IT Security Specialist

A global higher education leader in innovative teaching, research and public service, the University of North Carolina at Chapel Hill consistently ranks as one of the nation's top public universities. Known for its beautiful campus, world-class medical care, commitment to the arts and top athletic programs, Carolina is an ideal place to teach, work and learn.

One of the best college towns and best places to live in the United States, Chapel Hill has diverse social, cultural, recreation and professional opportunities that span the campus and community.

University employees can choose from a wide range of professional training opportunities for career growth, skill development and lifelong learning and enjoy exclusive perks for numerous retail, restaurant and performing arts discounts, savings on local child care centers and special rates on select campus events. UNC-Chapel Hill offers full-time employees a comprehensive benefits package, paid leave, and a variety of health, life and retirement plans and additional programs that support a healthy work/life balance.

The UNC School of Medicine has a rich tradition of excellence and care. Our mission is to improve the health and wellbeing of North Carolinians, and others whom we serve. We accomplish this by providing leadership and excellence in the interrelated areas of patient care, education, and research. We strive to promote faculty, staff, and learner development in a diverse, respectful environment where our colleagues demonstrate professionalism, enhance learning, and create personal and professional sustainability. We optimize our partnership with the UNC Health System through close collaboration and commitment to service.
OUR VISION
Our vision is to be the nation's leading public school of medicine. We are ranked 2nd in primary care education among all US schools of medicine and 5th among public peers in NIH research funding. Our Allied Health Department is home to five top-ranked divisions, and we are home to 18 top-ranked clinical and basic science departments in NIH research funding.
OUR MISSION
Our mission is to improve the health and well-being of North Carolinians and others whom we serve. We accomplish this by providing leadership and excellence in the interrelated areas of patient care, education, and research.
Patient Care: We will promote health and provide superb clinical care while maintaining our strong tradition of reaching underserved populations and reducing health disparities across North Carolina and beyond.
Education: We will prepare tomorrow's health care professionals and biomedical researchers by facilitating learning within innovative curricula and team-oriented interprofessional education. We will cultivate outstanding teaching and research faculty, and we will recruit outstanding students and trainees from highly diverse backgrounds to create a socially responsible, highly skilled workforce.
Research: We will develop and support a rich array of outstanding health sciences research programs, centers, and resources. We will provide infrastructure and opportunities for collaboration among disciplines throughout and beyond our University to support outstanding research. We will foster programs in the areas of basic, translational, mechanistic, and population research.

The IT Security Specialist will be responsible for triaging and responding to various IT security incidents to include log analysis, forensic analysis, interviewing, and reporting utilizing industry standard practices. This position is also required to conduct IT security assessments and audits for the UNC School of Medicine. This will involve assessing information systems security to ensure all school policies and regulatory compliance requirements are met, providing guidance and risk mitigation strategies, and communicating risk assessment findings. Information security operations responsibilities include troubleshooting and resolving information security related incident handling and response, researching and evaluating new and updated security technologies, and providing security consultation services to clients and staff.

Flexible work arrangements, including remote/hybrid work locations, are an integral part of the School of Medicine's Working Forward initiative. As such, this position's work location is designated as hybrid. Please note that the designated work location is subject to change based on the unit's business needs.

Master's and 1-2 years' experience; or Bachelors and 2-4 years' experience; or will accept a combination of related education and experience in substitution.

Demonstrated information security experience in various areas such as
- governance/risk/compliance
- digital forensics/incident response
- information security operations
- information security awareness
* Excellent communication skills
* Excellent interpersonal skills and proven ability to establish and maintain positive working relationships with colleagues and customers
* Strong organizational skills, time management and reliability

* Three to four years of progressive experience in the field of Information Technology Security
* Information security experience in a higher education, medical campus, and/or healthcare setting.
* Information security training and/or certification (i.e. CISSP, CISM, vendor-specific certifications).

- Experience in information security, IT risk management, IT auditing or related field
- Experience with incident handling, forensic analysis and tools, incident response industry standard methods
- Experience with SIEM tools
- Experience with Endpoint Detection and Response ( EDR), device encryption, and Anti-virus tools (AV)
- Experience within a Security Operations Center ( SOC)
- Experience with vulnerability management systems and programs

Must be able to lift or move objects weighing up to 40 lbs. with or without reasonable accommodations.

The University of North Carolina at Chapel Hill is an equal opportunity and affirmative action employer. All qualified applicants will receive consideration for employment without regard to age, color, disability, gender, gender expression, gender identity, genetic information, national origin, race, religion, sex, sexual orientation, or status as a protected veteran.