Security Administrator/Information Security Specialist

Description

Title: Security Administrator/Information Security Specialist

Position Numbers: 97556T, pending position clearance

Hiring Unit: Information Technology Services, Office of the VP for Information and Chief Information Officer

Location: UH System Offices, Manoa Campus

Date Posted: December 4, 2025

Closing Date: January 11, 2026

Band: B

Salary: salary schedules and placement information

Full Time/Part Time: Full Time

Temporary/Permanent: Temporary

DUTIES & RESPONSIBILITIES (*denotes essential functions):

• As a member of the UH Information Security team, oversees, manages and maintains the UH information security data protection and compliance programs.
• Provides general and technical advice, problem-solving assistance, and answers to questions regarding the information security program, information security issues, compliance programs, policies, standards and procedures.
• Manages Security Information and Event Management (SIEM) system to collect, correlate, and analyze security logs and alerts from critical information systems and analyzes the information to detect, investigate, and respond to suspicious or malicious activity
• Develops and maintains an effective security awareness training program as necessary for UH employees and conducts regular ongoing training.
• Actively promotes and communicates security awareness and changes in policies, procedures or training to faculty, staff and students, and provides guidance to affected groups.
• Assists the UH Information Security team with ensuring compliance with external regulations, laws and standards such as but not limited to the DOD Cybersecurity Maturity Model Certification program, GDPR, PCI-DSS, HIPAA, FERPA, NIST 800-171, HRS 487N, HRS 92F & UH policies/procedures across the UH system.
• Performs information security risk assessments. Provides reports and/or recommendations on a regular basis to University officials, senior leadership, higher level personnel and functional groups on the operation and progress of efforts.
• Identifies potential compliance vulnerabilities and risk; develops and implements corrective action plans for resolution of issues.
• Consults and collaborates with other departments, external vendors, service providers and/or external institutions to correct security related vulnerabilities and events when detected.
• Continuously monitors security threats, security trends, technological developments and emerging practices in the information technology, information security and higher education industries.
• Manages and monitors various security hardware, tools, systems/networks and applications in cooperation with Information Technology Services (ITS) staff.
• Performs capacity planning, evaluation, management and implementation of new products and technologies associated with information security in cooperation with other personnel as needed to address new security deficiencies and threats.
• Leads security incident responses, investigations and emergency situations, including those involving policy and regulatory violations. Handles legal requests and provides remediation support as necessary.
• Performs analyses and investigations of reports of inappropriate use of technology or institutional/personal information, including any alleged computer or network security compromises, and assists with the reporting and resolution of such incidents.
• Implements, maintains and performs the appropriate processes for proper reporting of violations or potential violations to duly authorized reporting authorities and/or enforcement agencies as appropriate and/or required.

• Other duties as assigned.

MINIMUM QUALIFICATIONS

• Possession of a pertinent baccalaureate educational degree in Computer Sciences, Information Security or related field and 5 years of progressively responsible professional information technology experience with responsibilities for information security of which 2 years of the experience must have been comparable in scope and complexity to the next lower payband in the University of Hawai'i broadband system; or any equivalent combination of education and/or professional work experience which provides the required education, knowledge, skills and abilities as indicated.
• Considerable working knowledge of information security as demonstrated by the broad knowledge and understanding of the full range of pertinent standard and evolving information technology concepts, principles and methodologies.
• Considerable working knowledge and understanding of the broad technology, systems, hardware and software associated with information security.
• Demonstrated ability to recognize a wide range of intricate problems, use reasoning and logic to determine accurate causes, and apply principles and practices to determine, evaluate, integrate, and implement practical and thorough solutions in an effective and timely manner.
• Demonstrated ability to interpret and present information and ideas clearly and accurately in writing, verbally and by preparation of reports and other materials.
• Demonstrated ability to establish and maintain effective working relationships with internal and external organizations, groups, team leaders and members, and individuals.
• If applicable, for supervisory work, demonstrated ability to lead subordinates, manage work priorities and projects, and manage employee relations.
• Considerable knowledge of information security current practices and threat landscape.
• Considerable working knowledge of current information security technologies and tools
• Considerable working knowledge of computer forensics and investigative techniques.
• Considerable working knowledge of international, federal, state and local laws, rules, regulations related to information security, privacy and higher education.
• Demonstrated ability to speak, read, comprehend, interpret and write fluently in English.
• Demonstrated ability to work cooperatively with leadership, supervisor, project staff, and customers in a team environment to accomplish tasks and meet deadlines.
• Demonstrated ability to establish and maintain effective working relationships in a positive, service-oriented manner with others.
• Demonstrated ability to develop effective training materials.
• Demonstrated ability to conduct in-person or virtual training/workshops.
• Demonstrated ability to learn and apply new technologies independently and in a timely manner using books, manuals, online research, and other resources.
• Demonstrated ability to combine and apply skill sets from many areas of IT.
• Working knowledge of management and use of a SIEM.
• Working knowledge of systems, systems administration, and network hardware and administration.
• Working knowledge of one or more programming or scripting language.
• Working knowledge of Internet protocols (such as TCP/IP) and applications.
• Ability to manage multiple projects.
• Ability to travel out-of-state.
• Ability to work a variable work schedule; and work outside normally scheduled work hours including day, night, weekend and/or holiday hours as directed.

DESIRABLE QUALIFICATIONS

• Certifications related to the information security area (e.g. CISSP, GIAC/GSEC, CISM, etc.)
• Working knowledge of configuring and implementing technical security solutions.
• Prior cybersecurity experience in or with higher education.

TO APPLY:

.

Note: If you have not previously applied for a position using NeoGov, you will need to create an account.

Applicants must submit the following:

• Cover letter to the selection committee indicating interest in the position and how the minimum and desirable qualifications are met,
• Resume,
• The names and contact information (telephone number and email addresses) of at least three (3) professional references, and
• Copies of educational transcripts are acceptable; however, original official transcripts will be required at time of hire. Diplomas and copies will NOT be accepted. Transcripts issued from an institution outside of the United States of America (USA) require a course-by-course analysis with an equivalency statement from an agency having membership with the National Association of Credential Evaluation Services, Inc., verifying the degree equivalency to that of an accredited institution within the USA. Expense of the evaluation shall be borne by the applicant.

Late or incomplete applications will not be considered. The application will be considered incomplete if any of the required documents/materials are not included or are unreadable.

Please redact references to social security numbers and birthdate on submitted documents.

Employment may be contingent on verification of credentials and other background information, including the completion of a criminal history check.

Inquiries:
(808) 956-9098, itsadmin@hawaii.edu

EEO, Clery Act, ADA