This is a second-level security and compliance position accountable for performing a wide range of security procedures and processes necessary to ensure the safety of information systems and assets, and protecting systems and data from intentional or inadvertent access or destruction. An employee in this position ensures that users understand and adhere to the necessary procedures and processes to maintain security. Conducts and supports audits for regulatory and standards compliance. Provides input into the development of security policies. Participates in the preparation of disaster recovery plans. Designs and delivers security compliance training. Conducts IT data and security forensic investigations. Provides advice to management on balance between business needs and data security. Provides moderately complex technical support in relevant field of discipline. May serve as project lead and/or provides technical direction to lower level team members.
In addition to those identified in the previous level: Knowledge of IT forensic concepts, domain structures, user authentication, and digital signatures. Knowledge of intrusion detection methods and techniques, and internet architecture. Ability to think methodically and critically. Ability to recognize security intrusions and take appropriate action. Ability to research and identify causes of security breaches.
Bachelor’s degree and 3-7 years of IT experience with emphasis in security and compliance. (Substitutions may be allowed.)