University of Texas
* Establishes and enforces security policies, standards, and procedures aligned with regulatory mandates.* Monitors adherence to HIPAA, FERPA, PCI DSS, GDPR, ISO 27001, and NIST frameworks.* Manages risk registers, evaluates control effectiveness, and leads remediation planning for high-risk findings.* Oversees internal and external audits; prepares compliance reports, attestations, and evidence.* Conducts third‑party and vendor security assessments to ensure compliance with organizational standards and regulatory requirements.* Guides analysts on advanced techniques, tools, and best practices.* Reviews casework and provides constructive feedback to improve quality.* Develops training materials and assists on tabletop exercises; promotes knowledge sharing within the team.* Supports enterprise-wide security awareness initiatives and outreach.* Contributes content for campaigns, briefings, and learning sessions.* Helps cultivate a risk-aware environment through education and engagement.* Helps with updates to disaster recovery and incident response plans.* Represents the organization during cybersecurity audits and external assessments.* Participates in professional development, advanced training, and conferences.* Adheres to internal controls and reporting structure.* Performs related duties as required.* Uses rigorous logic and data to solve difficult problems; probes for root causes; blends analysis, experience, and judgment to craft practical solutions.* Diagnoses root causes of security issues across programs using correlated telemetry and evidence.* Frames hypotheses, tests alternatives, and selects mitigations that reduce risk while sustaining operations.* Documents decision paths and lessons learned; folds improvements into playbooks and standard work.* Designs and manages processes that are clear, efficient, and scalable; defines roles, handoffs, metrics, and continuous improvement mechanisms.* Builds governance, procedures, and runbooks for cybersecurity programs.* Automates repetitive tasks and tracks KPIs to improve efficiency and outcomes.* Conducts program reviews and integrates improvements into tooling and processes.* Possesses and applies technical knowledge to perform effectively; keeps skills current and applies them to solve real problems.* Applies expert knowledge of operating systems, network protocols, SIEM/SOAR platforms, and vulnerability tools.* Uses threat intelligence to enhance detections and strengthen preventive controls.* Aligns control designs with frameworks (NIST CSF, NIST 800‑53, HITRUST).* Focuses time and resources on the most critical tasks; quickly senses what will help or hinder goal achievement; removes roadblocks and creates focus.* Triages alerts and cases to direct resources to high-impact events and initiatives.* Balances strategic improvements with urgent operational demands.* Communicates trade-offs and timelines to stakeholders.* Provides feedback and coaching; helps others learn and grow; creates opportunities for skill development and ready-now capability.* Coaches junior analysts on tooling, decision criteria, and investigative methods.* Creates training materials and standard work to accelerate readiness.* Encourages knowledge sharing through tabletop exercises and debriefs.* Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.* 5 years of proven experience developing security incident response programs, and associated tooling.* Demonstrated expertise in security incident detection, investigation, and response.* Demonstrated knowledge of network protocols, operating systems, SIEM tools, and ITIL processes.* Experience with compliance frameworks including NIST CSF, NIST 800-53, and HITRUST.* Relevant education and experience may be substituted as appropriate.* Master’s degree in Cybersecurity or a related field.* 8 years of experience with network scanning, cloud security, Risk Management Frameworks (RMF), threat intelligence programs, vulnerability management programs, and security orchestration, automation, and response (SOAR) platforms.* 4 years of experience in a healthcare environment with demonstrated knowledge of healthcare mission, HIPAA regulations, and medical device security considerations.* Experience with ServiceNow Security Operations and Security Incident Response modules or similar ITSM platforms.**Start Here, Change the World**At The University of Texas at Austin, tradition meets innovation in the heart of a city that frequents lists of the best places to live and work. Named by Forbes as one of America's Best Large Employers for the sixth year in a row in 2025, UT offers both a dynamic work environment and a gateway to vibrant local culture. Whether you're at the forefront of the student experience, conducting world-changing research or supporting the engine that drives Texas’ flagship university, working at UT means making a lasting impact on our city, our state and our world.Our more than 20,000 faculty and staff empower 55,000+ students to challenge ideas, pursue passions and shape their futures. Joining UT, you’ll become part of a community dedicated to making a meaningful impact on campus and throughout the world.Please see our .**Comments and Inquiries:**Email comments to hrsc@austin.utexas.edu. For questions or concerns regarding equal opportunity only, contact .Additional information for applicants can be found on the Human Resources web page: .
For more job information, call the Human Resource Service Center at (512) 471-4772, or toll-free at (800) 687-4178. #J-18808-Ljbffr
For more job information, call the Human Resource Service Center at (512) 471-4772, or toll-free at (800) 687-4178. #J-18808-Ljbffr