This job’s role is to ensure the secure operation of in-house and cloud computer systems, servers, and network connections in accordance with Ethnos360 internal processes, procedures, and compliance requirements.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
- Works to establish and enforce organizational standards related to the organization’s security and compliance of IT resources.
- Researches, writes, and communicates internal security policies and guidelines to keep Ethnos360 departments and centers aware of all security and compliance requirements.
- Works closely with IT staff on specific projects and tasks that relate to security and compliance.
- Stays up to date with IT security and compliance best practices by attending classes, reading publications, joining professional peer groups, etc.
- Performs internal reviews to ensure that all current and new/updated policies and procedures adhere to best practices related to security and compliance.
- Performs or works with 3rd party audit groups to produce risk and technical vulnerability assessments, data classification, attack and penetration analysis, policy compliance and communication with internal teams.
- Actively participates in daily coordination and remediation of all security incidents in the organization.
- Conducts assessment of the security of new applications and programs prior to installation, upgrade, or widespread use within the organization.