Employment Status: Full-Time, probationary "exempt" position with the possibility of converting to permanent.
Work Schedule: Generally, Monday through Friday, 8:00 am to 5:00 pm (Some tasks may require after hours or weekend scheduling).
First Review Deadline: The initial review of applications will begin on December 3, 2019.
Under general supervision of the Chief Data Officer and Associate Vice President for Institutional Research & Analytics, Digital Transformation and Office of Compliance Initiatives, the incumbent will perform tasks involving the use of judgment and discretion. The incumbent will be responsible for:
Support, monitor and document adherence to federal and state regulatory requirements and system wide and campus policies on information security related protocols and procedures.
Provide necessary information security and compliance documentation to auditors upon request.
Validate and facilitate processes to ensure users meet university requirements and proper authorizations prior to granting access to campus administrative environments, including, but not limited to; PeopleSoft, CoyoteReady, BlackBoard Connect.
Work closely with Documentation Training Specialist and campus Subject Matter Experts (SME) Security Administrators to grant end user (i.e. Staff, faculty, student and auxiliary employees) access to administrative systems.
Provide support to the Office of Compliance Initiatives, specifically in activities relating to access controls, compliance, and business continuity and information security awareness.
Provide support to the university and work closely with all of the departments in the Information Technology Services division.
Assist departments in documenting procedures in compliance with CSUSB Information Security Standards.
Provide support as necessary for monitoring the Information Security Compliance Program on campus.
Assist with the development, implementation, maintenance and evaluation of a business continuity framework for Information Technology Services business units that identify departmental key responsibilities, functions and assets essential to operational continuity.
Work closely with all Information Technology Services departments to develop, maintain and test business continuity plans.
Provide access to the campus continuity tool for maintaining business continuity plans as well as generate reports as needed.
Develop and provide security awareness materials for end users; coordinate and communicate campus information security awareness and training activities. This may include emails, digital ads, creating content for knowledge base and website and working with the information security club.
Education and Experience:
A bachelor's degree or its equivalent in a closely related field.
Minimum 3 years of experience in an institute for higher education.
Knowledge, Skills & Abilities:
Excellent diplomatic skills to work cooperatively with a diverse group of people.
Applicants must have strong oral and written communication skills along with excellent organizational skills.
Working knowledge of policies, procedures and regulations associated with security administration.
Ability to handle effectively a broader range of interpersonal contacts, including those at a higher level and those of sensitive nature is required along with the ability to work cooperatively with a diverse group of people.
Expertise in investigating and analyzing problems with a broad administrative impact.
Proficient in utilizing MS Office, HCM PeopleSoft, OnBase and/or other related software and data base applications.
Ability to take initiative and independently plan, organize, coordinate, and perform work in various capacities.
Ability to understand problems from a broad interactive perspective and discern applicable underlying principles to conceive and develop strategic solutions.
Ability to effectively present ideas and concepts in written or presentation format and use consultative and facilitation skills to gain consensus.
Familiar with Information Security frameworks such as NIST and ISO 27001.
Familiar with the roles concept in the granting of end user access.
Knowledge of CSU and CSUSB information security policies and standards and experience working with the interpretation of these policies and standards is preferred, but not required.
Understanding of information security controls and audit principles.
Basic knowledge on business continuity.
Experience in information security awareness activities.
Ability to independently handle multiple projects and being able to manage priorities and projects is required.
Ability to establish and maintain effective working relationships with students, faculty, and staff from a diverse ethnic, age, and programmatic backgrounds and to work effectively in a highly consultative and collaborative environment.
Excellent presentation and public speaking skills.
Experience working within the Office of Compliance Initiatives.
Ability to meet deadlines and juggle multiple projects.
Experience in developing forms and data gathering tools.
A background check (including a criminal records check) must be completed satisfactorily before any candidate can be offered a position with the CSU. Failure to satisfactorily complete the background check may affect the application status of applicants or continued employment of current CSU employees who apply for the position.
The person holding this position is considered a `mandated reporter' under the California Child Abuse and Neglect Reporting Act and is required to comply with the requirements set forth in CSU Executive Order 1083 as a condition of employment.
California State University, San Bernardino is an Affirmative Action/Equal Opportunity Employer. We consider qualified applicants for employment without regard to race, religion, color, national origin, ancestry, age, sex, gender, gender identity, gender expression, sexual orientation, genetic information, medical condition, disability, marital status, or protected veteran status.
This position may be "Designated" under California State University's Conflict of Interest Code. This would require the filing of a Statement of Economic Interest on an annual basis and the completion of training within 6 months of assuming office and every 2 years thereafter. Visit the Human Resources Conflict of Interest webpage link for additional information: http://hrd.csusb.edu/conflictInterest.html
This position adheres to CSU policies against Sex Discrimination, Sexual Harassment, and Sexual Violence, including Domestic Violence, Dating Violence, and Stalking. This requires completion of Sexual Violence Prevention Training within 6 months of assuming employment and on a two-year basis thereafter. (Executive Order 1096)
Closing Date/Time: Open until filled