CITES | University of Illinois

Information Standards and Compliance Analyst: Regular, Senior, and Lead Levels

CITES has an opening for one Information Standards and Compliance Analyst position at one of three different levels who is responsible for the creation, maintenance of campus IT security standards and provide consultation on their implementation.

Campus Information Technologies and Educational Services (CITES) is the provider of campus-wide computing, networking, communications technology, and instructional technology services supporting academic activities of faculty, staff, and students at the University of Illinois at Urbana-Champaign. Our mission is to a strong, agile, and customer needs-oriented organization by providing cost-effective, value-added IT services and solutions.

CITES has an opening for one Information Standards and Compliance Analyst position at one of three different levels who is responsible for the creation, maintenance of campus IT security standards and provide consultation on their implementation. Additional duties and responsibilities at the Senior and Lead levels significantly increase in scope, complexity, and authority to manage the campus IT Risk, Compliance, Standards, and Privacy programs.

Job Duties and Responsibilities

  • Researches and writes information security and privacy standards and guidelines.  During the production process, the ISCA leads focus groups to collaborate with constituent groups regarding the content of standards. 
  • Assist the Security Office in performing risk assessments, and effective identification, assignment, and tracking of university statutory and other obligations across the gamut of administrative and academic areas and the development of policies and standards to meet them.
  • Performs risk assessments. 
  • Periodically reviews standards and guidelines to ensure currency and accuracy in relation to the computing environment. 
  • Management of publicity efforts for new and revised standards and guidelines, including collaboration with Outreach specialists in the production of supporting documentation for standards and guidelines, as well as the integration of standards and guidelines into outreach activities.
  • Serves as a member of the campus Institutional Review Board representing security and privacy concerns.
  • Effective identification, assignment, and tracking of university statutory and other obligations across the gamut of administrative and academic areas and the development of policies and standards to meet them. Particularly in the area of security and privacy.
  • Applies a professional understanding of security and privacy practices, standards, and policies to projects and programs. Represents the security office without immediate supervision in collaborative initiatives.
  • Research and implement compliance strategies and specific solutions.
  • Evaluates existing compliance tools. 
  • Collaborates with appropriate developers in the production of custom compliance tools. 
  • Collaborates with the Institutional Review Board to ensure compliance with appropriate security requirements in human research studies.
  • Recognizes and responds independently to problems or potential situations without prompting.
  • Develops tools for measuring compliance with standards and policies.
  • Ensure excellent Customer Service throughout the Security Office.
  • Partners with the CITES Service Desk by setting and managing the expectations of customers; acts as an advocate for CITES clients in service planning and deployment across the organization; and resolves customer satisfaction issues.

Qualifications for Information Standards and Compliance Analyst

  • Bachelor degree, preferably in a related field
  • Demonstrated ability to maintain high security/privacy controls when dealing with sensitive information
  • Demonstrated ability in effective communication and collaborating in a high performance team environment
  • Demonstrated commitment to customer service
  • Experience in participating in diverse workgroups

Qualifications for Senior Information Standards and Compliance Analyst

  • Bachelor degree, preferably in a related field
  • Minimum of 1 years’ experience in IT security, auditing, or policy development
  • Minimum of 1 years’ experience working in at least one of the following domains: IT standards, IT policy, or IT regulatory compliance.
  • Demonstrated ability to maintain high security/privacy controls when dealing with sensitive information
  • Demonstrated ability in effective communication and collaborating in a high performance team environment
  • Demonstrated commitment to customer service
  • Experience in participating in diverse workgroups

Qualifications for Lead Information Standards and Compliance Analyst

  • Bachelor degree, preferably in a related field
  • Minimum of 3 years’ experience in IT security, auditing, or policy development
  • Minimum of 2 years’ experience working in at least one of the following domains: IT standards, IT policy, or IT regulatory compliance.
  • Demonstrated ability to maintain high security/privacy controls when dealing with sensitive information
  • Demonstrated ability in effective communication and collaborating in a high performance team environment
  • Demonstrated commitment to customer service
  • Experience in participating in diverse workgroups

Preferred Requirements for ALL Levels

  • Experience addressing compliance in a PCI or HIPAA environment
  • Familiarity with Illinois and Federal Privacy regulations
  • Juris Doctorate (JD)
  • Technical skill: scripting (perl, python), SQL

Training and Education for ALL Levels

  • Holds the CISSP,  GIAC (G7799) or equivalent (preferred)

Knowledge Requirement for ALL Levels

  • Has a professional understanding of information security frameworks such as ISO27002 and related requirements, applicable laws and regulations, organizational policies, and the information security compliance evaluation process (i.e., initial risk assessment, mitigation recommendations, controls, and applicable security compliance)

Appointment Status and Salary

This is a full-time, twelve-month academic professional appointment and include salary and a benefits package (24 vacation days; health, dental, vision; SURS retirement).   Salary is competitive and commensurate with qualifications and experience.  The starting date will be some time after the closing date.  There will be no relocation costs included in this package.  Applicants should have a current, valid legal authorization to work in the United States.

To Apply

For full consideration, applications should be received by May 3, 2013. Please create a candidate profile at https://jobs.illinois.edu and upload a combined package of materials as a single PDF file (letter of application, resume, and the names/contact information of three professional references).  The online application will require the names and contact information for the three professional references.  Employment will require three letters of recommendation and a criminal background check for the finalists.  For further information about this position, please contact Rhonda Miller at cites-hroffice@mx.uillinois.edu or call (217) 333-4222.

Illinois is an Affirmative Action/Equal Opportunity Employer who welcomes individuals with diverse backgrounds, experiences, and ideas who embrace and value diversity and inclusivity. (www.inclusiveillinois.illinois.edu).

Last updated Wednesday, April 17, 2013, 12:13 pm