Information Security Awareness Program Administrator

Posting Details

Do you have questions about the application process? If so, please refer to the Applicant FAQ's.

Posting Details (Default Section)

Posting Number:

20244015S

Position Title:

Information Security Awareness Program Administrator

Position Type:

Staff

Location:

Villanova, PA

Recruitment Type:

Internal/External Applicants

Work Schedule:

full-time/12-months

Avg Hours Week

Department:

843-UNIT - Information Security

Position Summary:

The Information Security Awareness Program Administrator is an ambassador to enhance the information security culture of Villanova through meaningful security awareness education programs and outreach. The overall goal of the security awareness and education program is to reduce information security risk by ensuring that all students, faculty, and staff understand campus security policies and apply university information security practices with respect to institutional data and information technology systems. In collaboration with other members of the information security department, this position will manage a broad set of activities. Key responsibilities include drafting communications and publications, creating and managing website content, facilitating marketing and social media campaigns, reporting training compliance metrics, and helping to plan outreach, awareness, and educational events with the launch of new security initiatives. The Information Security Awareness Administrator will also be responsible for evaluating the effectiveness of techniques, communication channels, and resources as appropriate.

Villanova is a Catholic university sponsored by the Augustinian Order. Diversity and inclusion have been and will continue to be an integral component of Villanova University's mission. The University is an Equal Opportunity/Affirmative Action employer and seeks candidates who understand, respect and can contribute to the University's mission and values.

Duties and Responsibilities:

Training and Evaluation:

Prepare and deliver information security training, education, and awareness activities appropriate for campus audiences

Ensure that training materials are regularly updated with the latest security policies and best practices.

Tailor information security training, education, and awareness programs to policy and compliance objectives (e.g., HIPAA, FERPA, PCI)

Collaborate with department heads to identify specific training needs and requirements.

Evaluate the effectiveness of security awareness programs using metrics and feedback mechanisms.

Generate reports on training compliance and awareness levels for senior management and stakeholders.

Utilize data-driven insights to continuously enhance security awareness initiatives. Communication:

Craft clear, concise, and compelling communications to effectively convey security messages to diverse audiences.

Develop and maintain regular communication channels to keep the university community informed about security-related matters.

Collaborate with marketing and communications teams to ensure consistent messaging and branding. Content Management and Documentation:

Draft publications and create website content to communicate security policies and practices effectively.

Manage the online repository of security resources to ensure accessibility and usability for all members of the university community.

Create policy and process documentation related to information security training, education, and awareness programs as needed Relationship Building:

Build and maintain strong relationships across departments to promote security awareness.

Act as a liaison between the information security team and other departments to facilitate communication and collaboration. Other Duties as Assigned:

Perform other duties and assist with projects as assigned.

Assist with communication efforts across the broader unit as needed. Minimum Qualifications:

Formal Education

Bachelor's degree Work Experience

4+ years of experience in training, instruction, and web design information delivery in information technology

Experience developing and delivering security awareness programs. Work Skills (e.g., written and verbal communication skills)

Excellent interpersonal skills with the ability to communicate effectively verbally and in writing with all levels within the organization, including both technical and non-technical personnel.

Independently write well-structured and persuasive end products.

Ability to contextualize technical content for campus audiences.

Ability to communicate and present in a simple, clear, and concise manner to the various communities within the campus. Specific Job Knowledge (e.g., knowledge of principles and procedures related to field and area)

Experience with cybersecurity simulations for testing and enhancing defensive strategies and improving awareness of information security threats such as phishing, malware etc.

Knowledge of collaborative platforms like SharePoint for document management and team collaboration.

Understanding of printing solutions for managing printing tasks.

Ability to effectively utilize ticketing and project management tools like Team Dynamics.

Familiarity with training or learning management systems such as Bridge software for delivering training, connecting, and integrating different systems or applications.

Experience with website Content Management Systems for managing online content and websites.

Proficiency in screen capture software for capturing, designing, and editing visuals and training using the appropriate products such as TechSmith Snagit or Articulate

Proficiency in Microsoft Office suite including Word, PowerPoint, and Excel

Understanding of Social Media platforms

Familiarity with email marketing and newsletter software for creating, managing, and analyzing email campaigns. Preferred Qualifications:

Formal Education

Bachelor's degree in computer science, information security, or a related discipline, or equivalent work experience Work Experience

Experience developing and delivering security awareness programs

Experience working with common information security standards, such as ISO 27001/27002, NIST, PCI DSS, ITIL, COBIT

Higher education experience Work Skills (e.g., written and verbal communication skills)

Desire to learn and integrate new capabilities in digital technology, such as audio, video, social media, online communities, blogs, and other web-based technologies.

Specific Job Knowledge (e.g., knowledge of principles and procedures related to field and area)

Knowledge of website design and web content accessibility

Physical Requirements and/or Unusual Work Hours:

Special Message to Applicants:

Posting Date:

05/10/2024

Closing Date (11:59pm ET):

Salary Posting Information:

Commensurate with experience.

Salary Band:

J

Job Classification:

exempt