DUTIES AND RESPONSIBILITIES: This position serves as the Chief Security Officer by developing, implementing, and managing the Universityâs IT Security Program and to ensure compliance with VITA IT Security Standards, federal mandates, guidelines, and adopted industry best practices. Developing overall enterprise strategic and tactical approaches for information security, user privacy, and associated architectures. Design and coordinate the implementation of a comprehensive security awareness training program for the University faculty, staff, students, contractors, and IT service providers. Properly utilizes evaluated system/network privileges in the performance of information security monitoring, auditing, and testing. This position conducts risk assessments and ongoing security reviews for core IT systems and environments. In cooperation with appropriate IT staff and other University personnel, identify and classify critical information assets, assess threats and vulnerabilities related to those assets, and implement safeguard recommendations. Implement and maintain the appropriate balance of protective, detective, and corrective controls for the Universityâs IT systems commensurate with data sensitivity, risk, and system criticality. Verify and validate that all University IT systems and data are classified for sensitivity. Review Intruder Detection Systems (IDS), database logs and system logs from servers and workstations for security issues. Ensure that weekly IT Vulnerability and Assessment reports are assessed, reviewed, tested on IT systems to ensure that the systems are properly patched. Establish and maintain patch management databases from US-CERT and Center for Internet Services (CIS). Determine gaps and program inefficiencies and make recommendations for information technology that can close gaps and/or improve the program. This position serves as a primary author and editor of security-related compliance and audit documents and reports. Drafts and coordinates the relevant approval process for security-related polices, standards, guidelines, and procedures. Serves as the institutionâs chief liaison with state government oversight entities. Works with outside consultant as appropriate for independent security audits. Serves as a technical lead for e-Discovery, Copyright Infringement, Freedom of Information Act requests, and other matters that could result in litigation or violations. Participates in the IT Continuity Planning activities and in the review, monitoring, and assessments of Risk Assessments, Business Impact analysis, Business Continuity, and Disaster Recovery Reports. Assists in duties assigned by the Chief of Staff and serves as a liaison to Police and Public Safety.
Internal Number: 95102
About Virginia State University
Building a Better World Since 1882 Virginia State University, founded in 1882, is one of Virginia's two land-grant institutions, and is located 20 minutes south of Richmond in the village of Ettrick. With a current student population of approximately 4,600, the University sits atop a rolling landscape overlooking the Appomattox River with expansive views of Petersburg. Our 231-acre campus boasts 11 residence halls, 18 academic buildings and a 412-acre agriculture research facility.
At VSU, we are proudly committed to providing a transformative experience for our students, strategically investing in our academic programs, embracing our position as a top land-grant university, embracing our role as Virginia’s Opportunity University, and partnering together as a University to tell our story.