Cybersecurity Analyst

Overview
Georgia Tech prides itself on its technological resources, collaborations, high-quality student body, and its commitment to building an outstanding and diverse community of learning, discovery, and creation. We strongly encourage applicants whose values align with our institutional values, as outlined in our Strategic Plan. These values include academic excellence, diversity of thought and experience, inquiry and innovation, collaboration and community, and ethical behavior and stewardship. Georgia Tech has policies to promote a healthy work-life balance and is aware that attracting faculty may require meeting the needs of two careers.

About Georgia Tech
Georgia Tech is a top-ranked public research university situated in the heart of Atlanta, a diverse and vibrant city with numerous economic and cultural strengths. The Institute serves more than 45,000 students through top-ranked undergraduate, graduate, and executive programs in engineering, computing, science, business, design, and liberal arts. Georgia Tech's faculty attracted more than $1.4 billion in research awards this past year in fields ranging from biomedical technology to artificial intelligence, energy, sustainability, semiconductors, neuroscience, and national security. Georgia Tech ranks among the nation's top 20 universities for research and development spending and No. 1 among institutions without a medical school.

Georgia Tech's Mission and Values
Georgia Tech's mission is to develop leaders who advance technology and improve the human condition. The Institute has nine key values that are foundational to everything we do:
1. Students are our top priority.
2. We strive for excellence.
3. We thrive on diversity.
4. We celebrate collaboration.
5. We champion innovation.
6. We safeguard freedom of inquiry and expression.
7. We nurture the wellbeing of our community.
8. We act ethically.
9. We are responsible stewards.

Over the next decade, Georgia Tech will become an example of inclusive innovation, a leading technological research university of unmatched scale, relentlessly committed to serving the public good; breaking new ground in addressing the biggest local, national, and global challenges and opportunities of our time; making technology broadly accessible; and developing exceptional, principled leaders from all backgrounds ready to produce novel ideas and create solutions with real human impact.

Senior GRC position is dedicated to developing and applying an all-encompassing information protection framework that extends across all university departments. This role emphasizes the establishment of IT and information security policies, standards, guidelines, and baselines to ensure the comprehensive protection of information and systems throughout the university. The individual will actively contribute to the creation and maintenance of a cybersecurity risk management program, designed to align with and enhance the university's overall Enterprise Risk Management strategy and IT Governance goals. This individual is responsible for implementing information assurance and compliance efforts, aimed at identifying, evaluating, documenting, and mitigating information security risks. Additionally, the individual ensures the implementation and adherence to strong and efficient security processes and internal controls, supporting the university's commitment to compliance and the reinforcement of security protocols across the entire institution.

Maintain a continuous state of compliance across multiple frameworks and regularly monitor the effectiveness of the compliance program. Responsible for assessing and ensuring compliance for all campus entities against applicable regulations and standards. Ensure security controls are operating effectively, conduct information security audits and risk assessments, and design risk mitigation plans. This position will interact on a regular basis with: unit management. This position typically will advise and counsel: unit staff and management. This position will supervise: NA

Educational Requirements
Bachelor's Degree or an equivalent combination of education and experience

Required Experience
Four to six years of job related experience

Additional Preferred Qualifications
Certified Information Systems Security Professional or Certified Information Systems Auditor.
Systems Security Certified Practitioner (SSCP). Rotating shift duty may be required.

Preferred Educational Qualifications
Bachelor's Degree in Business or Technical field

Compliance and Regulatory Support: Assist in the development, implementation, and monitoring of GRC policies, procedures, and programs. This may involve supporting risk assessments, compliance audits, and information security initiatives.

GRC Process Development and Enhancement: Collaborate in the creation and refinement of GRC policies, procedures, and programs. This includes participating actively in the development of risk management strategies and compliance frameworks.

Risk Assessment and Management: Lead risk assessment initiatives within assigned areas, identifying potential risks to the university's operations and reputation. Develop and recommend risk mitigation measures, monitoring their implementation and effectiveness.

Compliance Oversight: Manage specific compliance projects, ensuring the university adheres to applicable laws, regulations, and standards. Conduct compliance audits, prepare reports, and advise on necessary actions to maintain compliance.

Training and Awareness: Deliver GRC training sessions for university staff and faculty to foster a culture of risk awareness and compliance. Develop educational materials and communications related to GRC topics.

Incident Management: Participate in the handling and resolution of GRC-related incidents, including conducting investigations, documenting findings, and recommending corrective actions to prevent recurrence.

Intermediate to strong understanding of GRC principles, risk assessment techniques, compliance requirements, and information security practices. Strong analytical and problem-solving skills are important.

Strong communication and interpersonal skills, with the ability to work effectively as part of a team and interact with various stakeholders within the university.

Strong analytical skills with an ability to identify risks and develop effective solutions. Adept at managing complex projects and navigating challenging situations.

The budget for this position $98,000

SKILLS
This job requires proficient skills in office related computer applications.

The University System of Georgia is comprised of our 26 institutions of higher education and learning as well as the System Office. Our USG Statement of Core Values are Integrity, Excellence, Accountability, and Respect. These values serve as the foundation for all that we do as an organization, and each USG community member is responsible for demonstrating and upholding these standards. More details on the USG Statement of Core Values and Code of Conduct are available in USG Board Policy 8.2.18.1.2 and can be found on-line at https://www.usg.edu/policymanual/section8/C224/#p8.2.18_personnel_conduct.

Additionally, USG supports Freedom of Expression as stated in Board Policy 6.5 Freedom of Expression and Academic Freedom found on-line at https://www.usg.edu/policymanual/section6/C2653.

The Georgia Institute of Technology (Georgia Tech) is an Equal Employment Opportunity Employer. The University is committed to maintaining a fair and respectful environment for all. To that end, and in accordance with federal and state law, Board of Regents policy, and University policy, Georgia Tech provides equal opportunity to all faculty, staff, students, and all other members of the Georgia Tech community, including applicants for admission and/or employment, contractors, volunteers, and participants in institutional programs, activities, or services. Georgia Tech complies with all applicable laws and regulations governing equal opportunity in the workplace and in educational activities.

Georgia Tech prohibits discrimination, including discriminatory harassment, on the basis of race, ethnicity, ancestry, color, religion, sex (including pregnancy), sexual orientation, gender identity, gender expression, national origin, age, disability, genetics, or veteran status in its programs, activities, employment, and admissions. This prohibition applies to faculty, staff, students, and all other members of the Georgia Tech community, including affiliates, invitees, and guests. Further, Georgia Tech prohibits citizenship status, immigration status, and national origin discrimination in hiring, firing, and recruitment, except where such restrictions are required in order to comply with law, regulation, executive order, or Attorney General directive, or where they are required by Federal, State, or local government contract.

More information on these policies can be found here: https://www.usg.edu/policymanual/section6/c2714 Board of Regents Policy Manual | University System of Georgia (usg.edu).

This is not a supervisory position.
This position does not have any financial responsibilities.
This position will not be required to drive.
This role is not considered a position of trust.
This position does not require a purchasing card (P-Card).
This position will not travel
This position does not require security clearance.

This position may require the candidate of choice to come into the office/campus. For remote, Telework, or Hybrid requests, employees must submit a request and receive approval from their manager, department head, and GT Human Resources. Travel is not an expense at GT / department expense.

Successful candidate must be able to pass a background check. Please visit http://policylibrary.gatech.edu/employment/pre-employment-screening