security or closely related area; or an Associate’s degree in Information Systems Security from an appropriately accredited institution and two years of experience in IT Security or closely related area; or an equivalent combination of education and experience.
American Recovery & Reinvestment Act Funded: